Hi All, newbie in Networking. Currently, we have this network setup We are planning to get an additional ISP exclusive for one of our departments. Is it possible to connect another modem(ISP) to our router and which configurations should I do to…

Hello everyone, I have the following network map layout: I use a dual-WAN bandwidth aggregation configuration rather than a failover one for most of the interfaces. However, I look forward to assigning my TrueNAS server (VLAN 9) to only use WAN…

Hello, I hope somebody can give me a hint... I got a 18.5.2 with 2 seperate WAN links and I want some clients to use link1 default, failover to the second if it is not available. I also managed that, BUT: I couldn't find a way to tell SD WAN…

Hey All, I was kinda wondering, I Sophos V17 you could select the NAT on the FW rule itself and that that's the route it would take But now in V18 its separated, If you have one link can you add NAT rules on its own with no SD WAN routing would…

HI, We have 3 ISP(ISP1, ISP2 and ISP3) connected to our firewall in our HQ. In our HQ we have at least 5 subnets. My question is can i let some subnet to utilize only ISP2 for internet, not just internet but fully utilize the link. The other link i…

Kindly help. I configured a load balance on two ISP links for my users. Among those users, I want some specific users to make use of just one of the ISPs only whole the rest use both. How do i go about it in v18 because it is very easy in v17. …

Hi, i try to configure a SD-WAN Route for a failover scenario with 18.5.2. There is a VPN Setup for a Branchoffice with a listener/gateway IP configured. Clients are on the local subnet and communicate with the Hostingsolution over VPN. Now the…

Hello, I would like to change the Load Balling in my Firwall rule which has a migrated NAT rule. In the NAT rule I cant ch age anything. How can I chnage this? Thank you!

I've recently taken a closer look at the SD-WAN route settings. In the Help section it states the following: The heading in the SD-WAN section states that the default route is SD-WAN > VPN > Static This means that I must specify the Internet IPv4…

Hello, our partner tried to implement Policy Based Routing on IPSec Tunnels. The induividual policies for the tunnels seemed to be okay but we ran into the problem that there was an issue with a Policy Route from Source Any to Destination Any where we…

Hello, I have a sophos XG in beta v19, I wanted to test the SD-WAN routes but I can't get it to work. I have three WAN accesses and for my sdwan route test I just created a rule that routes all nperf (fqdn) traffic to a specific wan. My rule is not…

hi all, under "routing > SD-WAN policy routing > add" incoming interface - you can only select one interface from the drop down menu but under "rules and policies > NAT rules > new nat rule" you can select multiple "inbound interfaces" just wondered why…

hi all, we have quite a few LANS on LAN/DMZ zones and two WANS i want one specific LAN (dmz zone) to go out WAN2, obviously i know i need to create an SD WAN, SNAT MASQ and firewall lan to wan rule for this (below) https://community.sophos.com/sophos…

Hi all I have 2 WAN, 1. WAN1 2. WAN2 I wan to use WAN1 for these group of internal IPs(192.168.0.5 - 192.168.0.10) and WAN2 for IPs (192.168.0.20 - 192.168.0.30) I was able to change WAN port on version 17.5 But i can not find this function…

SOPHOS XG 125 How to create a Migrated IPv4 SD-WAN policy route and show it in the SD-WAN policy routing, and please answer with pictures .. Thank you

I have two Sophos XG Firewalls ( SFOS 18.5.1 MR-1-Build326) Both are managed by Sophos Central and I used the platform to create an SD-WAN between the two offices. I am trying to get the Branch Office XG to access the AD at Head Office in order…

Hello I've setup a new SD-20 in our office using the 4G Module that plugs into the SD-20, the unit seems to be in "failover" mode with the red status system light blinking red and others flashing green, the network is up and working i can access my…

Traffic from my LAN interface cannot go to branch even though all policies are defined correctly. But the reverse worsks. Traffic from the branch are able to reach services at HQ. What might be the issue.

I'm sure there are some great articles and other topics about this, but I am unable to find these, so I'm asking! Basically I have a site with an xg firewall running 2 internet connections, basically here is what I want to do; Move Office365 services…

I have 2 wan connections, main, and LTE. LTE is only backup, and don't want to unnecessarily use it. I have IPTV subscription, and don't want it to use the LTE when main connection goes down. I know the IP address of the TV box. Can anyone tell me find…

We have a situation that I'm not sure how to proceed correctly. This location is currently utilizing two different firewalls - a Sophos XG 310 and a Sonicwall NSA 3500. The way this was originally configured, a small switch was put in place before the…

I'm working with a client that has MPLS, a Cisco router and a Sophos XG. They plan to get rid of the MPLS at some point but for now it has to work. Site B got a Sophos XG firewall and we can get MPLS working using SD-WAN Routing and LAN devices (SiteB…

Hi all, Under interfaces I have 2 wan addresses set with there respective gateways How would I configure a lan to go out that specific wan/gateway Do I do it under outbound nat (pfsense terminology) or make a normal firewall rule ie all that lan…

Product: 2x XG210 (HA - Active and Passive) with SFOS 18.5MR1. I have a 3 Internet Connection (WAN). One is main (web browsing) and two for backup. One of two backup connection is used only for VoIP Call. I configure in WAN Link Manager in this…

hello everyone, i need help to make sure our network working properly as our need. here details. i have two private network 192.168.19.0/24 network servers [dmz zone] 192.168.17.0/24 network our employer [lan zone] and i have three wan WAN…