Hello, I am making my way in learning about Sophos, rules, vlans etc with UTM Home 9. Lately I have found about the service from cloudflare to publish a website without having SSL Certificate, Cloudflare use tunnels to publish a website ( Tunnels…

Hi! I am currently operating two Sophos UTM behind a router which is running great. For redundancy reasons I now want to add another pair to operate in HA mode. The issue: All UTM's use the SAME Interface MAC when switching to HA mode. I can manually…

Hi All, i have PRTG configured with the MIB file i found online (on this forum) i was wondering, for the moment i'm not able to monitor my traffic on the eth ports, that is actually the most important thing for me. my knowledge of SNMP is limited…

So far, SSL VPN under the UTM has worked without any problems with the OpenVPN client. In the meantime, OpenVPN 2.6RC1 has been released, which requires AES-GCM ciphers. Only with a change in the config file the OpenVPN client can still connect. e.g.…

Hi everyone, From Monday the 19th of December, I've got an issue with my web filtering. It's configured to filter some categories, like porn, violence .... BUT the pages are not blocked. I have a cluster of SG430 (active/passive) with 9.713-19 update…

Since long time, passthrough.fw-notify.net resolves to an IP and allows manual URL unblocking of websites. https://passthrough 6 . fw-notify.net cannot be resolved since > 2 years, so how can IPV6 Sites be unblocked by the user?

Hello, I am using the following: - SG125 with latest firmware 9.713-19 - APX320 (Wireless Access point) I use the Eth2 on SG125 that is connected to a device that is supplying a DCHP Server. It is required for a new project. The APX320 is…

Hallo, ich erhalte von einer Email-Adresse Anhänge, welcher im Mailmanager immer im SMTP-Spool als Fehler landen. Wie kann ich herausfinden was das Problem ist? Es handelt sich generell nur um PDF-Dokumente und an der Absender-Adresse liegt es…

UPDATE: scroll down for fix. big thanks to: dirkkotte and solae tl;dr: i need access to the following UTM u2date package u2d-sys-9.711005-712012.tgz.gpg which was removed by sophos from the download page. our customer bricked his SG450 A/S cluster…

Hallo zusammen, ist die Sophos UTM9, in meinem Fall 9.711-5, von der Sicherheitslücke CVE-2022-3236 betroffen? Ich lese in allen Artikeln nur was von Firewall v19.0 und älter. Da dies keine Version-Bezeichnungen für UTMs sind, gehe ich mal davon aus…

Hello Guys, I am currently trying to setup two different IPsec VPNs. The first one is to simply connect to our Network and the other one is to route all traffic threw the firewall, if you are in a cafe for example. So far so good. They both work…

Hello, I am trying to configure UTM9 Webserver Protection feature to manage several domain names, routing to specific web servers in DMZ, through my one and only public IP. I have 2 DNS entries pointing to the same public IP: sub1.mydomain.com sub2…

We currently have a sg 105 UTM 9 appliance purchased in 2015. Firmware version is 9.707-5 but no longer receives updates. Is it still supported? Serial number is S140182C02CCDCD. We are not sure as the revision number. Many thanks. Dale F

Hi All, Currnelty Running a UTM Version 9.7115-5. I've added some associate company sites to a Site-To-Site IPSSEC tunnel. We have the tunnel established and running fine with the "automatic Firewall Rules... However..... 1. Id' like to restrict…

Hello all, I've been trying to create two site to site vpn's using respond only, It seems like there is some conflict happening. When I checked the site to site connection summary, It indicates the clients public IP but with the "Error : No connection…

I've got an issue with WiFi networks on our UTM+AP55 combo. A WiFi network using the "Bridge to AP LAN" feature works fine. However, I'd like to have a separate zone for a hotspot, and here things are not working as expected. I've currently set up the…

We have added a few internet-connected gadgets and devices to our household over the years. The Sophos UTM Home License is limited to 50 IP addresses. The problem is that both IPv4 and IPv6 addresses count against the 50. It is easy to exceed the limit…

Unless I'm mistaken, a typical DNAT rule meant to expose an internal service to the outside world should forward a packet coming from the internet to a target server (changing only the destination, hence D in the DNAT). Now, as is, we have the following…

Hello, I've got the following Problem. A Sophos UTM 9.711-5 syncs users from AD. These users accounts then get activated for an IPSec remote access. Normally that works just fine, user is created in AD, synced with UTM, gets clearance for user portal…

Hello, since the last firewall update we are forced to use the new Sophos Connect. Sadly there are connection problems with this client. I can properly connect via the old VPN SSL Client. If i uninstall it and install Sophos Connect the authentication…

(duplicate)

Hallo Miteinander, wir haben eine UTM 9 in unserem Unternehmen im Einsatz. Uns ist jetzt eine seltsame Meldung des Advanced Thread Protection aufgefallen. Es ist zwar schon öfter vorgekommen, dass externe DNS-Server, wie der von Google (8.8.8.8), als…

Hi all, When a user repeatedly fails to login via VPN on our UTM, I have setup that I/Admin receive a notification about the incident and the consequently blocking of the ip. However - the notification does not contain the userid which was used during…

Hello everyone, I’m having problems with OTP in Sophos UTM. I enabled OTP passwords to improve security on SSL VPN and User Portal with 2F authentication: When I access the User Portal with the user that the OTP is enabled, the screen with the…

Dears, The WAN Service Providers changed the router recently, after the router has been changed, the interface stat is up and the link is down, after a troubleshooting session we are sure that the router is working fine and all configuration…