• Scheduled downtime for appliances and tunnels

    Fabio Airoldi
    Fabio Airoldi
    Hello all, I have several firewalls claimed on Sophos Central and SD-WAN connection groups among them. One of the branches will be without power for about two weeks, so the firewalls and tunnels to this branch will be offline. Is there a way to…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Allow 3rd Party Wireguard VPN to Access LAN ressources from offsite Server

    Rene Böhres
    Rene Böhres
    Hello everyone I am struggeling with the following: The customer has microtik router that connects via wireguard VPN to a remote Windows Server in a Datacentre. The Microtik router is the VPN Client, the Windows Server is the VPN Server. The employees…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Static Routes not working after RED-Update to Version 3.0.009

    Anthony Stang
    Anthony Stang
    This isn´t really a question but rather some strange behavior I ran into when updating a customer´s RED-Devices from v3.0.008 to v3.0.009. Environment: - Sophos XG2300 running SFOS 20.0.0 GA-Build222 - Multiple RED20 and RED60 Devices (6 total)…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • OSPF Routing how to prioritize interface vs tunnel

    AstaroNBack
    AstaroNBack
    1. We have a 2 XGS connected via a private ISP fiber and the interfaces are LAN / GIG. 2. For resiliency we have a IPsec Tunnel interface between the same, using a disparate ISPs at each location VPN/GIG. We have been using OSPF for all of our routing…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • ADDING A STATIC ROUTE DISCONNECTS SITE TO SITE CONNECTED DEVICES

    TimothyWanume
    TimothyWanume
    When I add a startic route, I lose connectivity to devices connected on the other side of the site to site vpn yet the connection status of the vpn remains connected
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • PHYSICAL NETWORK INTERLINKING BETWEEN 2 XGS DEVICES

    TimothyWanume
    TimothyWanume
    Hello guys Fiber Interlink Network 1 should be able to communicate to network 2 through the fiber link Please assist in configuring
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Understanding SD-WAN performance

    Mostafa Fikry
    Mostafa Fikry
    I wanted to understand how does Sophos firewall measure Latency, Jitter and Packet loss. Is it measuring these metrics between the firewall and the WAN gateway or between the firewall and an external endpoint, if it's the second case then what is this…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • How to Configure MD5 for OSPF

    Joshua Rogers
    Joshua Rogers
    Hello everyone, I've searched quite a bit in the Sophos Firewall and i've turned up nothing. Where do i configure MD5 authentication for OSPF? I do not mean enable MD5 authentication. I'm asking where i go to set the Message Digest Key and password…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Where to start with SD-WAN configuration

    Sandra Koehler
    Sandra Koehler
    We have 2 firewalls at the main office in an active-passive HA pair. We just purchased another smaller XGS 107 to be used at a remote branch as a start to our SD-WAN project (we are going to be purchasing more firewalls to add later, but want to use this…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG route based VPN over BGP ping is not possible

    admin_idl
    admin_idl
    Hello, we are using 2 xg firewalls and have connected them via a route based vpn tunnel. We then configured the routing via BGP. From the branch office we reach the servers at the main location via ping. However, if we want to reach a server in the…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Port forwarding WAN to Route based VPN

    Geniux
    Geniux
    I have 2 XG ver. 20 firewalls between 2 sites, both with Static public IP. There is a SDWAN route based VPN between the 2 sites, and it works perfect. the roude precedence is SDWAN, Static, VPN. I am trying to publish an internal server resource that…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • FRRouting some new CVEs for <= 9.1

    Ben@Network
    Ben@Network
    Hello Sophos, today we received the information, that FRR has new CVEs: CVE-2024-31948 CVE-2024-31949 CVE-2024-31950 CVE-2024-31951 All versions <= 9.1 are affected, including version 8.4.2 on the Sophos firewalls. When will the update be provided…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Two Site Sophos Device MLPS Access Problem

    MustafaTASCI
    MustafaTASCI
    Hi, Two locations are connected with MPLS. Both locations have Sophos devices. In both locations, the servers and PCs behind sophos can ping each other and access each other. However, when we ping or trace the same ip addresses in the diagnostics…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Remote IPSEC VPN routing to internal LAN DEVICES

    D&B Ghana
    D&B Ghana
    Hi Team, I have created a network on layer 3 with a point to point connection from port 3 of my network to the layer 3, which ideally hold my internal network VLANS & devices. on port 3 i have the one IP, and on the switch i have another ip (point…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Only allow certain devices to use backup ISP when primary ISP is down

    shred
    shred
    I have a primary and backup ISP, with the backup ISP being a cellular-based limited bandwidth plan. The purpose of the backup ISP is for my “critical” devices such as my home server which hosts my alarm system via Home Assistant (so I can still receive…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Removing existing ACL

    Rajesh Reddy
    Rajesh Reddy
    I have defined an ACL and applied it on an interface using distribute-list command. Now i want to delete the ACL. How can i do that? It is mentioned that i have to first remove it from the interface and then delete the acl.
    • Answered
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • VLAN routing not working as intended on XGS136, I know I am missing something!

    DamienML
    DamienML
    I know this is me missing something, but I migrated my wifi configuration from a SG135w to a XGS136 a couple of month ago and I have only just noticed that its giving the wrong IP's for each of the 3 wifi networks. I cant figure out what extra I need…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • How get the VLAN to use the correct internet line that I want?

    Cuong Ung
    Cuong Ung
    Hello everyone, Today I am trying to deploy a network system running load balancing But I am currently stuck with a problem. That is, I cannot get the VLAN to use the correct internet line that I want. My idea: i want VLAN 50 and VLAN 70 to…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • making traffic bypass firewall NAT and go straight out to WAN

    Sophos User1175
    Sophos User1175
    hi all, so on our sophos FW i have set up two SD Wans as we have 2 Wans, one for our main network (wan1) and another for our guest network (wan2) as we wanted them separated so there using different public ip addresses problem is i have a laptop going…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Inbound SMTP Routing

    RichardHughes1
    RichardHughes1
    Hi, I have been trying to implement SMTP routing for inbound and outbound SMTP traffic over a GRE tunnel. I have another thread about this but I am having some trouble with the source of inbound SMTP traffic, becoming the destination? (screenshot below…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Is OSPFd on Sophos Firewall affected by CVE-2024-27913

    Ben@Network
    Ben@Network
    Hello Sophos. is the ffr routing on Sophos Firewalls affected by CVE-2024-27913? Thanks, Ben
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Problem with 2 Wan link Manager

    Viatory
    Viatory
    I am using Sophos Xg 125w V20 and i have configured two Wan link Manager. Wan link manager1 as my ISP and Wan link manager2 for Vlans and i want all my normal browsing to go through wan link manager1 instead of each of my computer on my network to select…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Route streaming media over different WAN-connection

    apijnappels
    apijnappels
    Is it possible to route "streaming media" over a dedicated WAN-connection using SD-WAN routes in SFOSv20? If not possible to route all streaming media, then is it possible to be more specific like youtube, tiktok maybe based on application rule?
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 19.0 and 19.5-traffic choosing wrong firewall rule if using SDWAN rules to far end subnet

    Administrator User395
    Administrator User395
    We have a main HA firewall XG210 pair, currently in 19.0 latest MR release, connecting to various XG and XGS units in the field. We have dedicated links to the far end locations, and on the XG210 at the head office it is configured as being over LAN…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Can i assign a specific WAN interface to be used by some specific devices?

    Matteo Frati
    Matteo Frati
    I have a XG Firewall with 2 WAN (different ISPs) configured and balanced. I would like to set my AS400 to always use only one of these WAN (the onle one with static IPs) I think i might use the SD-WAN Profiles and rules, but could someone help me…
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>