We are fairly certain the setup is correct and the FW rules are in place, but remote access user cannot see internal resources on the LAN (other than the SOPHOS FW) when connected. After SOPHOS Connects successfully establishes the tunnel, the user can…

Good day together I normally look after Zyxel firewalls, but I was now allowed to take over a Sophos customer from a former colleague. I would like to switch this customer from IKEv1 to IKEv2, but I don't want to make a hard switch. So that the customer…

I used to connect my clients behind the XG to various PPTP servers outside. Didnot use it for 1-2 years. Now while connecting, none of the connections work. During this period, I might have upgraded XG from 18.x to 19.x. So now PPTP pasthrough is…

We have a Sophos firewall xgs 2300 v19.00, the firewall is configured VPN to branches, machine at the branch office are failing to activate ESET endpoint.. at the head office we have a ESET server

Connecting from an Android Mobile via IPv6 only carrier (Telstra) network (single stack) to Sophos XG19 via SSL VPN seems to create some strange issues. The Sophos XG firewall has a single IPv4 gateway address that the client connects too without any…

After extensive tracing of the traffic, what happens is that XG receives the packet, but it does not encapsulate it to send over the xfrm interface. this is from the server side: this is from the client side: where you can see that IP packet…

Hi everybody, I have done an Update from SFOS 18 to SFOS 19 and since the Update I am not able to connecto to SSLVPN any more. In CLI I can see that all incomming Packets are dropped for SSLVPN when running ( drop-packet-capture "port 1194"). But…

Hi, community. I have an issue with my failover VPN to Azure. I have an XG210 v19, connected to 2 ISPs. I have a VPN connection to Azure cloud for SAP services. As recommended for Sophos, I created the VPN as tunnel interface, with xfrm interfaces.…

Hello Everyone, My Company Use Sophos XG 210 (SFOS 19.0.0 GA-Build317) . I Connect IPSEC VPN Site to Site From Sophos XG210 To Sangfor NGAF. VPN Connection Frequent Faild This is message log : - Couldn't parse IKE message from x.x.x.x[500]. Check…

Hi, Is there a way i can export List of VPN User in SOPHOS XG v19? Thanks, Nidz

Hi Sophos, Recently, during an implementation of SD-RED 60, I was faced with an impossibility to configure a VLAN connection on the SD-RED uplink interface. Here in Portugal, ISP's provide internet connections configured with VLAN. Here an example…

Hi guys, I am using a Sophos XG v19 as gateway and try to connect via SSL VPN from a Linux notebook. I configured the SSL VPN as in the sophos own video-tutorial and I found some other tutorials showing the same steps. When I try to connect from…

Hi, please tell me if the sophos connect will be installed and configure in windows 7/8 , with Sophos XG v19 Thanks

Hi there, im struggling with a really strange issue. Maybe im also not aware how this works exactly and only need an meaningful explanation. Ive nothing so far in the KB neither on other web sites. Situation: - Remote Access VPN Ipsec configured…

Hello, I did take a look at the IPSec VPN for remote access in Sophos Firewall OS v19 and there is a value in the exported Provisioning file that i can't understand where the NGFW gets the value from. The Value is " gateway" or "address" depending…

Hey guys, following problem: We use a Sophos XGS 3300. Internal Webserver is in DMZ Zone 10.10.10.0. It has an FQDN which will be resolved to an external IP on external DNS servers and to its internal IP on internal DNS servers. From LAN and SSLVPN…

I have setup a Site to Site VPN between AWS and a Sophos firewall v19. Both sides show up and connected but AWS shows 0 BGP Routes on both tunnels. I am also unable to ping between the sites (yes I have dynamic routing and ping turned on for the VPN)…

Hi all Running a sophos XGS with a PPOE connection. Firmware is the latest 19 incl MR. MTU is set to 1500 (which I understand is minus 8 meaning 1492). On this we have an SSL VPN terminating on the XGS using TCP. Clients are Mac OS running tunnelblick…

Dear Sophos Community, we have experienced the following at a customer: Site A XGS2100 Cluster SFOS 19.0.0 GA-Build317 Site B XGS116 Cluster SFOS 19.0.0 GA-Build317 Connection via "point to point" glasfiber Provider Switch, Copper Uplink Module…

We are facing a strange issue. We have a Sophos Firewall XGS2300 running on SFOS 19.0 with a single ISP link. Most of our users connect over SSL remote access VPN. We have a internal server that is accessed from the WAN side over ports 7070 and 1470…

Good evening fellow community members. Is there a problem connecting a site-to-site VPN between sophos devices with firmware v18 and others with v19?

Hello all, we are using a XGS 2100 with os19. Simple network. WAN. LAN. DMZ and SSL VPN. Configured a webserver with WAF rule located in the DMZ. So far works fine from external users accessing the webserver on its public ip. The clients in…

Hello everyone, I'm using Sophos XGS2300 with the latest firmware build SFOS 19.0.0 GA-Build317 and I ran into a problem with the Sophos Connect Provisioning file. I'm going for a IPsec remote access VPN and I would like to ask for two things. I would…

Hello, everyone, I have a problem. Device in Head Office: XG 230 (SFOS 18.5.4 MR-4-Build418) Branch Office Device: XGS 116 (SFOS 19.0.0 GA-Build317) After I updated the firmware in head office, the RED interface between head office and branch office…

Running XG 19.0.0 Build 317 I had the SSL VPN setup a year ago and did not use it much. Had some changes to network over the last year. I have upgraded versions of XG and now have a new service provider. I used the video to complete the setup…