• Restrict SSL VPN to WAN Alias

    Brennan Kostyniuk
    Brennan Kostyniuk
    I'm trying to configure an SSL VPN. Our WAN subnet has 5 IP addresses, with 4 aliases set up for the additional IPs: Port2 Port2:0 Port2:1 Port2:2 Port2:3 Currently, I have a web server running on Port2:0 . I want the SSL VPN to run…
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • SSLVPN login issue always logout

    mitssupport mit
    mitssupport mit
    Hi, Every month, when users change their Windows password, the VPN credentials do not update automatically. On the administration side, we have to delete the User, purge the AD users, and re-register them again. We have already tried setting the …
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XG Alias Interface not showing up, SFOS 21

    dmuller
    dmuller
    Hi all, I created a new alias interface but missed on digit, so the address doesn´t belong to a existing interface configuration. Now I cant delete that alias because its not showing up in gui. Is there a way do get rid of that alias via console?
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS v20.0.2 - Heartbeat service dead - Decryption of passphrase is failed

    Jens Frankiewicz
    Jens Frankiewicz
    Hello, we performed a firewall migration from an XG450 model to the XGS4500 model last weekend. The firewalls are in a HA configuration. The migration process worked seamlessly. The primary firewall is working with no issue, all services started. To…
    • Answered
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS Delete a group imported from the AD

    admin_idl
    admin_idl
    Hello everyone, We have imported groups from the AD on the XGS and now wanted to tidy up a bit and remove various AD groups from the firewall again. When trying to delete the groups we get the message: Thank You!
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • Ha || sophos with dell switch connectivity

    SatyabrataB
    SatyabrataB
    Hi, below diagram right now we have one firewall and one core connectivity we need to change to active passive mode i have some query regarding configuration. switch to firewall A1,A2 port will connect what i need to configure in firewall ports…
    • 20 days ago
    • Sophos Firewall
    • Discussions
  • XGS 2300 Lockup

    Kent_166
    Kent_166
    Hi all, I had our XGS 2300 hard lock today, display buttons didnt work on the unit and no lan/wan connection on the interface, i've lodged a case and waiting a response. I've been running 21.0 GA build 169 and it's been running fine, also have been…
    • 21 days ago
    • Sophos Firewall
    • Discussions
  • Upload of firmware SW-21.0.0_GA.SFW-169.sig to Sophos XG SFVH fails

    Posbis
    Posbis
    Hi I tried do upgrade my "SFVH_VM01_SFOS 20.0.2 MR-2-Build378" Sophos XG SFVH VM to XG 21 using the SIG-File SW-21.0.0_GA.SFW-169.sig from Sophos downloads. The Upload starts and then I see a red message banner saying: New firmware could not be…
    • Answered
    • 21 days ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Multiple Gateways Oder

    RTW IT
    RTW IT
    It seems there hasn't been a solution for years: we have two gateways, Port4 and Port5, and we only want to use the gateway on Port5 for SSL VPN. However, the .ovpn file ALWAYS includes both gateways, with Port4 listed BEFORE Port5. We then have to manually…
    • Answered
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • V21 DHCP Relay

    Administrator User327
    Administrator User327
    Hello everyone, since the update to V21 the DHCP relay no longer works. Can anyone help here?
    • 21 days ago
    • Sophos Firewall
    • Discussions
  • External Partners Accessing DMZ

    Reem Jalal Eddine
    Reem Jalal Eddine
    Hello, Need your recommendations, we want to implement a SFTP server to exchange data from and to one of external partners. I am planning to add the server to DMZ group and just restrict FTP protocol to it. Create a NAT rule also i want to force the…
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • Xstream License - License Migration from XGS 107 to XGS 108?

    Matjaz Lorber
    Matjaz Lorber
    Dead Community, Dead Sophos Team, now with the 2. gen XGS devices, i would like to upgrade my current XGS 107 FW, where i already have a 3 year subscription for Xstream. Is it possible to migrate the current license(s) to the new device without…
    • 23 days ago
    • Sophos Firewall
    • Discussions
  • Ring topology using Sophos Firewall

    Mayuresh Bhagwat
    Mayuresh Bhagwat
    I have a customer who has 4 Sophos Switches and 1 Sophos Firewall. He intends to connect them in a ring with Firewall as a Gateway. So here is the planned setup: Sophos XGS Firewall as Gateway with 2 interfaces as bridge mode: Port 1 Bridge Mode on…
    • 23 days ago
    • Sophos Firewall
    • Discussions
  • uploading firmware - banner shows confusing message "applying firmware"

    LHerzog
    LHerzog
    Whenever I upload a firmware, and see that banner I'm a bit shocked and ask myself if I clicked the wrong button and the machine will now reboot? Can you change the text so it shows uploading, not applying?
    • 23 days ago
    • Sophos Firewall
    • Discussions
  • XG 210R3 EOL. How does a partner update their in house Hardware?

    GarryGalon1
    GarryGalon1
    Hello all. I just received my apparently last NFR License for my XG 210-REV3. It's good until the end of March 2025.How do we go about getting replacement hardware? It's such a shame because this 210 is in MINT condition, and absolutely nothing wrong…
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • Update certificates via API

    l0rdraiden
    l0rdraiden
    I have my certificates in a folder and I'm looking for a script that will update them when there is a change so that waf will continue working without manual intervention. I have very little experience scripting, I can read and understand more or less…
    • 23 days ago
    • Sophos Firewall
    • Discussions
  • Cloud application list empty

    David Kucera
    David Kucera
    Hello, it seems I have missed something, on all my firewalls "cloud application list" is just empty. Application control is being populated but the cloud part has nothing in list or graphs. Would anyone be so kind to advise? All are XGS 107 with…
    • Answered
    • 23 days ago
    • Sophos Firewall
    • Discussions
  • How to download packet capture created from DUI Diagnostic page

    Brennan Kostyniuk
    Brennan Kostyniuk
    Is it possible to download the packet capture created via the GUI?
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • Allow external IP range and ports

    Bradley
    Bradley
    Hi all, We are having a few problems with our VOIP phones. I believe it may be to the firewall, but I not 100% sure. I need to allow an IP address range and some ports. I have created a firewall rule, but I cannot see that any traffic being logged…
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • v21 - Custom Web Reports buggy and not usable

    Peter Riederer
    Peter Riederer
    When trying to create a custom web report on one of our XGS136, sometimes it works sometimes not. And If you are using a time frame from 8-10 e.g. no results shown. etc. or when switching from summary to detail, detail does not show anything. …
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • Multi-WAN Active/Passive configuration

    Kiran Jedhe
    Kiran Jedhe
    Hi, I need to set up my v20 OS firewall in active-passive mode. I've already done some configuration, but I'm facing issues with automatic failover due to using "Any" in the NAT rule. Can you provide a straightforward solution using SD-WAN or WAN Link…
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • SSL VPN - One connection to 3 sites

    Cleyton Goncalves
    Cleyton Goncalves
    Hi. I need to implement a feature where my client can use the Sophos client with a single connection profile (a single imported .ovpn SSL VPN file) but pointing to 2 different locations . If the first IP fails, it will establish itself in the second…
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS: DNAT Through Routed VPN

    FMXio
    FMXio
    Hello everyone, I am attempting to redirect all requests made to 192.168.10.5 to 172.16.10.5. The VPN is working properly on both sides. Sophos XGS: DNAT Through Routed VPN Details: #VPN Working 100% LOCAL-LAN: 192.168.10.0/24 (Sophos) REMOTE…
    • Answered
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • VPN with Authentication Active Directory with enumeration blocked

    Tecnologias Imaginadas
    Tecnologias Imaginadas
    Hi. Anyone has configured Sophos XGS SSLVPN with Active Directory Authentication on AD with enumeration blocked? After configure Server on XGS I can authenticate and retrieve groups/users without problem... My problem appears when try to authenticate…
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • How to Route Traffic through LAN Alias, using them as Virtual Gateways

    Alexandros Livas
    Alexandros Livas
    Hello Team, i have a problem in this scenario. I have configured: LAN1: (Physical interface) 192.168.1.1 LAN1:0 (Alias Virtual Interface) 192.168.1.242 LAN1:1 (Alias Virtual Interface) 192.168.1.241 ISP1: (Configured on WAN Physical interface…
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>