Hello everyone, I am using the 192.168.x.y/24 subnet in my Sophos XG Firewall v18 for my network. I have set up multiple VLAN interfaces on it with different values of x and y. But every time I type in the gateway address of each respective VLAN interface…

hello, we have SG330 (SFOS 18.5.2 MR-2-Build380 ) , and we discover that we can access the firewall with broadcast address, how we can desactivate it . any help thanks

hi, I’ve got a serious problem, I did configure my Sophos xg as normal (LAN, WAN, Rules, Services) everything worked fluently, today I tested some NAT routing and I apply it suddenly I can’t access to my Sophos XG from LAN or WAN,. Please if you…

Hi, I had mistakenly disabled MFA for super admin, after that I cannot log in with the admin account on the web portal. but I am able to log in CLI mode. Please find below. I sync the authenticator and it says "timeoffset successfully retrieved" but…

I enabled the Local service ACL exception rule. Some how, I didn't get that right. Now im locked out from Web interface. The SSH is still working. How can i disable this ACL from command line/SSH? I tried: console> system appliance_access show Appliance…

Is there an workaround to use FQDN-Host Objects as a source for ACL exception rule on Device access? I used "DNS Host" Objects back in Sophos SG/UTM to limit WebAdmin Access by keeping flexibility of centrally changing DNS-Entrys. How to do this…

In the last couple days I've been trying to give admin access to some users to manage Sophos firewalls via WAN accross multiple sites. However, I have to manually set the user type as "Administrator". Manually setting 10 users or more accross more than…

I create DNAT rule with service any after this the service is done and I cant able to access the firewall web interface ? how can i solve this problem

Hi, The device XG86 I believe was blue and hang when i received this device. Currently, I am tryna access and reset to default but it couldn't be turned on even after plugging in and out. Its constant on red colour. No matter I plug in the power,…

Hey. Have recently upgraded several Sophos XG units to V18.5.380 (MR2). On all my units I have the Admin page available on the WAN, and it is using a different port than the standard 4444 On the units which have a valid X-Stream Protect License…

From the V19 EAP 'What's New' file - "Advanced Shell – With the addition of many comprehensive logging enhancements in the GUI, and in-line with industry best-practices, access to the Advance Shell will be restricted to licensed commercial versions of…

I have setup the SFOS virtual appliance on MS Hyper-V, all is fine but stuck at password authentication. The default administrator password 'admin' is not working.

Hello all, I did something incredibly stupid, i activated a erroneous NAT rul and i locked myself out. Is there anyway i can undo this form the console? Any help would be greatly appreciated.

Hi, We have a SOPHOS XG firewall configured in a remote office. Its don't have the dedicated WAN IP. its getting WAN IP from DHCP. How i can access the firewall from outside ? Kindly advice regarding the issue. hanks in advance. With Regards…

When I try to access through the internal ip of sophos on port 4444, google chrome gives me the following error: ERR_EMPTY_RESPONSE I have tried to access through Firefox and it works correctly, I have deleted history and cookies and it follows the…

I have two installs of 18.5.1 and I have the same issue with both. I can't get to the gui. I've changed the nic1 ip to anything in any of my other vlans and I just get can't be reached. Obviously 172.16.16.16 not being in my network won't work so changing…

Hi, This appears to be an 18.5 MR1 issue. When I login to any of our XG appliances externally (don't worry, we're using IP restrictions :) ) and the capture box is on the login screen, the login will fail the first time. The second login attempt…

I have configured my WAN and DMZ but now i can no longer access my sophos box after bridging my port 1 with port 4. Its shows not internet and the LAN 172.16.16.16:4444 cant access the GUI interface, please any suggestions will help. I dont want to resort…

I am configuring a remote XGS 116 via Sophos Connect at the moment, primarily with the aim of setting up VPN connections. I have configured both IPsec and SSL VPN modes and have successfully connected to IPsec. I can't test SSL yet as I need to login…

I was recently testing remote SSL VPN access and connected successfully from a Mac using OpenVPN. I was able to then go to the admin login web page, and when I entered the login and password -- from a password manager, so no possibility of typo -- it…

Hi all, Is it possible disable ping and http/https access to VLAN interface IPs? Is this to be performed via FW rules?

Hello all, I'm stuck at the following, hope to get the community's help. I have the following network configured. I am trying to ssh into the CORE SWITCH from the MGT PC but to no avail. XG210 is currently configured to perform InterVLAN routing via…

Broadcast packet are normal into LAN zones. It's possible to quit messages logs (Appliance Access - Denied) originate from LAN Zones (like TCP port 137 that reach firewall) and keep active message logs (Appliance Access - Denied) originate from WAN…

I have an XG86 that was installed quite some time ago. I can no longer log in to the appliance with name and pw that used to work. I was getting alerts to upgrade the OS. It appears I am locked out. Any ideas?

Hi All, I understand that turning Support Access on allows Sophos to connect in for support-related works etc., but is this functionality secured so that only Sophos can make use of this access by way of only accepting connections from known Sophos…