We have a Sophos SG310 Firmware v9.714-4. I am trying to figure out some issues and have been reviewing the firewall log but I'm unable to something out. Below is an example of a dropped packet listed in the Firewall log. 2023:02:24-01:14:33 utm-wi01…

YouTube and Facebook access block specify users with static IP address

Hello, I am making my way in learning about Sophos, rules, vlans etc with UTM Home 9. Lately I have found about the service from cloudflare to publish a website without having SSL Certificate, Cloudflare use tunnels to publish a website ( Tunnels…

Hello Sophos Community, I have a problem with the Sophos UTM 9 firewall and the setup with MFA. Key data: - Sophis UTM 9 (SG230) - version: 9.713-19 - The OTP setting under Authentication Services is enabled - Only one user was added for the test…

Integrated Site Web services with company internal software Web Service URL - br.ampbr.com/.../hh Site Web Public Ip -162.11.15.15,119.14.15.12 I have a DMZ server which run application ,to which this URL is integrated by API programmer I need…

Hey everyone, I'm pretty new to UTM and Sophos in general, but the company I work for has some units deployed that apparently need access to Microsoft WebView2. I'm hoping that I can just write a new rule to whitelist a DNS/DNS Group, but I haven't…

Hi, I have a new project for the implementation of security infrastructure in organization and I want to set up all thin clients when they start up windows, Sophos VPN clients connect automatically. Any help? Regards.

So this is basic I'm setting up a firewall rule to allow specific VPN traffic Here's the specific service definition Attempting to setup a VPN, I get this... Here are some of the same drops from the full firewall log Why is this traffic…

Hello, We have blocked single ip addresses and also ip ranges (SMTP Network Blacklist). However we noticed that spam messages still getting through or being quarantined. Those Phishing messages are usually sent from the ip network clodoserver.ru or…

Hello, We have created a website that is hosted internally and can be accessible. But we want that website to be accessible on the internet without VPN. (I can access it with VPN) I created a DNAT rule to allow any traffic from outside to that server…

Hello, For a few days we have been receiving disturbing mail notifications from our UTM sophos. I hope you can help me to identify and maybe solve the problem. For security reasons, I replaced the public IP of our Sophos UTM. The notification provides…

Hallo zusammen, wir installieren aktuell komplett neue Infrastruktur mit HPE MSA & 4 verschiedenen Hosts. Bei unserer aktuellen Firewall SG115 sind alle 4 Ports bereits belegt, gibt es eine Möglichkeit unsere neue 2100 ins vorhandene Intranet…

Our network will consist of 5 access switches connected to a layer 3 core switch connected to a SG430. We will have several VLANS consisting of computers, VoIP phones, security cameras and card access readers. Total users will be around 100. We are fully…

Hallo an alle hier. Ich habe eine UTM9 hier und möchte für einen Rechner SFTP freigeben für eine Zieadresse. Der Rechner ist ein Windows Terminalserver. Als Protokoll habe ich SSH angegeben. Als Ziel habe ich den DNS Namen des Ziels angegeben. Wenn…

I found a closed, 5 year old discussion with the same subject which bares revisiting. With IPs in just about every technical device (camera's smart TVs, appliances, lighting, speakers... the list goes on and on) is 50 still feasible for Sophos UTM and…

Hello everyone, a customer requires us to use the Web Protection of his UTM. He wants to block all sorts of traffic. The moment I activate the Web Protection all VLAN Network separation that is configured in the Firewall is basically gone and I can ping…

Hi, yesterday (sunday) at 3 am SNORT stopped to work with the result that internal nets couldn't reach Internet anymore. In the logs I found FATAL ERROR: Failed to load /usr/lib/snort/so_rules//file-java.so: /usr/lib/snort/so_rules//file-java.so:…

I think what we all were thinking, finished my Sophos UTM Udemy course, thanks for all of your suppor without this community, it wouldn't be easy as much as it is now, I just wanna thank the Sophs Community for your support. If you wanna take a look…

Hello all, I have a Sophos SG 330 with UTM 9 and am trying to block access to a url ex. https://www.domain.com/page while not blocking the any other page on said domain. That being said I also need to whitelist a few devices by MAC address or local…

Hallo zusammen! Ich hab ne Frage zu einem Umzug meiner Sophos UTM. Kurz ein bisschen Kontext Informationen: Die aktuelle Sophos ist eine VM die auf einem "eigentlich" sehr potenten Hyper-V Cluster läuft. Trotzdem schafft die VM nicht mehr als 1,3…

Hello, Today i found something weird on my UTM logs, the client downloaded some files from Internet and i see the the traffic it show opposite direction, the download content should appear as Inbound traffic but below screenshot show totally wrong.…

Newbie question. I am running Sophos Home UTM 9 software appliance on a server I built. I have an app running on a single workstation that needs to communicated in and out on ports 4000 and 4001. I set up the following rules but it doesn't seem to be…

Hallo zusammen, ich habe folgendes Problem: Erstmal zu meiner Ausgangssituation: LAN A 192.168.1.0/24 eth0 - Ethernet LAN B 192.168.2.0/24 eth2 - Ethernet WLAN D (Gäste-WLAN) 10.0.4.0/24 wlan1 WLAN E ( Internes WLAN) Bridge ins AP-LAN ( LAN…

Has anyone had experience with the new migration tool from Sophos? SFMA_02022022? It is an ova file , after I installed it I can not log in The default admin admin does not work Does anyone know what the login name and password is?

Hello, We have debugging mode turned on, but unsure how to disable it in sophos UTM 9 SG310 firewall. Due to which the confd-debug keep filling up the disk. How can we diable it? Thanks for the help, Jesse.