Hi, I have forced a rule where users has to vpn no matter what when they are outside our network domain. I was able to perform a file provisioning that auto connect users to VPN, however I still have one issue is that sometimes, before connecting…

Hi team , We have configured the SSL VPN in the firewall and allowed a single IP address in the permitted network resources, When we connect with VPN from other network, It will show the entire /24 network IP address as well as a single IP in the…

Hello, I have a situation where i need to assign IP addresses to SSL remote access VPN clients from a certain subnet (10.10.10.0/24), and bridge the connection with a router (10.10.10.1) connected to a DMZ interface. I understand that the firewall assigns…

Hi there, I am looking to configure a RDP Bockmark to allow our user to use the terminal servers on the road without using a VPN. Because of security reasons I want to use NLA, my question woud be is there any way to give the user the ability to change…

I recently add a new firewall for the branch office , so we have 2 firewalls one for the main office and one for the branch office, branch office can ping our ip's, but we from Main branch we can not ping any of their ip's, not even 1, it's really strange…

hi, i am trying to install SOPHOS connect but it is not being installed. detail is given below: Sophos connect_2.3.2-VPN.msi Microsoft Surface Laptop, 7th Edition Processor: Snapdragon(R) x 12 Core X1E80100 @ 3.40 GHz 3.42 GHz installed RAM: 16GB

Hi, we have a site-to-site tunnel from Sophos Firewall to AWS. Several local (sophos side) networks are appearing in AWS routing tables correctly. However, the SSL-VPN network will not appear in AWS routing tables. When I check bgp information…

I have multiple Sophos site to site VPN's back to a central router. Whenever any of the sites losing connection they all re-connect except for 1. The Sophos VPN logs show "Couldn't authenticate the local gateway. Check the authentication settings on both…

Is there a way to check if the ISP router doesn't supports IKE2 causing IKE2 IPSEC tunnel to fail. A troubleshoot method or guide ? This is to proof to Service Providers that the problem lies in their end and not firewall.

Hello all, I currently have a XG firewall (FW-1), connected through IPSEC tunnel with another (FW-2). FW-1 has two LAN zones (LAN-A and LAN-B), both allowed through the IPSEC tunnel. FW-1 sends log messages (originated from the firewall itself…

I have a question about SSL VPN auto connect. Can the user receive an automatic connection to the SSL VPN after restarting their computer and connecting to the internet?

Hi, We have a RED 20 device that we recently purchased as a test device before looking to set multiple up across different sites, however we have found that our organisation's manual proxy blocks any internet access to anything not included in the proxy…

I need some assistance please. Also i am new here, in the community. My ipsec remote access sends traffic but does not receive. See the screenshots of my configuration:

Hi everyone, We have an IPsec site-to-site VPN connection between our Sophos and Fortigate devices. Currently, both the gateway and tunnel are UP and functioning properly. VLAN 10 and VLAN 20 are included in the local subnet configuration on the Sophos…

Very nice! I need help setting up an IPsec tunnel between sites, the firewall models are "UTM - SG135, Firmware 9.719-3" and "XGS2100 - Firmware (SFOS 20.0.0 GA-Build222)". We have researched through forums and followed some steps that match the errors…

implementing vpn site to site connection, causes problems with ip telephony, when starting the connection or disabling the connection causes my voip phones to start disconnecting from the pbx. once the connection is established and having the vpn connected…

Good Day, We have a remote SSL VPN setup for Sophos Connect clients to remote into our network when working from home. We have two GWs Primary GW1: IP:154.x.x.x Backup GW2: IP:105.x.x.x One user is currently experiencing issues with their ISP…

Hello Community, here's the situation: Head Office (HO) : two WAN uplink connections, both have static IPs. One connection is 'cost based' and slower (backup WAN) and the other is quicker and has no traffic costs (primary WAN). Weights have been configured…

hi, i have friewall XGS2100 with Xstream protection. on that i am using ssl vpn for remote connectivity. so should i use ZTNA??? what extra benefits can i get if i use ZTNA?does xstream protection gives us few ZTNA licenses??? if i dont have Microsoft…

Hi all, I have an xgs 3100 firewall on which about 20 ipsec tunnels are attested. All these ipsec have fragmentation problems so I am forced to use mss-clamping. For example without mss-clamping an icmp packet passes as long as I set a size of 1400…

I have XGS 116 with 20.0.1 MR-1-Build342. Using a MAC computer, gets the "File Import Error" error when connecting to VPN using Sophos Connect, the same config file is processed on the device with the windows operating system and it works smoothly.…

[POST DE DEBATE SOBRE O ASSUNTO] Opa pessoal! Em minha infraestrutura eu tenho o escritório na matriz (XGS 3100) conectado a outros quatro escritórios filiais (XGS 136) por Tunel RED, utilizando a configuração RED Server no escritório matriz e RED Client…

We are wanting to connect our remote office, which is in a managed/shared office space building, to our head office. We have no control over the shared office netowrk. We have a XGS in the managed office space. The internet connection is supplied…

Hi, after updating to 20.0.2 the Site to Site VPN connection between our XGS (Host) and the Fritzbox is not working anymore. Before the Update is was workking without any problems. A downgrade to 20.0.0 is also impossible as the XGS always tells Firmware…

Hi guys I can't see the wood for the trees -- so please forgive me this (probably stupid) question: When using PSK for IPsec without certificates, everything is working properly. It asks for password (or I save my password) click Connect and it works…