Hello, I have problems with a few clients to access some pages. In the browser appears a SSL_PROTOCOL_ERROR. In the log viewer in the module SSL/TLS inspection appears the error "Dropped due to TLS engine error: OUT_OF_MEMORY[201". For some the error…

I can't print when Mac and Printer are connected through XG Firewall's bridge. Mac - XG br0 - Printer I can print by disabling SSL/TLS engine. Or I can print by disabling IPv6. IPPS (Internet Printing Protocol over TLS) is used for printing. When…

We're having a strange situation again after it happened last week already on our SFOS 19.0.1 XG430: Some users browse to a website that has no exceptions on our firewall for decryption. The browser (firefox or chrome) show an error that the site…

I have an application, Parallels Access, that as part of its login process connects to different Parallels websites. I am getting the error "Blocked due to using client certificate" that then fails the connection, and I can't log in to the Parallels server…

hi, i have XG430 , created a firewall rule and selected with following web filtering checks: Block QUIC protocol Scan HTTP and Decrypted HTTPS Scan FTP for Malware Decrypt HTTP during web proxy filtering. SSL and TLS inspection is enabled when user…

Hello everyone, I am brand new to Sophos. I have a home license version deployed in my home lab and evaluating to see if I want to move my business over to sophos from fortinet. My issue is I don't think DPI is working. From everything I read, it…

Hello, i installed yesterday the firmware. After that i was faced with following issue: In SSL Inspection i habve 3 rules in the following order: 1. Exclusions by website 2. a rule with no decryption enabled from LAN with the Range of Smartphones…

Hey there, We've got a weird issue with one application failing because it looks like the XG isn't forwarding the TLS packets appropriately on one link. A: XG135 (SFOS 19.0.1 MR-1-Build365) 10.109.10.250 B: XG330 (SFOS 19.0.1 MR-1-Build365…

Ich bekomme beim Aufruf von Links - die als Anzeige markiert sind - bei der Google-Suche einen Datenschutzfehler: Ihre Verbindung ist nicht privat. Angreifer versuchen möglicherweise Ihre Informationen von 192.168.100.254 zu stehlen (z. B. Kennwörter…

Hello, At work I have a situation that Sophos Support has been unable to resolve. We use Addigy as our RMM for Apple devices, to have remote connections it uses Splashtop. We have not able able to add sufficient exceptions or maybe I am doing…

Hello Sophos Community, I got a Question about designing specific Rules for Applications that are very untransparent how they handle SSL Fingerprinting. Example: From: LAN Zone - From: Specific Host - With Application A (Application RULE 1) - To…

Hi all I am having difficulty troubleshooting a problem with a request from a mobile phone 2-factor authentication app being blocked by our XG firewall (XG125 SFOS 19.0.0 GA-Build317). To test this, I have created a new top-most firewall rule for…

Hi, today we're facing something new: issues when rolling out the Sophos Endpoint to Mac Books. Windows Endpoints: no problem. They fail to install. Workarounds like https://support.sophos.com/support/s/article/KB-000044045?language=en_US were unsuccessful…

Hi, I am seeing these errors in the log for some websites which tend to utilise tracking information, particularly those which utilise a CNAME record to point to another address. For example, the website t.myrenews.com.au is a CNAME that resolves…

I've continued this post in "Looking at awarrenhttp_access.log for FQDNs" as I was having problems doing that, and through that post I found a domain that pointed me in the right direction, but is still ongoing in trying to fix the issue with Parallels…

Hello, I would like to enable SSL decryption and I am hoping to have this rolled out before July. There is a mix of all kinds of devices: I think I handle certificate installation on most devices. I know I won't be able to do that on some devices…

I appreciate that other people have raised this issue before, but I am having problems with a specific IOT device trying to send a data packet to the cloud. This particular device (which reports the salt quantity in a water softener) causes the following…

Hello, I have an online portal from one of our partners which uses port 5443. The traffic to this site is being denied by application filter on account of "SSL Traffic over Non SSL Ports" Allowing this specific application under the category…

Good Day All, I need some advice regarding SSL\TLS inspection. I have decided to open\allow access to Reddit. With the appliance certificate installed one is able to browse to Reddit and all subreddits with no issues from what I can see. However…

Hello, I'm currently using SFOS 18.5.2 MR-2-Build380 I noticed the same thing in SFOS 18.5.1 MR-1-Build326 When using the new DPI engine (with or without decryption does not matter) I also see this on multiple devices with different OS (Windows, IOS,…

Hi, When downloading this: http:// plan.getsmartday.com (Needs to be done from Edge) The installer starts but get's cancelled during the download. I have tested on 3 sites all with Sophos Firewall 18.5.1, 18.5.2 and 19.0.0, all the same, disabled…

Hi, until last week i've used only the web proxy funcionality. Now i've configured the SSL/TLS Inspection and have a strange behavior. The Veeam Backup and Replication Server (Backup03 - in Backup-LAN) can backup the ESX-Server in LAN. But the Veeam…

Hi All I am facing a strange error whereby there are no logs in the SSL/TLS inspection even though it SSL inspection is enabled and sophos is MiM the tls traffic. SSL Traffic is sucesfully decrypted on the end client using a custom CA. Logging in enabled…

I would not expect this on a Sophos machine: 2021-11-25 16:32:12SSL/TLS inspectionmessageid="19017" log_type="SSL" log_component="SSL" log_subtype="Error" severity="Information" user="me" src_ip="xxxxxxxx" dst_ip="23.36.239.66" user_group="xxxxxx…

Hello all, first of all our config: XG210 HA (SFOS 18.5.1 MR-1 build326). We currently have the following problem: Web Proxy off, DPI on: good performance, no noticeable limitations except for one application. The application is called WRIKE and is…