• XGS loopback doubt

    Christian Garcia N
    Christian Garcia N
    Good morning. I have a problem in identifying which server makes requests to another when the requests arrive to a loopback to access internal servers when pointing to their public ip's. Example: server with ip 192.168.1.20 resolves DNS that points…
    • 3 months ago
    • Sophos Firewall
    • Discussions
  • block icmp for a specific IP on specific WAN port but allow on Another

    Heartwood Hub
    Heartwood Hub
    I have a dual WAN setup, for this example, I'll call them A and B. A is my primary WAN, and B is my failover backup WAN. A uses starlink, and B uses a local ISP. I use another app to monitor pings to my ISPs to see if they are up. Unfortunetly…
    • 3 months ago
    • Sophos Firewall
    • Discussions
  • Impact to the internet speed when creating firewall exceptions

    David Grahammer
    David Grahammer
    Hey there, How much of an impact to the internet speed does it make, if I create a new firewall exception? Since the firewall has to go through the entire ruleset, it should slow down every request a little bit. Is there an upper bound of…
    • Answered
    • 3 months ago
    • Sophos Firewall
    • Discussions
  • Can't Ping DNAT Host Remotely

    Clay Tsuhako
    Clay Tsuhako
    have created a new alias port (Port 5:0) on our Sophos XG 210 (SFOS 20.0.2 MR-2-Build378) and created a local host at internal IP of 10.0.0.71). I have also created a firewall rule to allow access to this host from several specified remote hosts that…
    • Answered
    • 3 months ago
    • Sophos Firewall
    • Discussions
  • Comcast EDI setup on XG firewall

    Christopher buchanan
    Christopher buchanan
    Hi Comcast has provided us with EDI service consisting of one /30 network to connect to the internet and a /25 for our additional Public IP addresses. One approach would be to use a basic router with one port connected to the /30 network and do a…
    • 3 months ago
    • Sophos Firewall
    • Discussions
  • WEBSER SERVER NOT ACCESS THROUGH VPN

    SatyabrataB
    SatyabrataB
    hi, we have webserver in LAN zone that server access through private IP address IN LAN zone. issue-Right now user in china and access webserver through Vpn but in china vpn not connected only indian sim with roaming will work.how to access webserver…
    • 3 months ago
    • Sophos Firewall
    • Discussions
  • NAT Port Forwarding not working on XGS210 SFOS 20.0.2 MR-2-Build378

    Mark Tarrant
    Mark Tarrant
    This was working a month or so ago, but the vendor has just now tried it again and it isn't working. The error is Violation Local_ACL.
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • DNAT VPN SDWAN

    Alves
    Alves
    Hi guys, I'm trying to create a DNAT rule that uses the ISP from Firewall A for a host that is on Firewall B. The communication between these firewalls is done via SDWAN VPN When testing the NAT, I identified in the packet capture that the traffic is…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Open ports

    Bill Bird
    Bill Bird
    Had a colleague port scan my WAN port after replacing my dead XG230 with a new XG230. I show all these open ports: I did not have this issue with previous fw (my previous config would not load, sadly). What am I missing? Thanks ahead of time…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • NAT Port Forwarding not working on XGS2300 (SFOS 20.0.1 MR-1-Build342)

    Louis Nguyen
    Louis Nguyen
    My Sophos FW XGS2300 port forwording not working for a new port in the past 7days ago, the older port forwording still work normal. Please help me how to check and troubleshoot about this problem. My NAT and rule as pic below. Many thanks for support…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Maximum number of IP aliases per interface?

    Jaroslav Faldik
    Jaroslav Faldik
    Hi, Is there a limit to the number of IP aliases per interface?
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • SAP system not accessible after deploying SOPHOS firewall

    Anesu Dangarembwa
    Anesu Dangarembwa
    Good day We have deployed a Sophos firewall on a network, there was a cisco router and we have replaced the cisco router. After deploying the firewall the SAP system is not accessible on the local area network .. We have a SAP server in the LAN…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Need help with routing LAN to WAN

    Alain Mirval
    Alain Mirval
    Do you have an article to help better understand routing on Sophos Firewall? I want my LAN to communicate with my WAN.
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Unable to use the static IP in Sophos bridge mode

    Anh Dung Nguyen
    Anh Dung Nguyen
    Hello everyone, I’ve included my home network diagram and Sophos configuration below. After setting up Sophos Home (on ESXi) in bridge mode with VLANs, I assigned a static IP address of 192.168.11.10 to the bridge port. However, this IP address cannot…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Couldn't delete user. A firewall rule, VPN connection, web policy rule, or SSL/TLS inspection rule exists for this user.

    Sophos User2968
    Sophos User2968
    Our company own a sophos firewall xgs ( XGS3300), I try to delete user from 'Authentication' page but it failed, i able to disable the user account, but unable delete the user account. but some account i able to delete. i appreciate if there is…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Assistance Required: Binding Static IP to Local IP Address

    Nasar Aalam
    Nasar Aalam
    static IP 203.122.47.42 on port 84 is showing as closed. We need to bind this static IP to the local IP address 10.0.1.134 . Please assist with this at your earliest convenience. Thank you.
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • How to get Firewall Rule ID from XML export file

    August Admin Vosterman
    August Admin Vosterman
    When creating an XML export of FirewallRule via Backup & Firmware -> Import export what is missing in in the XML is the Rule ID. How to get this ID? Or can this be retrieved via API request? greetings, August
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • FIREWALL RULE OVER VPN (WAN-VPN)

    Johnder Dacquil
    Johnder Dacquil
    Does anyone here encounter no access on yahoo even on whitelist? All site is accessible expect for yahoo sites. Anyways I'm doing VPN-WAN rule from XGS107 (SFOS 18.5.2 MR-2-Build380) to XG230 (SFOS 18.5.2 MR-2-Build380).
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Create user sophos from API Laravel

    Elia Oktam Kurniawan
    Elia Oktam Kurniawan
    how to create user sophos from laravel API. i'm success create user with API postman, but when i'm implemented in laravel. User not created. Please help me this my script in laravel public function sophos() { try { $url = "">192.168.7.1…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • New Setup Issues (Fresh Install)

    Bossmanuk
    Bossmanuk
    Hello Everyone, I am a new user of Sophos Firewall for Home, unfortunately I am encountering a few issues. I have managed to get an internet connection on it but I am unable to register it and getting the following error - Can't connect to the registration…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Merging of two incoming lines.

    Rahul Saini
    Rahul Saini
    I have two lines on firewall one is of internet line and one is of local line on which a specific website works. When we search that specific website that 2nd line should come into picture, but currently both the line are active but that website is not…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Linked NAT rule for LAN to LAN traffic?

    Mark Tarrant
    Mark Tarrant
    Hello all, I have inherited a firewall that has linked NAT rules for LAN to LAN type rules. Is there any need for them (I don't think so as really only required for LAN to WAN), and would it hurt anything if I just left the NAT rules? Thanks.
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Cellular WAN constantly showing up and down, but never *actually* going down

    Daniel Fehrenbach
    Daniel Fehrenbach
    Brief description of my setup: WAN1 is a hardline connection. WAN2 is a cellular 5G connection, using a standalone antenna and modem. SD-WAN 1 is configured for general internet traffic, where WAN1 is the default and WAN2 is failover, using TCP…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • XG125 Blocking Programs or Ports

    Brian Roberts
    Brian Roberts
    Hi, Is it possible that an XG125 Firewall can block programs and TCP/UDP ports for network traffic between a Windows Server and client computers within the same LAN? I know the firewall can block traffic between the LAN and the internet but my question…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Integrate synthetic allowlist in a rule without WAF

    Oliver Schnürer
    Oliver Schnürer
    Dear community, As a firewall noob I am wondering how to integrate a dynamically changing list of IPs into an allowlist for a specific firewall rule. As a home user I unfortunately have no access to the "Web protection subscription", only "Base Firewall…
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>