I mistakenly made the Port2 interface my backup WAN, and Port4 my primary. As a consequence, the SSL VPN always prefers Port2 first, which is not as fast or stable, so I have to edit the user VPN config to move up the Port4 WAN to first in the config…
We have two lease line links configured on Sophos XGS 3100 firewall out of which the link of one of the lease line link goes down automatically after every 3-4 hours that too after changing weight of lease lines or changing fail over rules. Looking for…
Hi
I need asistance pertinent to the process of configuration for Sophos XG Firewall on a VM Ware platform. Currently I have Workstation Player 16 with a Windows 2019 Server , I created the Sophos XG VM apart. I would like to know the process of integration…
Hi,
I thought creating a Bridge on XGS-136, for example, creates a "switch" between bridged ports, but either I do not understand principle, or reality does not follow the principle - I found no, bridged ports do not behave like switched ports.
For…
Hello,
I have some issues with the management port which is in the same network as a management network that I want to "hide" behind the firewall.
I changed some routing (on 10 GBit Port) with resulted into two interfaces on the firewall in the…
Hi,
we recently replaced a UTM firewall with a XGS126 (SFOS 19.0.0 GA-Build317). We haven't changed anything else, the network config is the same. On this site we have a 10Mbps WAN link and two 2Mbps MPLS links (active-passive). We are ICMP monitoring…
GREETING!!!
1.
I have site-1 and site-2 with there own sophos xg firewall connected to wan link on port-8, port-1 is on lan, and port-f1 uplink is connected on both sides.
so what rule should i create to bypass the traffic from site 1 to site 2…
Hi all
xg sophos FW
Please look at picture below
I don't know how can i read this config
I know it's LS link, but there are 3 ip adresses: 01 private configured with its GW, and 02 others ip public (real ip).
When you edit these 02 ip adresses…
Someone has a hint:
I can't remove the network settings from a base interface on which Vlans are configured. At first I thought this configuration is not possible, but it is possible to configure it like this.
To make it clear to images with the…
Hi,
we have 3 HA Active/Passive Clusters with XGS136.
They all have Port10 as dedicated HA Port and are linked with 1m patch cables of good quality.
All 6 nodes show dropped packets and some also show port errors on Port10 for RX only.
Some of…
The following is the error in firewall log which showing RX State: packets errors:8 dropped:58662, please help to solve this issue.
port 1
UP BROADCAST RUNNING MULTICAST RX State: packets:169291044 bytes:41103398907 (38.2 GiB) errors:8 dropped:58662…
I have 2 firewalls that were at the same client. There was a thunderstorm that rolled through and it seems that they were hit. So I am verifying that the firewall was damaged. Both units are XG 115W. They have 4 physical ports. Port 1 no longer works…
Hi All,
When trying to configure the PPPOE i'm getting this error " Remote message: User not found."
but i'm sure the user and password are working fine, is there something i can do?
/Thanks
pppd 2.4.7 started by root, uid 0 PPP session…
One of Our customers using Sophos XG 230 V 19.0.0 firewall and configured 03 WAN links (One for backup and Two for Active-Active Load Balancing) but after the configuration one of the Active-active links went frequently and sometimes it always indicated…
Hello
I have struggled for a while with this. And all while having serious network issues with Comcast. I have Comcast and AT&T as ISPs - and for background, I have forced their Internet cable modems / routers to have a base IP address in the 172.16…
Hi,
In my logs, I'm getting a huge amount of Invalid Traffic event.
This started to happen when, by mistake, I changed the MTU on my WAN interface. It used to be at 1500, and now, when I set it back to 1500, internet doesn't seem to work properly…
Hi,
i need to change the Sophos Interface Zone before Initial Setup of Firewall, because i only can access Port2 (WAN). Actual:
Port1 LAN - 172.16.16.16 Port2 WAN - 10.128.0.5
Windows Machine to Configure is in the WAN Network 10.128.0.2 I already…
(SFOS 18.5.2 MR-2-Build380)
Randomly the port we use for LAN, Port 1, will act like it is unplugged. It's not. I can issue a reboot of the device and it comes up fine with Port 1 showing connected. Some time will pass and that same port will show unplugged…
on the XGS2100 there is e new Hardware PortMGMT interface Default setting is enabled IP 10.0.1.1 Network zone: LAN Everyone in LAN can reach this IP? Interface is not used and that is also why Control Center always shows "warning" for your interfaces…
Hello,
for eg. we have one xg126.In that we need to enable port3,5,6etc via CLI, because web UI is not accessible. so now how can I enable ports using commands only.
Today we were alerted by CheckMK about some port errors on one of our 18.5 MR3 HA Clusters.
The issue happened on the dedicated HA Port Port10 on which both machines are connected with 1m CAT6 cable.
Of course, we could change the cable.
But I'd…
Good Morning,
I have 2 cash registers on the exact same network, plugged into the same switch, same vlan etc.
How ever, one register doesn't not work despite using the same port #38990. I made policies whitelisting the IPs but the register still wont…
Hi there,
I have no experience with Sophos firewalls. I recently purchased XG 125 for a small office. I have done the initial set up and the device is connected to the internet. I connected a level one switch (unmanaged) to the one of the LAN ports…
I have a ticket open for this already, but the problem has not been resolved. I'm pretty frustrated overall by this whole experience, so wanted to try tap into a wider pool of knowledge to see if anyone else has a similar setup, and if they had any similar…
Since the transition from 18.5.3 to 19.0, the throughput between the WAN and the LAN has been extremely slow.Tests on NPERF show a throughput around 3Mb while normally I am at 300Mb.
My ports are in self-negotiation but even if I force in 1000Mb the…