I have 2 wan connections 1 FTTP with 1 static ip and 1 FTTC with 6 static ip's, i have set up some nat rules for the main connection (FTTP) and they are accessable from inside the lan, i have also tried to setup some nat rules for 2 of the 6 ip's on FTTC…
Hi there,
I recently configured a new XGS3100 active/passive cluster with SFOS 19.5. Everything seemed to be fine, but as I wanted to configure the SSL/TLS inspection (I normally do this as one of the final steps) I realized, that there is missing something…
Ok, so I decided to give Apple TV+ a try. I am aware of how finicky Apple products can be, but decided to give it a whirl anyway. Perhaps I'm beating a dead horse on this.
The first issue was the XG blocking QUIC, once I allowed QUIC, streaming seemed…
Hello,
I'm running web server on port 443 in DMZ zone with another service running on port 7xxx.
I can browse web page because of waf rule, but I can not connect to service on port 7xxx from WAN, Packet capture show ACL Violation
Show…
Good day everyone!
I am currently implementing an emergency firewall ruleset, which looks like this:
- Allow all communications towards sophos central (for Live Response etc. to work)
- Allow all communications coming from the physical Management…
Hi All,
I have a challenge accessing intranet sites
Intranet sites have to be added to browser proxy server exceptions else they are flagged as not available
......................................................................................…
Hello,
I am trying to set up IMAPs/POPs/SMTPs Settings in an XGS running SFOS 19.0.1
In general there is an external Mail Server and in the local network behind the XGS there are Outlook Clients that connect to the Mailserver via IMAP 993 and SMTP…
When try to save NAT Configuration it is showing "Original and translated services don't match" and am not able to store that. Any idea why? What am doing wrong?
Hi all,
I have xg firewall
i can't access to this vps (in object)
i just firstly make firewall rule:
source zone:lan
destination zone: wan
networks source: Any
network destination: any
services: http
web policy: url list with only "…
Hi all,
XG Firewall
I just need to know about allowing SFTP traffic from LAN to WAN
Group of users need to upload files on SFTP Server partner located on WAN (WEB)
The server SFTP is already configured and my public IP is allowed to access this…
Hi everyone,
I am in a bit of a situation here with my Sophos XG Firewall. Earlier today I had to reboot the server that the Sophos VM is in for an unrelated issue. After everything rebooted, I have not been able to connect to the internet at all on…
Hi All,
FW: XG SFOS 18.5.4 MR-4-Build418
i'm using ftps server configured with windows os server (IIS) in DMZ With user isolation. users will connect from external to only upload files There are dnat rule and firewall rule configured: dnat rule:-…
Hello All,
We have a requirement to use MAC filtering for few clients which are connected to Sophos XGS via a core switch. The objective is if traffic comes from a specific MAC address needs filtering applied. Is that possible as i have seen below…
Hello, i was trying to open the PORTS to all Internal users, but the rule still blocking the access.
please verify that am doing port forws correct way for all internal users.
Thanks
I have Host A talking to Server B with 587 SMTP with STARTTLS
A uses only Ciphers that are not supported by B and B closes the connection after A sent the TLS Client Hello.
Now we have a firewall rule that has IPS enabled, nothing else:
The handshake…
We have started installing XGS 126 Firewalls in locations and seem to be having an issue with getting the WiFi callling on our Ruckus access points to work. It works with the 115 we used to use but it seems some change to the 126 is causing an issue
Since Ideas.sophos.com has been retired and it wasn't clear if its replacement is operational, yet I went by the retirement article suggesting using the discussions.
Sophos Firewall - Feature Request - Rule Group parameters,
While working on firewall…
Ive been asked to setup a firewall rule to allow 1 country access in. But the IP address that's showing is an IPv6 one.
Ive been into the separate IPv6 tab in firewall rules to try and add the rule in but I cant select any country group as the source…
Hello World,
I am running Sophos SFOS 19.0.1 MR-1-Build365
I have a strange issue. I have a separate network for wireless. 10.1.1.1 and another network for my LAN 10.2.1.1
I can ping every device from each network. However, when I attempt to access…
Hi, hoping someone can help. Apologies for the long post.
I'm currently building a Sophos XG appliance to replace my UTM9 as I've exceeded the 50 IP limitation on the home license. Rules and filters etc are slowly but surely being recreated in XG but…
Hello ,
This is regarding Sophos Firewall XG.
We have two ISP lines Hathway which is 10 mbps and second was Netfix 65 mbps.
The only thing is changed that we have upgraded bandwidth to 150 mbps to the netfix networks..
As in netfix is our primary…