I've been facing an invalid traffic issue with an XGS5500 (SFOS 19.5.2 MR-2-Build624) for a few days. the connections of some PCs to a particular domain seem to work but then I start to log errors such as "Invalid traffic". The firewall rule is a simple…

We have a firewall rule allowing access to an internal server. Source and Destination HB must be green, also the rule has "Block clients with no heartbeat" enabled. The rule exists unchanged for years but recently we noticed users complaining that they…

XGS136/ SFOS 19.5.2 MR-2-Build624 DNAT rule for on-prem mail server does NOT have email scanning turned on. Microsoft 365 Exchange Online Protection (EOP) is the spam filter. When I send an email to a distribution list of about 35 members from an…

Hi, We have 2 types of IPsec and L2TP VPN users. one which have Intercept X on their systems and another which are normal users without Intercept X. Now we want to restrict users to access only from their specific machines. Like the users which have…

Hi, I'm currently having Internet bandwidth issues when my network traffic goes through Sophos XG firewall. My ISP is supposed to be mbps 940up/940down, but I got only 100/100 mbps per device, some devices losing Internet connection sometimes here and…

Hello everyone, I joined the Sophos community, after having tried UTM9, I was delighted with its simplicity and functionality/security, so I decided to migrate my company's firewall system to XGS 136, I thought well if UTM is already good, this one should…

Hi There, Recently switched over from a Draytek that had very basic PFW functionality and I've managed to get everything else working for my internal VOIP phone, but unable to get my plex port forwarding to work. For context, I use unraid to host…

Good day l have a client with an XG 210 V19.5.2 We are unable to access this site vmi1314319.contaboserver.net:8443 inside the local area network. But it can be accessed outside the local area We tried to troubleshoot using Logviewer, but no packets…

Hi all, XGS 19.5.2: I did that a couple of times: I have a Problem with Port Publishing when using different ports (externally 2100, internally forwarded to 22). I define an access rule from WAN to LAN on Port 2100. OK. I define a D-NAT rule…

Hi, I am facing a problem with the LAN zone attached to multiple interfaces. FW: SFOS 19.5.2 MR-2-Build624 Setup: Port1: LAN (192.168.30.254/255.255.255.0) Port2: WAN Port3: LAN (192.168.32.254 /255.255.255.0) I've created the following test rule…

Hi All, We have a network firewall rule setup to allow traffic to a WAN destination. However we can see in the logs that the traffic is getting blocked by the web filter component. We have a user network rule further down the list that allows access…