• Multi WAN Site routing

    cyberhop
    cyberhop
    Hi All I am hoping someone with multi wan experience can help us. I believe its down to routing. So we have 3 WAN's in operation, see our diagram attached, the copy monitors all sorts of different types of alarms and also has a phone app you can use…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Using CAA via VPN No Longer Working

    Ted Bealmear
    Ted Bealmear
    I have a, what feels like to me anyway, a unique way of accessing my remote firewalls. I use the CAA client when I am at my office to authenticate myself to the firewall. This in turn allows me to access my remote firewalls via the SDWAN that is configured…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SD-WAN Connection group

    Diogo Moreira
    Diogo Moreira
    Hi, I have a dedicated WAN LINK in a router that does not support bridge mode. I want to do an SD-WAN connection group and for that I have to tell my ISP what ports I need them to port forward Does anyone know the exacly ports that Sophos Firewall…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • VLAN routing issue

    Werner Smit
    Werner Smit
    Good Day, Hope anyone can assist me? I have an issue with my VLAN setup on our Sophos XG230. I am using two different ports on the firewall to separate the main LAN from the VLAN and want to route the traffic via the firewall. Switch already been configured…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • shift traffic to another link

    Moiz Bagban
    Moiz Bagban
    1) If one link is being fluctuated and getting time out then how to shift all over traffic on other link. 2) how to identify both link utilization report with SVI Configuration. 3) How to identify that which Link is best path when NAT is not configured…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • BUG NC-114075 - SDWAN ROUTES

    Francisco Fiol Mas
    Francisco Fiol Mas
    Hello I am new to sophos, we are carrying out a POC with your firewalls and we are having a problem, the routes choose the xfrm1 interface but with the xfrm2 ip. From what I've read it seems like a BUG NC-114075 NC-113973 XFRM1 IP: 10.1.X.2 XFRM2…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Inter-vlan routing issue

    Dahvid Schloss
    Dahvid Schloss
    Ok so I'm in a bit of an interesting issue and I'm not sure whats going on. Recently we had a power outage that was long enough to draw out the UPS and shut down the network stack ungracefully. Up until then I was able to route between VLANs and even…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • How to route all internet-bound traffic from a specific IP on the LAN to the backup gateway

    Gsurfer
    Gsurfer
    Hi! We have 2 gateways, GW1 & GW2. GW1 is the primary gateway and GW2 is the backup/failover gateway. I'm needing to route all internet-bound traffic from a specific IP address (computer) on our LAN to GW2. I also need the capability of easily turning…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SDWAN Routing - works one way, but not the other.

    Michael Wallis
    Michael Wallis
    SDWAN/IPSEC Tunnel Issue Setup Site A Sophos XGS 107 2 X WAN connections 2 X Route Based IPSEC Tunnels to Site B Site B Sophos XGS 87 1 X WAN connection 2 X Route based IPSEC Tunnels to Site A Issue Site B can ping and connect…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • problems with UDP packets on VPN with SD-WAN

    Gib GoDesk
    Gib GoDesk
    Hey guys. I have a problem that I can't figure out how to solve it. I have route-based IPsec VPN (xfrm) and when I use SD-WAN profiles for routing the non-TCP packets such as UDP from RDP or SIP are dropped. If I use the static route instead of SD…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Policy Routing is not visible in XG Firewall

    Jami Ullah
    Jami Ullah
    Hi, Firewall version: SFOS 19.5.2 MR2-Build624 I am unable to locate the policy routing. It should be under the category Routing but it's not visible. Screenshot is attached for your kind reference. Kindly help me locate where I can configure…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Show SDWAN Routes via CLI?

    Bepo
    Bepo
    Hello, in our head office we have a XGS2100 Cluster running on firmware version: SFOS 19.5.2 MR-2-Build624 We have some branch offices connected via IPSEC tunnel interfaces to the head office. For this we have some SDWAN Routes. Is there a way…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • BGP advertisement not being received by ISP

    Fizzle
    Fizzle
    We have configured and installed a new HA pair of Sophos XGS 4500s. Internally, almost everything is working correctly. One of our ISPs requires BGP be configured. We have done so and can see that we are able to receive the advertisements from our ISP…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SD WAN Routing Not Routing Correctly

    Kyle Hesser
    Kyle Hesser
    I have a VLAN setup for our IP phones, the phones are able to get an IP but for whatever reason their traffic is not being routed correctly. I have one phone routing fine, but the other is not routing through the correct port. 10.10.52.0/24 is the network…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Traffic through SD-WAN Selected Gateway Times Out

    John Groller
    John Groller
    Good evening! I have Remote SSL VPN setup, and I can connect to it no problem. The network address for these clients are 192.168.3.0/24. Below are my three policies for allowing traffic from the VPN zone to the WAN, LAN, and DMZ zones. Here are…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • IPv6 Neighbor Solicitation on static route

    Geniux
    Geniux
    I have an XG appliance in OVH. Since OVH uses a gateway on a remote subnet, I created a new zone, and assigned PortB to that zone with a /64 IPv6 address. The gateway is added using a static route ::/0 to PortB in reality, the default gateway…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • BGP neighbor weight

    ce_Sophos
    ce_Sophos
    I have Four BGP neighbors to AWS from Sophos XG in VPN. How can i set metric or priority for the neighbor IP. neighbor 169.254.9.237 remote-as 64512 neighbor 169.254.34.101 remote-as 64512 neighbor 169.254.41.177 remote-as 64512 neighbor 169.254.204…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XGS 4500 BGP education/configuration questions

    Fizzle
    Fizzle
    Hello and thanks for reading! I've not had to configure BGP before so forgive my ignorance here. I'm configuring a Sophos XGS 4500 HA pair for use in our main office. Our ISP requires BGP be configured, which I believe I have done using this Sophos…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • OSPF over IPSec to FortiGate firewall

    Steve Deviller
    Steve Deviller
    Hello All, We have a site that has a FortiGate firewall at the main site and several old watchguard firewalls at remote site. We need to replace one on the firewalls at a remote site, hoping to replace all later, with a new XGS3100. Due to the current…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SD-WAN IPSec xfrm routing/failover issues

    FFin
    FFin
    Hi, to get used to and evaluate sd-wan and xfrm-tunnel interfaces for seamless site2site vpn-connections, i setup two demo-sfos appliances (using home-license!). Site A WAN 1 to Site B WAN 1 & 2. Everything seems to be correct as i can RDP…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SD-WAN on two IPSECVPN

    Matthieu CROPSAL
    Matthieu CROPSAL
    Good morning, On a XGS126 - SFOS 19.5.2 MR-2-Build624 I am looking to create an SD-WAN policy on two intersite IPSECVPN links The links are configured in "site-to-site" mode I tried to configure a failover group, but I was not convinced by the failover…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Eigrp cloud mpls?

    Patrick Nyoike
    Patrick Nyoike
    I have sophos xg210 , i want to terminate my mpls link to it , my link is an mpls , but the source of mpls cannot ping my computer but i can ping his computer , what could be the issue?
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SDWAN - IPSec Tunnel Mode RDP Terminate

    Carlos Cesario
    Carlos Cesario
    Hello guys, Currently Im rewriting Ipsec Tunnels from Site-Site mode to Tunnel Interface + SDWAN + SDWAN profiles I have the following scneario All BO connect to HO and each one to BO After rewrite it to Tunnel Mode and using SDWAN and…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Route based VPN WAN Traffic

    Melvin Zill
    Melvin Zill
    Hello everyone, after days and weeks of trying I finally got a working VPN connection on my XGS! Now I need one more thing as they say: I want one specific VLANs clients to route all NAT Traffic through the Head office Firewall. Why? Geoblocking…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SD-Wan route not working even after changing Route Precedence

    shdan
    shdan
    Hi Everybody! After reading the following link: Sophos Firewall: How to prioritize the traffic via SD-WAN for the applications I can not redirect applications and services traffics to specific WAN link, even after changing route precedence to SD…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>