When will SFOS support IKEv2 for Remote Access? I was expecting a technical problem when I tried to enable IPSec RA and it did not allow me to select the default profile. I could not believe, this is not supported on a modern firewall. Vivek Jagad…

I need some assistance please. Also i am new here, in the community. My ipsec remote access sends traffic but does not receive. See the screenshots of my configuration:

Hi guys I can't see the wood for the trees -- so please forgive me this (probably stupid) question: When using PSK for IPsec without certificates, everything is working properly. It asks for password (or I save my password) click Connect and it works…

Hi folks, I did setup a remote access IPsec profile with a uthentication type digital certificate. The local certificate was created with a CSR by the firewall with help of OpenSSL under Linux and the remote certificate as described in docs.sophos…

I came across a couple of these threads mentioning that commenting didn't work in JSON, but it will as long as you put them in the right area. If you put the comments just outside the child set, then it will import the SCX without an issue. Example…

Sophos XG XGS116 (SFOS 20.0.2 MR-2-Build378) has problems with ipsec vpn. The Sophos Connect client shows "No response from gateway [Adress]" So we took a look on the firewall at "Administration" and "Device Access". Here we have IPSec selected. …

Hi, Good day! I am looking for guidance regarding my network configuration involving two ISPs connected to my firewall. One set as active and the other as a backup. This setup has enabled us to utilize Remote IPsec VPN effectively. I am currently…

We use Remote acces VPN with our XGS2100 (SFOS 20.0.2 MR-2-Build378) and Sophos Connect client. All VPN Connections disconnect after 30600 seconds oder 8,5 hours. In the Profile we do not have any lifetime or margin set to this value. Phase 1 Key…

Sehr geehrte Community, ich habe ein Problem mit iPadOS und der IPsec-VPN-Verbindung in Zusammenhang mit der Telekom. Beim Versuch, einen VPN-Tunnel von meinem iPad aufzubauen, gelingt dies nur unregelmäßig. Lediglich (geschätzt) 2 von 10 Verbindungsversuchen…

Hello Sophos Community, Is there any documentation or procedure to troubleshoot end user disconnection from our remote access IPsec VPN? I have been looking on how to look at the firewall logs but I couldn't finds anything usefull.

I have configured Remote Access VPN - IPSEC and I am able to establish a connection via the Sophos Connect app. However, I am unable to talk to any LAN devices connected to the Sophos XG 125W. Here are my configuration settings: 1. Remote Client…

Hello, with the patch from Microsoft KB5040434 07/2024 there are problems with Radius authentication for L2TP. Without the patch, the client connection works without any problems. What can we do? Best Regards Dieter

Hallo, how is it possible to control the IPSEC Remote VPN Access time-based on the XGS, so that the users can only establish a connection at certain times? Thank You!

Hi there, After the firmware update to SFOS 20.0.1 MR-1-Build342, we have rolled out the Sophos Connect Client v2.3.1. It turns out that DNS resolution does not work with IPsec. It looks like the wrong DNS servers are being entered here (ipv6). With SSL…

Hi Everyone, I can't figure out why can't I access any of my servers over VPN (IP Sec) after expanding my network from /24 to /22 I'm running SFOS 20.0.1 MR-1-Build342 Here's my setup: Before network expansion Network, LAN Zone, IPv4/netmask…

I have the same problem as described in the following post: RE: LLMNR disabled - DNS resolution no longer works over VPN I have now updated to 20v1 MR1 and installed the current Connect Client. Unfortunately, the error is still not fixed with Sophos…

Every time I wanted to connect to a VPN via Sophos connect the connection was established for the first time but then the Sophos TAP Adapter card displayed unidentified network, The temporary solution is to deactivate/activate the card to be able to connect…

Hi I am trying to ping/RDP L2TP client from Main office but unable to access but through L2TP client I can access my office network. Thank you Policy tester Rules and policies NAT Rule

Hello I have Paralels Windows machine on MAC and I cannot install Sophos Connect. The message is Sophos Connect Setup Wizard ended prematurely MAC OS SONOMA ver. 14.3 Paralels ver. 19.3.0(54924) Windows11 ver 22H2 Sophos Connect ver. 2.3.0 …

I have a Sophos that has a publicly accessible IP address which I will call 47.x.x.x, and this same IP is also publicly reachable via DNS name which I will call myhost.com. I have IPsec set up and working on my Sophos v20 firewall. I have Sophos Client…

Hello, regarding to this post: LLMNR disabled - DNS resolution no longer works over VPN when will version 2.3 of sophos connect be published? kind regards

I reviewed this : Force specific websites through VPN tunnel? This works for SSL VPN. However adding a host IP under IPsec Remote Access does nothing. Also cannot add an FQDN host under IPsec Remote Access under v20. Is there any way to get this…

Hi, as we can read in multiple threads, Sophos does not think multi-user devices are important. Sophos Connect with multiple users on the same PC - Discussions - Sophos Firewall - Sophos Community Sophos Connect client multi-user environment: usage…

We have a sophos xgs with several ipsecn vpns site to site running. the Sophos XGS is responding to some VPNs that are without fixed public ipv4 adresses. One VPN incoming has no fixed static ip adress, but i need to enter that ip-adress at xgs to…

With Sophos Connect Admin I can modify Target host definition for IPSec remote access connection. With XG I can do same already on XG for SSL VPN (Override hostname). However, I cannot override hostname for IPSec remote access configuration via Web-console…