I'm trying to configure an SSL VPN. Our WAN subnet has 5 IP addresses, with 4 aliases set up for the additional IPs: Port2 Port2:0 Port2:1 Port2:2 Port2:3 Currently, I have a web server running on Port2:0 . I want the SSL VPN to run…

Hi, Every month, when users change their Windows password, the VPN credentials do not update automatically. On the administration side, we have to delete the User, purge the AD users, and re-register them again. We have already tried setting the …

Hi all, I created a new alias interface but missed on digit, so the address doesn´t belong to a existing interface configuration. Now I cant delete that alias because its not showing up in gui. Is there a way do get rid of that alias via console?

Hello, we performed a firewall migration from an XG450 model to the XGS4500 model last weekend. The firewalls are in a HA configuration. The migration process worked seamlessly. The primary firewall is working with no issue, all services started. To…

Hello everyone, We have imported groups from the AD on the XGS and now wanted to tidy up a bit and remove various AD groups from the firewall again. When trying to delete the groups we get the message: Thank You!

Hi, below diagram right now we have one firewall and one core connectivity we need to change to active passive mode i have some query regarding configuration. switch to firewall A1,A2 port will connect what i need to configure in firewall ports…

Hi all, I had our XGS 2300 hard lock today, display buttons didnt work on the unit and no lan/wan connection on the interface, i've lodged a case and waiting a response. I've been running 21.0 GA build 169 and it's been running fine, also have been…

Hi I tried do upgrade my "SFVH_VM01_SFOS 20.0.2 MR-2-Build378" Sophos XG SFVH VM to XG 21 using the SIG-File SW-21.0.0_GA.SFW-169.sig from Sophos downloads. The Upload starts and then I see a red message banner saying: New firmware could not be…

It seems there hasn't been a solution for years: we have two gateways, Port4 and Port5, and we only want to use the gateway on Port5 for SSL VPN. However, the .ovpn file ALWAYS includes both gateways, with Port4 listed BEFORE Port5. We then have to manually…

Hello everyone, since the update to V21 the DHCP relay no longer works. Can anyone help here?

Hello, Need your recommendations, we want to implement a SFTP server to exchange data from and to one of external partners. I am planning to add the server to DMZ group and just restrict FTP protocol to it. Create a NAT rule also i want to force the…

Dead Community, Dead Sophos Team, now with the 2. gen XGS devices, i would like to upgrade my current XGS 107 FW, where i already have a 3 year subscription for Xstream. Is it possible to migrate the current license(s) to the new device without…

I have a customer who has 4 Sophos Switches and 1 Sophos Firewall. He intends to connect them in a ring with Firewall as a Gateway. So here is the planned setup: Sophos XGS Firewall as Gateway with 2 interfaces as bridge mode: Port 1 Bridge Mode on…

Whenever I upload a firmware, and see that banner I'm a bit shocked and ask myself if I clicked the wrong button and the machine will now reboot? Can you change the text so it shows uploading, not applying?

Hello all. I just received my apparently last NFR License for my XG 210-REV3. It's good until the end of March 2025.How do we go about getting replacement hardware? It's such a shame because this 210 is in MINT condition, and absolutely nothing wrong…

I have my certificates in a folder and I'm looking for a script that will update them when there is a change so that waf will continue working without manual intervention. I have very little experience scripting, I can read and understand more or less…

Hello, it seems I have missed something, on all my firewalls "cloud application list" is just empty. Application control is being populated but the cloud part has nothing in list or graphs. Would anyone be so kind to advise? All are XGS 107 with…

Is it possible to download the packet capture created via the GUI?

Hi all, We are having a few problems with our VOIP phones. I believe it may be to the firewall, but I not 100% sure. I need to allow an IP address range and some ports. I have created a firewall rule, but I cannot see that any traffic being logged…

When trying to create a custom web report on one of our XGS136, sometimes it works sometimes not. And If you are using a time frame from 8-10 e.g. no results shown. etc. or when switching from summary to detail, detail does not show anything. …

Hi, I need to set up my v20 OS firewall in active-passive mode. I've already done some configuration, but I'm facing issues with automatic failover due to using "Any" in the NAT rule. Can you provide a straightforward solution using SD-WAN or WAN Link…

Hi. I need to implement a feature where my client can use the Sophos client with a single connection profile (a single imported .ovpn SSL VPN file) but pointing to 2 different locations . If the first IP fails, it will establish itself in the second…

Hello everyone, I am attempting to redirect all requests made to 192.168.10.5 to 172.16.10.5. The VPN is working properly on both sides. Sophos XGS: DNAT Through Routed VPN Details: #VPN Working 100% LOCAL-LAN: 192.168.10.0/24 (Sophos) REMOTE…

Hi. Anyone has configured Sophos XGS SSLVPN with Active Directory Authentication on AD with enumeration blocked? After configure Server on XGS I can authenticate and retrieve groups/users without problem... My problem appears when try to authenticate…

Hello Team, i have a problem in this scenario. I have configured: LAN1: (Physical interface) 192.168.1.1 LAN1:0 (Alias Virtual Interface) 192.168.1.242 LAN1:1 (Alias Virtual Interface) 192.168.1.241 ISP1: (Configured on WAN Physical interface…