Hey Dears, I have a Sophos firewall version 19, I want to ask if i can deauthenticate an Ip shown in DHCP leased list to force it to obtain new Ip or disconnect it immediately? Thanks

Does regenerating the Appliance Certificate affect any other access besides SSL VPN? This is my issue, we recently had our XG210 replaced and rebuilt the new unit with a backup. Prior to the firewall failure SSL VPN has been my goto setup for staff who…

We are fairly certain the setup is correct and the FW rules are in place, but remote access user cannot see internal resources on the LAN (other than the SOPHOS FW) when connected. After SOPHOS Connects successfully establishes the tunnel, the user can…

Hi, I'm new to Sophos V19. I have 2 wan links from different ISPs. I don't want to do any load balancing. All I want to do is to access some websites using wan1 link, and some other websites with wan2. I was able to do this in previous versions…

Good day together I normally look after Zyxel firewalls, but I was now allowed to take over a Sophos customer from a former colleague. I would like to switch this customer from IKEv1 to IKEv2, but I don't want to make a hard switch. So that the customer…

I used to connect my clients behind the XG to various PPTP servers outside. Didnot use it for 1-2 years. Now while connecting, none of the connections work. During this period, I might have upgraded XG from 18.x to 19.x. So now PPTP pasthrough is…

We have a Sophos firewall xgs 2300 v19.00, the firewall is configured VPN to branches, machine at the branch office are failing to activate ESET endpoint.. at the head office we have a ESET server

XGS 136 and 19.x firmware. Didn't find universal info how to generate proper CSR and how to import the public SSL Certificate to XGS For Request / Subject name attributes: Common name: domain name or FQDN including the host name? For Request / Subject…

i've updated sophos Fw to the latest version v 19 , and i noticed that my cloud services stopped working for Hyper V replication or for Veeam azure stockage . so i tried to look into the Firewall and i found some declined packets whenerver i force replication…

Connecting from an Android Mobile via IPv6 only carrier (Telstra) network (single stack) to Sophos XG19 via SSL VPN seems to create some strange issues. The Sophos XG firewall has a single IPv4 gateway address that the client connects too without any…

After extensive tracing of the traffic, what happens is that XG receives the packet, but it does not encapsulate it to send over the xfrm interface. this is from the server side: this is from the client side: where you can see that IP packet…

Is it possible to change the interval of sending the Alert emails for new Firmware. Current, it's sending all 4 - 5 hours these Alert mails, if there is an update available. It would be enough, when these mails will be sent just once a week.

Dear All, I recently deployed a Sophos XG with version 19, i want this Sophos to act as direct proxy and behind the internet gateway, below are the configuration i created, and i tested with proxy enable on one of the user computer with proxy setting…

I tested a VM with XG home Edition and I was pretty happy with it that I decided to order a physical firewall to get a real protection instead of virtual. I ordered a XGS 116 and I got really disapointed by the noize of the device. I plug the device…

Apologies for my poor understanding on routers and English language. XG210 19.0.0 GA-Build317 We have 3 public IP address ranges from 3 ISPs assigned to 3 WAN ports. Is it possible to reach our ISP-1's IP address range via ISP-2, ISP-3 WAN when…

I need to route a single host through a WAN that is not the default wan. In the previous firmware version I just had to create a firewall rule and specify the gateway, but now...I'm lost. I've followed this article Sophos Firewall v19: How to Choose…

Hi, We have 2 Wan Ports with load balancing. We would like for specific websites to go through port WAN2 but all other traffic (other websites) to use the load balancing ratio we have set up. Sophos XG 135 V19.

Good day Team Using Sophos XG 310 V19 Users are not able to access a service using the SAP business, outside the local area network, using the SAP router. We use code nwbc. We have created a DNAT for the server. we getting the error below

I have a problem where I am unable to ping google and it somehow seems as the firewall is missing a route back to my client. My client is inside a VLAN (172.16.87.99) and from the traffic below I can see that it correctly routes to the gateway address…

We have conducted a security analysis of a company's infrastructure and obtained the passwords of the following XG users. Now I have the following questions: 1st - Can the password of these users be changed to more secure ones? 2nd - Can they…

Hi All, One of the customers has a few VoIP phones in the premisses and I'm struggling to configure the connectivity between phones and the router I don't know whether this is a simple question or not but I need some help. ISP sip trunk port IP Address…

Hi everybody, I have done an Update from SFOS 18 to SFOS 19 and since the Update I am not able to connecto to SSLVPN any more. In CLI I can see that all incomming Packets are dropped for SSLVPN when running ( drop-packet-capture "port 1194"). But…

Hi, community. I have an issue with my failover VPN to Azure. I have an XG210 v19, connected to 2 ISPs. I have a VPN connection to Azure cloud for SAP services. As recommended for Sophos, I created the VPN as tunnel interface, with xfrm interfaces.…

Hi, I have Sophos Firewall v19 and a internally computer that needs to connect to Azure SQL using SQL Server Management tool. If I create a rule that allows the computer outbound on destination ANY service, it connects, great. I want to lock it…

Hello! We have noticed since XG V18.5 that the Sandstorm/Zero-day file download scanning page no longer shows. In previous versions when a user downloads a file a Sophos web page appeared letting the user know that their file was being scanned and would…