Hi! I am currently exploring Sophos based on my prior experience with it back in 2014. I am gradually migrating from my MikroTik setup to a Sophos Home Firewall, primarily due to its advanced security features. I have set up Sophos Home Firewall on…

Hi , We are facing this issue. Any solution for this?

Hi, I've got to send mails through a smarthost in the MTA on port 587 with tls, but MTA is only doing plaintext. It was working on v20 in v21 not.

Hi, My employer uses Sophos Connect VPN. I currently use an Intel PC but am looking at changing to an ARM Snapdragon X PC. However I'm not sure whether Sophos Connect is compatible with Snapdragon X. Sophos "Supported platforms" on this support page…

Hey everyone, today i noticed our Windows DCs want to communicate with Windows Clients behind a RED Device, where SFOS is recognizing it as a Freegate Proxy Application and blocks it Src IP = Win DC Dst IP = Win Client behind RED Seems to be…

Hi folks, a question for those who can provide guidance and maybe even answer. The daily report shows various classifications for NTP type traffic. 1/. 2/. 3/. I was reviewing the hairpin NAT configurations and found there were some items…

i have configured a clientless sftp policy that contains the bookmark and the bookmark contains the private and public key along with server information. I created a user on our portal and allowed it to use this policy. I did on the side another rdp policy…

Hi. I have a default firewall policy configured like this and web filtering is not configured to any other firewall rule. I do not use HTTPS decryption. Web filter works and I get a block message for denied HTTP sites and certificate error for…

Hi I have an issue whereby users cannot send images or documents on whatsapp mobile app. We have policy rules for social restriction but whatsapp i alloewd but seems not to be working

We recently upgraded our Sophos XGS 4300 to SFOS v21. Since then, we are finding that a number of our users were receieving connection reset messages in their browser (Edge and Chrome) when attempting to access some websites with transparent TLS decryption…

I have XG 115 which only has an active basic protection license. Now I need to add new sd-red 20 devices. Can I purchse the Network Protection license and proceed? Will it work? Cuz one of Network specialists told me it won't work, no more licenses for…

Hi, What's the recommended configuration for clients behind a RED? We have the the RED in SPLIT tunnel mode and have the Sophos Heartbeat IP included in the traffic sent over the tunnel. Is this right? We also have a Firewall rule for traffic to…

Dear Forum, I created a new active-passive HA setup which is working flawlessly in terms of basically everything, except one thing which is the auxiliary device management. For some reason i not able to reach it via the aux management ip address, when…

how to allocate bandwidth limit to specific IP or IP class?

Anyway to turn these off from showing in the logs? Thx

Hi, I've got the following case on a customer site: Internal webserver on LAN, needs to be accessed from same or different internal LAN on the external IP, normally I use a loopback NAT rule and this works. Since a few weeks we had to switch to…

HI I have Xgs450 V20 that is running under HA. I posted long time about the ability to transfer Trunkvlans from one physical port to a lag physical port. But since i was on an older version I had to do it manually. However the project has been delayed…

Hello, i create a ext. wireless network every things correct but cell phones connect it randomly.Please help me

This issue just started on Sunday, reoccurred just now. Remote VPN login times-out. I've narrowed it down to an issue with the FW connecting to AD. The "Test Connection" failed. A reboot of the FW fixes the issue (Both times). After reboot, the "Test…

I'm trying to setup a Central managed AP to a VLAN connected SSID to my Firewall. Pos A - If I'm connected directly to the Firewall with the AP, the AP can see and serve the internet to anyone connected to it. Pos B - If I'm connected through a…

Hey, on our fresh deployed XGS3300 with SFOS v21 the Reports Widget still shows 0 on all values: But you can see all information in the detailed view when click on one of the line. Is there a way to reset the view, or do i have to restart the complete…

Hi, im new in sophos firewall, we have office 365 user and what i want is when they will connect to our vpn they will use there office 365 username and password, for authentication. example sophos client or opnvpn connect

Hello, we have an question because in the past we have problems with DNAT when configuring our two WAN-links as active/passive. As a workaround we configured the two interfaces as active/active, but now the problem is the second link (which is limited…

I'm a pulling my hair trying to figure out why our SSL VPN users all of a sudden cannot access the network resources. For the most part I moved 99% of our users over to IPsec VPN setups but in some cases, like accessing from China, IPsec does not allow…

Hi, I cannot find instructions on how, if possible at all, create Site2Site VPN tunnel, from Sophos XGS outbount to OpenVPN server. This is for IP phone service, I created one LAN port for local phones, MASQ via WAN interface....and now I nned to create…