Hello, there is a problem with our UTM9. The notification "WARN-726 VPN connection using Site-to-Site is down" is not working. Other one are working. What could be the reason and how can it be solved? FYI: Current firmware version is 9.506-2 Greetings…

I am new to VPN kindly help. I downloaded ssl-vpn.exe package from the user portal which was already setup by someone else and when I installed it on my windows machine ( C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\config ) following files…

I'm new to firewalls so keep that in mind if I seem like i don't know what I'm doing. I'm setting up a SSL VPN for my company and I can't connect to my public ip. Whenever I try, i get a timeout. When I'm inside the internal network I can connect to…

Hi, I was wondering whether someone might be able to help me write a cloudwatch event which would alert when a VPN connection is established and extract the username, time, source and destination IP addresses? Really appreciate any guidance or even…

Hi. Can you help me with this problem that appears in VPN configuration: 2018:01:23-17:04:57 shopos_amazon pluto[7027]: packet from xxx.xxx.xxx.xxx:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA 2018:01:23-17:05:23 shopos_amazon…

Hi All, This is more of a, "Hey, look what I found", in hopes it may help others looking at the same problem and need a workaround. This all started when I could not stream video from my Zoneminder (ZM) server when connected to my network through…

Hi I am running UTM 9.506 and unable to figure why i cannot access some of the internal (sophos webadmin, user portal, webui for other devices), do not see any drops on the firewall logs. Everything works flawlessly on my android. Also tried the same…

Hi All, We are having an issue with IPSec tunnel going down on two site after a few days. If we just plug another device to the switch then Tunnel comes back online. we have switch connecting through 4G modems connected back to our Sophos firewall…

Hi, I have searched for an answer to this, but am unable to find a result which includes a 1:1 NAT. Here is the scenario: Remote User -(SSL Remote Access VPN)-> Sophos UTM 9 -(IPSEC Site-to-site VPN)-> Partner servers We have a requirement for…

Hi! I can't get my SSL-VPN to work, I followed Sophos own guide for setting this up, only changing the port. See below for settings. The log outputs the following: 2017:11:10-14:47:05 openvpn[25581]: TCP connection established with [AF_INET…

Is there any problem with installing the Sophos IPSec client (11.x) and the Sophos UTM SSL VPN client on the same computer? Is there any conflict between the two clients? Only plan to make a connection with one client at a time. I just wanted to know…

Hello fellow forum users, I have currently set up a SSL VPN remote access in Sophos UTM9 and its working without any issues, i can access all the services on all ports in the local network without issues. The problem is i want to restrict…

Hello, I've setup a few IPSEC VPN's with customers and vendors in the past without issue. For a proof of concept I'm attempting to create a VPN with a Cradlepoint device. Nothing special being done in regard to the config but I cannot get the tunnel…

I can't access the WebAdmin despite being connected via VPN (SSL). Here's the basic configuration: The UTM has a publicly accessible hostname (with matching certificate) - COMPANY.COM -> our public IP On our internal DNS it also has a local DNS entry…

Hey everyone, I thoroughly followed the guide https://www.sophos.com/en-us/medialibrary/PDFs/documentation/utm90_Remote_Access_Via_L2TP_geng.pdf with my test setup of a SOPHOS UTM 9 essentials firewall edition. I managed to get my client connecting…

Hi all, I just created a new Site-to-Site-VPN with IPSec and the VPN is UP. If I log into my Firewall and try to ping the private IP on the other party, it works, if I try to do that from my PC it does NOT work... The VPN should use two private…

Hello, we have the following Problem: We use the option "Optional: Interface for Outgoing traffic" for our WebProtection Profiles, so different customers can browse websites with different public IPs. If we want to connect to an internal web-server…

Hi, We have UTM 9 (9.501-5) deployed in AWS for VPN purposes and it was working fine for about 1 year, but since a few weeks now we're having major problems. Every day the VPN becomes unresponsive and in the openvpn.log files we see thousands of lines…

Hi all, We use Sophos UTM V9 for a lot of things and have always been very pleased with the quality and supported features. In the past, we also used Sophos UTM for a site to site IPSEC-VPN tunnel to a virtual network on Microsoft Azure. Not anymore…

Hi all, I want to know how does the Sophos UTM take priority on network routing. Take the snapshot below as an example. This routing table is taken from the Sophos UTM at Support > advanced > Routing Table default via <ISP gateway> dev eth1 table…

Hello Everyone, a customer of ours asked us a question about giving a Power-User a seperate DSL-Line with a static IP-Address for his home-office. So here is my question: Is it possible to give one single user an ssl-vpn profile that connects…

Hallo, ich habe eine UTM9.5 172.17.2.1/24(PPPoE und DYNDNS) und eine RED10 172.17.3.1/24 (RED steht hinter einem Router, Unitymedia FritzBox) Tunnel steht. Beide haben einen DNS & DHCP Server. Ich habe eine Maskierungsregel von UTM-> RED und von…

Hello Friends, I am a new to Sophose, i have sophose UTM9 is installed & company employees are able connect through the Sophose SSL VPN client to Office resource. Am able to ping to SSL VPN client machine & client machine is able to ping my machine…

DMZ, VPN Client, Routing, FW Hello, I would like to setup a router (VPN Client) in a DMZ and route traffic from LAN over DMZ to Open VPN Tunnel. I have the following configuration till now: WAN Interface (Ethernet) : 82.x.x.x LAN: 192…

Hi everyone, i have the following sceanrio. UTM with Firmware 9.502-4, Windows Server 2012 R2 with Network Policy Role and Windows 10 Client At first i have generated a certificate under Remote Access -> Certificate Management with the Name vpn…