• Classification query

    rfcat_vk
    rfcat_vk
    Hi folks, a question for those who can provide guidance and maybe even answer. The daily report shows various classifications for NTP type traffic. 1/. 2/. 3/. I was reviewing the hairpin NAT configurations and found there were some items…
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • clientless sftp

    Reem Jalal Eddine
    Reem Jalal Eddine
    i have configured a clientless sftp policy that contains the bookmark and the bookmark contains the private and public key along with server information. I created a user on our portal and allowed it to use this policy. I did on the side another rdp policy…
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • Web filter log inconsistency

    Ilkka Ruuskanen
    Ilkka Ruuskanen
    Hi. I have a default firewall policy configured like this and web filtering is not configured to any other firewall rule. I do not use HTTPS decryption. Web filter works and I get a block message for denied HTTP sites and certificate error for…
    • Answered
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • Whatsapp images and documents

    Mohamed Arbaaz
    Mohamed Arbaaz
    Hi I have an issue whereby users cannot send images or documents on whatsapp mobile app. We have policy rules for social restriction but whatsapp i alloewd but seems not to be working
    • Answered
    • 24 days ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall v21.0 GA - Kyber TLS (Edge/Chrome) connection reset error for transparent TLS decryption

    AIFS IT Support
    AIFS IT Support
    We recently upgraded our Sophos XGS 4300 to SFOS v21. Since then, we are finding that a number of our users were receieving connection reset messages in their browser (Edge and Chrome) when attempting to access some websites with transparent TLS decryption…
    • 22 days ago
    • Sophos Firewall
    • Discussions
  • XG 115 Network Protection License Renewal

    Ebrahim Alzubairi
    Ebrahim Alzubairi
    I have XG 115 which only has an active basic protection license. Now I need to add new sd-red 20 devices. Can I purchse the Network Protection license and proceed? Will it work? Cuz one of Network specialists told me it won't work, no more licenses for…
    • Answered
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • Heartbeat over RED connection

    balletbob
    balletbob
    Hi, What's the recommended configuration for clients behind a RED? We have the the RED in SPLIT tunnel mode and have the Sophos Heartbeat IP included in the traffic sent over the tunnel. Is this right? We also have a Firewall rule for traffic to…
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XG HA Auxiliary device management address

    Svigelj Levi1
    Svigelj Levi1
    Dear Forum, I created a new active-passive HA setup which is working flawlessly in terms of basically everything, except one thing which is the auxiliary device management. For some reason i not able to reach it via the aux management ip address, when…
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • Bandwidth Limit

    Jabir V
    Jabir V
    how to allocate bandwidth limit to specific IP or IP class?
    • Answered
    • 25 days ago
    • Sophos Firewall
    • Discussions
  • Appliance Access denied

    midnightSun
    midnightSun
    Anyway to turn these off from showing in the logs? Thx
    • Answered
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • SDWAN and Loopback NAT

    Bart van der Horst
    Bart van der Horst
    Hi, I've got the following case on a customer site: Internal webserver on LAN, needs to be accessed from same or different internal LAN on the external IP, normally I use a loopback NAT rule and this works. Since a few weeks we had to switch to…
    • Answered
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • backup and restore assistant

    Reem Jalal Eddine
    Reem Jalal Eddine
    HI I have Xgs450 V20 that is running under HA. I posted long time about the ability to transfer Trunkvlans from one physical port to a lag physical port. But since i was on an older version I had to do it manually. However the project has been delayed…
    • Answered
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • problem with the external wireless network

    Yigit Belevi
    Yigit Belevi
    Hello, i create a ext. wireless network every things correct but cell phones connect it randomly.Please help me
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • AD Authentication Time-out

    Chris Burke2
    Chris Burke2
    This issue just started on Sunday, reoccurred just now. Remote VPN login times-out. I've narrowed it down to an issue with the FW connecting to AD. The "Test Connection" failed. A reboot of the FW fixes the issue (Both times). After reboot, the "Test…
    • 26 days ago
    • Sophos Firewall
    • Discussions
  • Central managed AP on VLAN can't see internet when behind a switch

    Marvin Hamm
    Marvin Hamm
    I'm trying to setup a Central managed AP to a VLAN connected SSID to my Firewall. Pos A - If I'm connected directly to the Firewall with the AP, the AP can see and serve the internet to anyone connected to it. Pos B - If I'm connected through a…
    • 27 days ago
    • Sophos Firewall
    • Discussions
  • SFOS v21 - Control Center - Reports Widget not updating

    Peter Riederer
    Peter Riederer
    Hey, on our fresh deployed XGS3300 with SFOS v21 the Reports Widget still shows 0 on all values: But you can see all information in the detailed view when click on one of the line. Is there a way to reset the view, or do i have to restart the complete…
    • Answered
    • 27 days ago
    • Sophos Firewall
    • Discussions
  • office 365 user integrate with sophos firewall

    wilfredo Capiral
    wilfredo Capiral
    Hi, im new in sophos firewall, we have office 365 user and what i want is when they will connect to our vpn they will use there office 365 username and password, for authentication. example sophos client or opnvpn connect
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • 2 WAN-Links (use primary one, and only if failover the second) - Problem with DNAT on failover Interface

    nils50122
    nils50122
    Hello, we have an question because in the past we have problems with DNAT when configuring our two WAN-links as active/passive. As a workaround we configured the two interfaces as active/active, but now the problem is the second link (which is limited…
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Network Access

    SophosNewby
    SophosNewby
    I'm a pulling my hair trying to figure out why our SSL VPN users all of a sudden cannot access the network resources. For the most part I moved 99% of our users over to IPsec VPN setups but in some cases, like accessing from China, IPsec does not allow…
    • Answered
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • Can I create VPN site2site tunnel from XGS as client out to OpenVPN server?

    Andrej Pirman
    Andrej Pirman
    Hi, I cannot find instructions on how, if possible at all, create Site2Site VPN tunnel, from Sophos XGS outbount to OpenVPN server. This is for IP phone service, I created one LAN port for local phones, MASQ via WAN interface....and now I nned to create…
    • Answered
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • How to import an external ip list into an ip host group via API

    support_einsal
    support_einsal
    Hello community, We want to fetch a list of IP addresses from a webserver and (dynamically) import them into a host group on our firewall (Sophos XGS3100 Vers. SFOS 20.0.2 MR-2-Build378 ). Our plan is to use the API along with a Python script that downloads…
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • Quarantine Digest stucks

    Dennis Kirschner
    Dennis Kirschner
    Hello, on our Sophos XGS 126 with SFOS 20.0.2 MR-2-Build378 we have the problem that all quarantine digests get stuck in the mail queue. All other mails are delivered without any problems. In SMTP logs I can find: R=router_for_notifications…
    • Answered
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • Sophos XG310 Serial Number Default String

    Pham Thinh
    Pham Thinh
    Hello, I have a previous Sophos device that was copyrighted, but now when I reinstall it, I get an error that I cannot access the web because the device serial is not recognized, and the old id.sophos management website cannot be accessed because I switched…
    • 28 days ago
    • Sophos Firewall
    • Discussions
  • a small question about understanding network statistics (CLI)

    Thomas op het Veld
    Thomas op het Veld
    on a sophos firewall (e.g. xgs136) I can view the interface statistics via the CLI. (command: show network interfaces) At the output I notice that there are many dropped packets at RX state (receive).(LAN Interface) Port1 Zonetype:LAN MAC Address…
    • 29 days ago
    • Sophos Firewall
    • Discussions
  • URL WEB categories

    Edward Raja
    Edward Raja
    When I import the url files in existing url categories, we're facing the below issue.
    • 29 days ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>