In one of my previous posts , I set up several virtual interfaces on my primary F1 interface. They are both effectively a gateway IP in their respective VLANs. The rest of the devices on the network can safely reach their respective gateways(the virtual…

Hi, i am brand new to the Sophos and i have one XGS3300. He is my DHCP server and the address range is from 10.10.2.1 to 10.10.16.250 I have one 3CX phone server with 10.10.128.2 address in a VLAN. I setup the VLAN, but when i try to setup the Firewall…

Hello! My journey with the XG has started with issues... Hope this is the last (still have an issue with WAF, but hope to get help there) So - hopefully - this is the last issue I am facing, at least for now. I have the main VLAN in the LAN zone…

Hello, I have replaced my EE router with a TPLink AC2800, but keeping the EE router as a backup. I want to setup a Sophos XG firewall at home in router mode and have put the TP-Link in bridge mode. Do I need to put the VLAN into both the TP-Link and…

Hi! I have a virtual lab with VMware and GNS3. I configured Vlan 2, vlan 3, vlan 4 on Layer 3 switch. Vlan 1 is 172.16.16.10 on fastEthernet 0/15 as trunk mode. But i cannot ping to Sophos from switch. Could you help me pls? Im struggling with this problem…

Hi everyone, we created a BO and connected this site with the HO over a RED60 without VLAN tagging. So far so good :-). Now we would like to enroll some AP's in the BO with a setup similar to the HO. In the HO, we make use of Unifi HD nano AP's with…

Hi! I use Vmware Workstation integrated with GNS3 as a lab. I have a topology like this but i cannot ping to XG LAN:172.16.16.16 from vlan1 trunk:172.16.16.10 What am i doing wrong?

Hey all, this is my first post I think i am missing something and need a little guidance on how to enable access to the sophos gui on the lan side from my main PC within my current setup. The setup (see pics) Router -> Sophos XG -> Core Switch …

Hi, I have the WAN port and the LAN port with 2 VLANs on each. Since it is possible from SFOS 18 to have no IP address on physical interfaces with VLANs, I need to get rid of the "dummy" addresses, but : if I uncheck IPV4 configuration on the…

Hi everyone, we have a common setup: Huawei access switches -> Huawei Core switches -> Sophos Firewall XG. Most of the VLAN interfaces are located on the core switches, which makes it difficult to control or monitor traffic with the XG. Should…

Hi! I have an XG125 where the network of port 6 is 192.168.12.0/24 and the port 1 is 192.168.0.0/24, both in LAN zone. Port 6 has a DHCP server I've added a VLAN on port 1 (Port1.40) with IP in DHCP I've created 2 rules: 1: Source zones: LAN Source…

Hi all im searching a solution for this topic: I have made a Zone (Serverzone) and i want it to be as VLAN in Port 3 but i also want it to be in the Port 2(not as VLAN, direct) i tried to made a bridge, but then the VLAN Port didn't work, so whats…

I am swapping my pfSense with Sophos XG Home for lab testing. I am encountering an issue where the connection to my TrueNAS SCALE shows "invalid TCP state" in the firewall log. Ping works, but not HTTP/S and SMB. The firewall rule is set to All-ALL, with…

One of our clients was trying to use a specific app and Sophos kept blocking it, so we went in and unblocked the app and all services related to it. However this didn't work so we went on to making an unrestricted VLAN network that they would only use…

I've got my Sophos XGS 136 set up nicely now except for 1 thing. Background Primary WAN is Cable with Aussie Broadband. Backup WAN is Telstra Cellular 4g Modem on failover after failure to ping 8.8.8.8 I have 3 Vlans Home Work Voip If…

I have a rather simple lab setup that i'm testing before I go live - Sophos XGS 87 - Netgear GS108PE - POS Handheld - Epson TU22 - Unifi LR AP A VLAN has been configured for the Epson and handheld, and this VLAN (VLAN10) is tagged on the Port…

Hi all, I think I am just misunderstanding how this works but maybe you can help me with clarifying. :-) Components: - Sophos XGS 126 - TP-Link Managed Switch Configuration: - Sophos connected to switch via LAG on fibre channel, IP: 10.51.1.30/27…

Is there a way to create a vlan allow connected devices (via AP) bypass firewall? My current SSID in Vlan has a different IP subnet from my home devices. There are times I want to connect devices that totally bypass home firewall. This setup doesn't…

I am having an issue routing traffic for newly created VLANs. I have created a new vlan and am able to ping the XG gateway (and get to the Web UI), but I cannot get out to the WAN. I tried creating a firewall rule that allowed traffic from both the…

I have issues using DHCP on a VLAN. DHCP server and DHCP relay are not assigning IP address to a VLAN. First, this is my setup. I have a core switch that is attached to all servers. The core switch is attched via a LAG link to the XGS firewall. The…

Hi all, I have a XGS116 and created a LACP LAG to the L3 core switch. The LAG is working as I can ping from the firewall the core switch and it´s all VLAN interfaces. The strange issue I have is that I can´t ping any other device "behind" the core switch…

Hi All I worked on SF01V (SFOS 17.5.10 MR-10.HF062020.1) I created 2 vlans with IDs 10,20 vlan 1 is 10.10.10.1/24 under port1 (lan) vlan2 is 20.20.20.1/24 under port 1 (lan) and thin i created DHCP for every one Vlan1 10.10.10.10 - 10…

Query: I have Cisco 300-52 Manage Switch VLAN 1 -- 192.168.0.1 --- WORKING FINE VLAN 2 -- 192.168.100.1 -- WORKING FINE DHCP is through Sophos Firewall i have created the VLAN 5 on the same switch & assigned the one port to vlan5 created the DHCP in firewall…

Hello I have a dobut with the log viewer in Firewall sophos XG: how can I see the traffic generated by the configured VLANs? I don't see any menu option to log the traffic of the rejected or allowed VLANs. the scenario is that I set up a bridge…

cant figure out what I'm missing... XG125 I have APX120 connected to port5. tagged vlan is turned on. port5 192.168.5.1 3 vlans are on port5 vlan5 - 192.168.55.1 vlan10 -192.168.58.1 vlan20 - 172.18.58.1 APX120 is tagged vlan5 my wifi…