Hi! I have created an SD-WAN policy so that the devices of a VLAN go out to the Internet through a specific WAN line. It works. However, the devices of said vlan can no longer access to a device of another vlan when before the sd-wan rule they could…

Hello Community, We want to create a SD-WAN Route for WAN traffic and Internal Traffic to Data-Center. Currently we have Branch location connected to Data-Center on IPSec Tunnel created with xfrm interface and BGP for failover. Now few of our key…

Hi all, currently i am struggeling with the concept for a customer with more then 20 sites/branch offices. Current setup is with RED-Devices, but the performance and stability is really bad, so we are thinking about using firewalls instead of red…

Hello, i have issue with v19.5 , i have server in DMZ zone there's a connection between the server the other in other subnet and i made a rule for this, and working fine, and there's rule LAN TO WAN for this server , the problem is when i create SD…

I need to route a single host through a WAN that is not the default wan. In the previous firmware version I just had to create a firewall rule and specify the gateway, but now...I'm lost. I've followed this article Sophos Firewall v19: How to Choose…

Hi, We have 2 Wan Ports with load balancing. We would like for specific websites to go through port WAN2 but all other traffic (other websites) to use the load balancing ratio we have set up. Sophos XG 135 V19.

I'm having issues getting a static route or SD-WAN route to work on my XGS 116 (19.5 MR1 firmware). I am in the process of replacing aging SonicWall devices with Sophos and it's mostly going ok, except for this issue. The network layout is fairly simple…

Apologies for my poor understanding on routers and English language. XG210 19.0.0 GA-Build317 We have 3 public IP address ranges from 3 ISPs assigned to 3 WAN ports. Is it possible to reach our ISP-1's IP address range via ISP-2, ISP-3 WAN when…

While I have been configuring a Sophos Firewall, ran in a strange issue. I setup a SDWAN rule to load balance between 2 ISP links. As soon as the policy is saved, I lost access to the Firewall. I am able to access Internet through the Firewall and the…

Dear Mate, I've two links one is a static IP address another is a PPPoE connection, both links are ACTIVE connections, whenever a static IP link is down, the PPPoE connection is not working properly, it's very slow but that pppoe link is 400mbps line…

Hello dear community friends! Next, I created vpns tunnels using SD-WAN routes between the DataCenter and the Branch as shown in the image below. Both firewalls are version 19.5.0 GA-Build197 Note: They are currently disabled, as I returned to vpn for…

XG86 Firewall v19.0MR1 TLDR: When i enable SD-Wan for a certain zone to use differente Gateway all other rules on that zone is ignored I have 2 Zone and 2 Wan. First LAN zone use ISP1 and ISP2 as a backup For the Second Zone i need ISP2 default and ISP1…

I have 3 sites (A, B, and C). Site A: 172.16.16.0/24 Site B: 192.168.1.0/24 Site C: 10.23.1.0/24 Site A and B are both Sophos XG firewalls configured with a route based IPSec tunnel interface between each other Site C is remote and is outside our…

Hi, I'm experiencing a strange issue with the SDWAN routing engine. I have 2 Sophos XG connected via route-based ipsec (xfrm interfaces) and using SDWAN rules for the routing decision. The XG located at the branch office route traffic, using a SDWAN…

Hey all! I'm looking to schedule SD-WAN routes. For example, to send my traffic down one gateway during working hours but then move to another one for the evenings/weekend. It seems schedules are available elsewhere for rules, but not for SD-WAN. I guess…

We have a separate VLAN set up and working for our Guest Wifi network. Clients (mostly cell phones) receive a DHCP IP in the correct range, are segregated from any other network communication, and can get to the internet fine. What we would now like to…

Hi, I am currently changing our IPSEC VPNs from Cisco ASA to Sophos XGS, but now I am experiencing a strange behaviour regarding the routing. Route-precedence is VPN-Static-SD-WAN. Currently the ASA is handling the IPSEC tunnels so I created 3 static…

Currently, I'm using the SOPHOS XG firewall in my office There are two ISPs: a primary ISP ( SuperNet ) with a dedicated link of 40Mbps, and a secondary ISP ( Transworld Home Fiber ) with a 100 Mbps shared link, and I want to configure my voice server…

i have XG firewalls located in china and sometimes the latency of some links to sophos getting to slow so i dont get a resonse in time for example for live protetcionn right now im trying to setup a SD WAN for all sophos services, but that it work well…

Hello Community, We have this scenario where in we have a branch location and the location is connected using 2 P2P Links. At HO side we have Sophos XG330 and BO its a Sonicwall. The P2P links on XG330 are in DMZ zone, we have created custom gateway…

Dear All, i have configured two isp as below snapshot is it corect or we need to configured sdwan policy for redudancy please suggest.

Short question: What are default values for both option of "set routing sd-wan-policy-route" in the CLI? The docs could make this more clear, as they only mention, that I *can* turn both on: SD-WAN routing behavior - Sophos Firewall and set - Sophos…

I have android boxes for IPTV streaming. I can see it uses SSL Traffic over non-SSL ports, as those are the main application type that consumes a ton of data from the boxes. I have 2 WAN links, WAN1 and WAN2. WAN2 is set as BACKUP, and to activate if…

Hello Dear Partners! I configured an SD-WAN Scenario with Two VPN Tunnels and then created an SD-WAN Profiles. as the image below: I did the following Test I dropped the Main Link VPN_MTZ_1 and Sophos Quickly switched the Route to the Backup…

Hi , i have configured STAS in sophos firewall after i created multiple user based rule .if i need to used SDWAN for this user is it work or i its will work through wan link manger. i need redudancy in ISP.please help me .