Im trying to figure out why traffic is being dropped between Lan and VPN. I have the firewall rule made to allow traffic. Traffic is passing fine except for traffic on 1 port. It is not showing in the Log but it i did drop-packet-capture this pops up…

We have a user that is complaining repeatedly about disconnecting SSL VPN (TCP) with Connect Client 2.2.90 SFOS is 19.5.2 I assume his ISP uses IPv4 sharing / DS-Lite. Nevertheless, when he connects, he is connecting with an IPv4 address and that…

Hi, I'm currently having Internet bandwidth issues when my network traffic goes through Sophos XG firewall. My ISP is supposed to be mbps 940up/940down, but I got only 100/100 mbps per device, some devices losing Internet connection sometimes here and…

When going under Hosts and Services, and then under the Services tab, if I try to add a new service regardless of the name the save button does nothing. For example trying to add a service for ManageEngine Endpoint Central which requires TCP ports…

Hi, Firewall version: SFOS 19.5.2 MR2-Build624 I am unable to locate the policy routing. It should be under the category Routing but it's not visible. Screenshot is attached for your kind reference. Kindly help me locate where I can configure…

Hey there, we just bought an Flexiport Module with 4x SFP+ Ports to connect our XGS2100 with our Backbone Switch (Cisco Nexus 9000 C93180YC-FX). We use FS SFP-10GSR-85 Modules on the Sophos side, and FS SFP-10/25G-CSR-S Modules on the Cisco side…

Hello. Please tell me where can I find the ip addresses or domain names of Sophos pattern update servers? Where does sophos update its databases from?

Hi y'all, I am struggling with the following scenario: Webserver protection works fine for several sites. Now I would like to protect an internal web service that should be available via https (yes, http S ) on port 8080 (I know...). Webserver Protection…

Hello Sophos Community! I've got an XGS126 running 19.5.2, and I would like to be able to block Youtube Shorts, which are hosted at `www. youtube.com/shorts`, while conversely not blocking youtube.com on the whole (lots of learning/training available…

Hi, I just bought a new XGS87, and after the initial setup, I cannot set up a secure storage master key. Later, I also realized that I could not create any users with an error message, which doesn't tell much info. I found a few posts on the…

Dear Community, my name is david lorenz from germany. We have a problem with many of our customers. They get mails from newletters. The probel is that the sender does not send with the correct domain. So I cant whitelist the domain as wildcard in…

Hi, when downloading the Proxy CA here: this logs you out of webadmin immediately. SFOS 19.5.2 MR-2-Build624 XG and XGS

Hello everyone, I joined the Sophos community, after having tried UTM9, I was delighted with its simplicity and functionality/security, so I decided to migrate my company's firewall system to XGS 136, I thought well if UTM is already good, this one should…

Hi, XGS2300 (SFOS 19.5.2 MR-2-Build624) We have a bunch of Macs and a couple Windows 10 PCs. The Remote Access SSL VPN Works great on Mac. With a 500/500 connection at the office I get 300-350 from my home on MacOS in speed tests to a server in the…

XGS136 wearing SFOS 19.5.2 MR-2-Build624. Planning an MS365 deployment which will take place through execution of the MS Deployment Tool with a configuration file, as per Deploy Microsoft 365 Apps from the cloud - Deploy Office | Microsoft Learn . …

Hi There, Recently switched over from a Draytek that had very basic PFW functionality and I've managed to get everything else working for my internal VOIP phone, but unable to get my plex port forwarding to work. For context, I use unraid to host…

I have about 50 remote users on a19.5.2 MR2-Build624 firewall. The firewall was migrated over from a previous version that didn't have "Generate OTP token with next sign-in". If I enable this feature will it make all my users reenroll for a new OTP token…

Good day l have a client with an XG 210 V19.5.2 We are unable to access this site vmi1314319.contaboserver.net:8443 inside the local area network. But it can be accessed outside the local area We tried to troubleshoot using Logviewer, but no packets…

Hi, after our installation of the firmware SFOS 19.5.2 MR-2-Build624 we have problems with sides with the follow error: Dropped due to TLS engine error: messageid="19006" log_type="Content Filtering" log_component="SSL" log_subtype="Error" severity…

Hi All XG330 (SFOS 19.5.2 MR-2-Build624) I have the problem of connectivity lost, in MS Teams while meeting as picture below. According to analyse packet between incoming and outgoing when we use MS Team, I found that in the time of connectivity…

Hello, Shortly after we updated to XG 19.5.2 we noticed that DHCP renewals were no longer logging in the System logs of the live viewer. There are no "DHCP Server" events shown at all. There have been no config changes since the update and DHCP is still…

my machine is XG125 (SFOS 19.5.2 MR-2-Build624 , I had tried to block facebook using webpolicy.policy tester shows that site is blocked but i'm getting the page.

Hello, in our head office we have a XGS2100 Cluster running on firmware version: SFOS 19.5.2 MR-2-Build624 We have some branch offices connected via IPSEC tunnel interfaces to the head office. For this we have some SDWAN Routes. Is there a way…

Hi all, XGS 19.5.2: I did that a couple of times: I have a Problem with Port Publishing when using different ports (externally 2100, internally forwarded to 22). I define an access rule from WAN to LAN on Port 2100. OK. I define a D-NAT rule…

Hello, We have the following scenario: Two Sophos XG310 with active-passive high availability enabled. Since we configure high availability from time to time, the site-to-site ipsec VPN service just stops working, 80% of our tunnels are disconnected…