Hi I am using XG-115 as my firewall and already got number of rules. I also have a couple of VLANs. I followed the below guidance given by Sophos tech support team. The rule works well with individual hosts. but when I replace the individual host…

Hello, I need your help for making chromecast work again on my LAN. I had to restrict the protocols on my LAN. My current setup is: Sophos XG, all devices on the LAN are allowed to use: http, https, smtp, smtps, imap, ping: As a result,…

SFOS 19.5.1 MR-1-Build278 I was checking the logs when I noticed this strange peculiarity, in the log, the "firewall rule" is actually the firewall ID #. The log is showing that the firewall rule with the name "Allow outbound" is firewall rule 1,…

For user based firewall rules, how to match users - that is add users to authenticate in a database? I added an "any" "any" rule to allow all traffic to pass through, but it does not work, any possible reason why? Does sophios have any cli interface…

hi all, got a DNAT like below, blanked the fields out due to privacy do i need to change my inbound interface and outbound interface to the correct ISP as i have two ISPs, so it could be going out wrong ISP, or will it pick the right ISP to go out…

Hi All, I am new to Sophos XG coming from pfsense and have to say I will be staying, great NGFW. I have a slight issue though, one which I am sure is simple to solve. I have used the server access assistant (DNAT) to create a port forward rule from…

Hi, I am using Sophos XG firewall with Airtel ISP static IP now, when I am configuring Sophos XGS firewall OS its not pinging gateway even. But i have tested with old sonicwall firewall its no issues, even Sophos UTM 9.0 has no issues like this, Kindly…

Hello all, I have a little issue with some traffic internet traffic getting denied by my Sophos firewall but I couldn't understand why. Example 1: Some traffic from a internal computer to Internet doesn't match anything even if my Internet access…

Hi, Our server connects remotely to get files from an FTP server. The outbound connection goes fine, but then inbound connection to port 20 is blocked. How to properly create a firewall/NAT rule for this? This is what happens in firewall logs…

Hi, is there any option to extend column Names in Rules and Policies section, so we can see full name of each rule, rule group ? We need to use filtering to make it clear, otherwise it is one big mess. How u guys workaround this lack of feature ?

Hello all, I have created two new zones on my Sophos and would like to have communication between them. I have already created the firewall rule and selected zone 1 as source and zone 2 as destination. Unfortunately I can not get there into the other…

Dear All, Would like to seek for your help, i have the following firewall rule from Sophos 17.5, i would like to create the same rule in Sophos version 19.5, how do i create it under firewall rule + NAT rules for the following ? any help would be…

By default, the agent's port is 161 and the manager's port is 162, but many internet operators here in Brazil leave this port blocked, which makes it impossible to access the firewall's SNMP. How to change this default port?

HI, if it possible to enable/disable firewall rules via cronjob. The customer wants certain firewall rules to be deactivated every evening, the rules are activated manually upon request. I was able to do that on the SG, it was possible to turn on…

Hello, i have issue with v19.5 , i have server in DMZ zone there's a connection between the server the other in other subnet and i made a rule for this, and working fine, and there's rule LAN TO WAN for this server , the problem is when i create SD…

I need to route a single host through a WAN that is not the default wan. In the previous firmware version I just had to create a firewall rule and specify the gateway, but now...I'm lost. I've followed this article Sophos Firewall v19: How to Choose…

Is it possible to display only those firewall rules that have this setting for user/group "Any"? I could not find a filter that worked. we're on SFOS 19.0.1

I'm trying to access an FTP server located in our Server Zone from our DMZ Zone (passive mode). When the server initially responds from port 21 to the initial connection, the connection is being blocked by Sophos XG - "FTP-bounce attack" but I have…

Dear All, I currenty running a virtual sophos FW in esxi with version 19.0.1 MR-1-Build365, and i already have another internet gateway which using palo alto, this sophos i want to act as Internet Proxy, in client computer its will need to have below…

Good day Team Using Sophos XG 310 V19 Users are not able to access a service using the SAP business, outside the local area network, using the SAP router. We use code nwbc. We have created a DNAT for the server. we getting the error below

Hello I have SOPHOS XG 19.0.1 firmware which i have upgraded version due to facing issue, one web which was working earlier suddenly stop to work and not getting access from the public network. I took support from tech, but they also not able to understand…

I'm migrating from Sophos UTM to Sophos XG ( SFOS 19.5.0 GA-Build197 ) and I cannot get my work machine, which uses MS Alwys-on-VPN, to conmnect when I switch between the UTM and the XG. On the XG: Port 1 is the LAN, Port 2 is the WAN. I have a work…

Hi there, I'm struggling with a problem that i don't really understand. In the DMZ is SFTPGo App, which provides a FTPS server. From external (NAT) through port 21, works TLS or unencrypted connection. From internal, although test LAN DMZ to SV is set…

After adding firewall rule to allow protocols , Bitdefender vpn clients on desktops still fail, live logs show no blocking of the protocols after the rule addition also? Has anyone experienced this issue previously and resolved it?

I have a synology server at home with adguard home. I created the rules in sophos xg (I think I missed something) because when the lan connection uses the ip of the synology server where adguard is, I can't access the website, when I change the dns server…