• Local ACL Violation

    Carlo
    Carlo
    Hello, I'm running web server on port 443 in DMZ zone with another service running on port 7xxx. I can browse web page because of waf rule, but I can not connect to service on port 7xxx from WAN, Packet capture show ACL Violation Show…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • DNS in an emergency rule setup

    ll-ben
    ll-ben
    Good day everyone! I am currently implementing an emergency firewall ruleset, which looks like this: - Allow all communications towards sophos central (for Live Response etc. to work) - Allow all communications coming from the physical Management…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • I am not able to edit a new firewall rule

    Julio Quixtan
    Julio Quixtan
    I have added a new firewall rule, but now I can't edit it. Please see the attached image, it appears to be blocked, I can't even select it.
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to block randomly login attempts in our Server.

    Michael Tusi1
    Michael Tusi1
    How to block randomly login attempts in our Server.
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to create a rule for FTP

    Gaurav Thukral
    Gaurav Thukral
    I have internal server. I need to access from external network with FTP
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Failure to access intranet sites

    Vicent A
    Vicent A
    Hi All, I have a challenge accessing intranet sites Intranet sites have to be added to browser proxy server exceptions else they are flagged as not available ......................................................................................…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Central Firewall Rules

    Adam T
    Adam T
    I can't find any exact documentation on this. The first time I created a group with my first firewall, it the group seemed to adopt that firewall's ruleset and DNS setup without any prompt - it just did it. So, I've tried this again with a new group,…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Set up IMAP/POP EMail Scans

    TechnikBingo
    TechnikBingo
    Hello, I am trying to set up IMAPs/POPs/SMTPs Settings in an XGS running SFOS 19.0.1 In general there is an external Mail Server and in the local network behind the XGS there are Outlook Clients that connect to the Mailserver via IMAP 993 and SMTP…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Why this user or computer can access to internet ?!

    Fotit
    Fotit
    Hello All, With sophos xg in the company AD authentication (stas and CAA) I have may be 40 rules FW LAN > WAN, but all these rules are with " match known users ", so users or groups are presents there is no rule witch allow mac@ pc or ip address…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • STAS issues with Web protection Policy

    Technik Technik1
    Technik Technik1
    Hello, i have an big problem at a customer site. We switched from UTM to Sophos XGS. We have configured STAS. There is a rule for Internet HTTP/HTTPS access. The rule is open for everyone. I have configured a Web protection Policy. On top everybody…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • LOCAL_ACL Violation IPSEC VPN

    NoPoison
    NoPoison
    Hi, I set up an IPsec VPN but I am getting Local_ACL violations... I want to access it from my LAN PC 172.16.16.19 The Firewalls WAN IP is 192.168.178.50 Traffic is allowed I only added 1 Firewall-Rule. I pass everything to everything... …
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Site2Site Tunnel with unexpected gateway

    GernotMeyer
    GernotMeyer
    Hi, all. I have a Site2Site IPsec Tunnel (both are Sophos XG with actual version). Both sites have 1 LAN on their adapter.Working so far. One site 172.30.1.0/24, other site 10.10.10.0/29 (Sophos 10.10.10.1). Now I added a new small LAN to the one…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Site to Site SSL VPN cannot connect with another LAN

    AJ Plast PLC
    AJ Plast PLC
    Hello Expert, I've issue with Site to Site SSL VPN to connected with another LAN (File Share Server). I've tried many times to connect with the server but not success. My issue is PC2 cannot access (ping/trace route) with the File Share Server (ip…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • NAT CONFIGURATION

    SATHEESH KOOLIPPILAKKAL
    SATHEESH KOOLIPPILAKKAL
    When try to save NAT Configuration it is showing "Original and translated services don't match" and am not able to store that. Any idea why? What am doing wrong?
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Access to webserver (VPS): http://vcTerminal.company.com:9595

    Fotit
    Fotit
    Hi all, I have xg firewall i can't access to this vps (in object) i just firstly make firewall rule: source zone:lan destination zone: wan networks source: Any network destination: any services: http web policy: url list with only "…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Allow SFTP: id proto from LAN to WAN

    Fotit
    Fotit
    Hi all, XG Firewall I just need to know about allowing SFTP traffic from LAN to WAN Group of users need to upload files on SFTP Server partner located on WAN (WEB) The server SFTP is already configured and my public IP is allowed to access this…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Blocking UDP 500 to external networks without impacting a site-to-site tunnel

    Jeremy Norton
    Jeremy Norton
    Hello, we’ve had an external PCI compliance scan done on our network. It brought up UDP port 500 being in an open state and visible from external networks. We don’t have any active SSL VPNs besides a site-to-site tunnel going to one of our other branches…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • MAC Filtering -Sophos XGS

    M Mathew
    M Mathew
    Hello All, We have a requirement to use MAC filtering for few clients which are connected to Sophos XGS via a core switch. The objective is if traffic comes from a specific MAC address needs filtering applied. Is that possible as i have seen below…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Email blocked with web filtering

    Anesu Dangarembwa
    Anesu Dangarembwa
    We have a Sophos XG 310 , firmware v19.0.1 , The firewall is blocking emails, with web filtering, we have not configured any policy to block emails, Instead we configured a policy to allow outlook.com , office 365. but if we put web filtering on the firewall…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Feature Request - Quick Search Feature in Rules

    Dende
    Dende
    Hi, since the last update 19.5 there is a search window for the host and services. I would also like this search function for the rules, it would make it much easier to search for a specific rule! Thanks
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Site-to-Site VPN and printing to remote printer

    Philip Gardner
    Philip Gardner
    Sophos XG to Meraki Site to Site IPSec VPN Firewall VPN to LAN and VPN to LAN created, everything seemed ok, except that users at XG site cannot print to remote printer. We can ping the printer and bring up the HTTP page for the printer. We can see…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG port forwarding

    feroz syed
    feroz syed
    Hello, i was trying to open the PORTS to all Internal users, but the rule still blocking the access. please verify that am doing port forws correct way for all internal users. Thanks
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • No internet access from android device via Wifi

    Dave Fraley
    Dave Fraley
    Hope someone can direct me to a fix... please!!! Configuration: XGS116 firewall, (3)APX120 Access pointsw, (1) 8port POE sophos switch Firewall is in bridge mode and the AP's are in bridge to Lan. Devices: 5 POS terminals hardwired, 2 laptops wiifi…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Firewall rule without decryption but a TLS Handshake failure is logged in SSL/TLS inspection log

    LHerzog
    LHerzog
    I have Host A talking to Server B with 587 SMTP with STARTTLS A uses only Ciphers that are not supported by B and B closes the connection after A sent the TLS Client Hello. Now we have a firewall rule that has IPS enabled, nothing else: The handshake…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Xgs 126 and Ruckus WiFi calling

    Kyle Baldwin
    Kyle Baldwin
    We have started installing XGS 126 Firewalls in locations and seem to be having an issue with getting the WiFi callling on our Ruckus access points to work. It works with the 115 we used to use but it seems some change to the 126 is causing an issue
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>