I have set up a SSL VPN connection in SOHPOS Firewall v20 Build 222. I can access local services and machines no problems there, but I cant get internet access. When I ping external sources no packages comes through, however domain names are resolved…

I have configured an SSL VPN to which I want to apply a restriction so that it only allows connections from Colombia, I have created the ACL allowing "Colombia" in the Source and selected the User Portal and SSL VPN services, after this I have disabled…

We have 2 XG330 in HA, a 300Mbit connection and are using the SFOS 20.0.0 GA-Build222 firmware with Sophos Connect. Using the SSL VPN with UDP we are seeing speeds of 3.6Mbit down and 6.9Mbit up. The Client has 100Mbit. I've read a lot of different…

Hello there I'm using version XGS2100 (SFOS 20.0.0 GA-Build222) and getting an error in SSL VPN Static IP When I use static IP for VPN user, the firewall cannot connect to the static ip of vpn user When i have the static IP Address disabled in my…

We created SSL VPN from Sophos firewall But still connection from sophos connect not stablished, the indication error displayed by this message " DNS Resolution failed for gateway : Firewall DNS Name

This message pops up when I try to connect. We have other people using the same setup without issue. Is there something wrong with my config file? It does connect, but it needs to be secure. My Config file looks like this: [ { "gateway": "REDACTED…

Hi, I have an internal IP exposted to the public IP and this also works like it should. External traffic is translated to that host and you can access that host from the Internet. Now I wanted to add a SSL VPN Connection, made a firewall rule, a policy…

I have some services running on a local server behind a reverse proxy and those services are protected from access outside IP subnets not specified in the reverse proxy settings. In my local router, I have the addresses for all these services listed…

On my phone connected via OVPN I can access local network resources by IP but name resolution won't work. VPN: SSL VPN (remote access) I have Policy Members setup Use as default gateway is on Permitted network sources IPv4 is set to my local LAN VPN…

Dear, I have a site-to-site VPN between a Sophos XGS87 and a fortigate. I need SSL VPN users on my Sophos to have access to remote networks from this fortigate. Local networks on the Sophos XGS87 side: 10.40.85.0/24 10.50.85.0/24 Sophos SSL VPN…

Hi, We have a Sophos XGS 107 (Client) connecting to another unit XGS 2100 (Server) via Site-To-Site SSL VPN. We noticed the Site-to-Site SSL VPN will not auto connect after the Client unit get restarted When it happened, we manually on/off the SSL…

Hi everyone, been curious lately, is it possible to have something like checkpoint conditional access (like is windows up to date, is defender/antivius activated and so on) before allowing to the vpn gateway. And im not talking abou ZTNA since that…

Hello! I know that a few years ago there was a feature request on the currently retired Sophos's ideas portal, regarding remote access SSL VPN with certificate only based authentication, for Sophos XGS firewalls. Does anybody know if it's possible right…

Hello everyone, I searched the forum if there is a way to limit SSL VPN access to a specific Public Ip Address but it seems to me that You cannot do it. I see that when You create a Group or a User there is a section called "Limit access" that lets…

Hi, when using SSLVPN in split-tunnel mode, DNS resolution to internal resources is not possible. A ping returns "Host not found". When I perform a nslookup, the XGS is contacted and resolves successfully. I've also tried several VPN clients, including…

Hi, we are using SSL VPN and i have added public IP address in override hostname for vpn access. if ISP Failure that case i need to change or change in .OVA file. now we need to add hostname instead of ip address

I am a Mac user, until today I used Sophos Connect for Mac version 1.4 (ipsec VPN) I realized that there was a CVE on the Mac version of the application, but not on the Windows version, which has since been updated. So I'm at a dead end. My only option…

Hi, Currently we are using Firewall XG310 and SFOS v20 . My question is : 1. How to bind vpn user mac-address without asking their mac-address manually? Could sophos FW detect it automatically ? 2. Could we set vpn user state duration ? Example…

Hi, we are using HB policy for Lan user. VPN user how to create secure security policy because now we are using any any so i need to change. Is it possible to enable HB policy in VPN. VPN-LAN LAN-VPN Thanks SATYA

Hi, One thung bothers me regarding SSL certificates. I will have some 30 SSL VPN users on XGS , and I intend to install commercial SSL certificate. But it only has 1 year validity. Does it mean I will need to push .OVPN config to end users every year…

Hello Everyone I will explain the issue we came up with. In our company users use their company laptops to connect to the company through SSL VPN and then use remote desktop to connect to their computers. Some of the users they find it more comfortable…

Hello Dears, I'm facing a problem with openvpn 3.4.0 (9755) on Android after the update, My UCM is XGS2100 (SFOS 20.0.0 GA-Build222) any help, please ?? Thank you.

Hi Sophos Community Team, I Have Sophos XGS 136W Latest OS + Fixes including SSD Fix (that wasn't a fun update FYI). I currently am experiencing very slow VPN performance - like bare iperf speed is 500-900 Mbps and sophos VPN speeds between…

Hello, Began experiencing an issue with our SSL VPN connections when some Android tablets updated OpenVPN Connect app from 3.3.4 to 3.4.0. Symptom: SSL VPN connections are made successfully in 3.4.0 but no traffic flows. OpenVPN 3.4.0 is configured…

I have a dedicated VLAN in our network and a dedicated AD username for guest users. I am not using Sophos wireless network, I use another brand wireless network. I am using SFOS 19.5.3 Every time my guest users browse the internet after logging into…