• IPSec VPN allows traffic to one subnet, but not another.

    ml17
    ml17
    I am trying to establish a Route based site-to-site IPSec VPN connection between two Sophos XG Firewalls (all fully up to date) - I followed this recipe . I have two subnets on the 'HeadOffice' Firewall - 192.168.22.0/24 and 192.168.23.0/24 and I have…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Site-to-Site connected but no traffic over failover GW

    Werner Smit
    Werner Smit
    Good day, On our XG230 [ SFOS 20.0.0 GA-Build222] we have two IPsec site-to-site tunnels on two different GWs. Both connect to the same remote GW but use Different NATed local Subnets to Fortigate Firewall. IPSec policies are the same no change there…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect v2.3 and SFOS v20 MR1 - SSL VPN - Delayed disconnection

    Jaroslav Faldik
    Jaroslav Faldik
    Hi, With the noon version of Sophos Connect v2.3 against SFOS v20 MR1, I encountered a bug in the delayed disconnection of SSL VPN server-side (XG Sophos firewall). On the client side the connection is already in a disconnected state, but on the firewall…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Keep Site-to-site Tunnel Connected?

    Zane Donaldson
    Zane Donaldson
    Hey All, I've created an IPsec tunnel between my Sophos XGS unit and a Meraki with the Sophos unit initiating the connection. Traffic is passing just fine, but the location where the Sophos unit is located has somewhat spotty internet. It appears…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Certificates and .cfg

    Maik Martin
    Maik Martin
    Hey there, on old SUM Firewalls there was an SSL VPN Installer incl. configuration on Userportal. When you have installed this, you got an openvpn.cfg file and the user certificate. I have changed our Firewall to an XGS and now i need the new…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Global Settings Apply Error

    Brian1941
    Brian1941
    In SSL VPN Global Settings, when I try to apply, I get the error message " You must enter a network IP address." This happens even when I don't make any changes. Any idea what's going on, and how to fix it? I'm on a XG125w (SFOS 20.0.0 GA-Build222…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Device on BO side of IPSec Site-to-site unable to ping HO side

    Werner van Niekerk
    Werner van Niekerk
    I have a scenario and trying to set something up for the interim. In essence, the requirement is to get an APP server at location A to connect to DB server in location B. The main issue with this is that both locations have the same subnet (E.g 172…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Disconnection

    Marco Curtolo
    Marco Curtolo
    Hi, in my company users are using Sophos SSL VPN. The Sophos Connect is updated to version 2.3.0506 and the type of VPN is SSL/TCP. All users report frequent disconnections when using VPN, and there was the problem also with older client versions…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Comments in SCX files

    Nez_Pottage
    Nez_Pottage
    Hi all, When editing an SCX file for Sophos XG / Connect VPN, is there a way that you can add comments into the file for information, i.e. in a split tunnel config, can we make a note of what the network address / range relates to? Current config…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sophos SD-RED 20 and 4g LTE Gateway

    Sandra Koehler
    Sandra Koehler
    Hello - I've been searching the community for something like this but have mostly found people talking about the 4g module for the SDRED or using a USB stick LTE connection. If we buy a 4g LTE router or modem that has an ethernet port for device connectivity…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Failed to install Sophos Connect 2.3.0

    andrew User
    andrew User
    Hi Guys, I need help with this issue, have tired a few times to install Sophos Connect failed giving me error msg: Service 'OpenVPN Service' (OpenVPNServiceInteractive) failed to start. Verify that you have sufficient privileges to start system services…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • SD-RED load balancing and routing

    Aleš Pospíchal
    Aleš Pospíchal
    Hello, We have deployed Sophos SD-RED 60 to our Office 4. This RED is currently connecting to Office 1. We have established SSL VPN tunnel between Office 1 and Office 2 where Office 1 is acting as server and pushing networks deployed at Office 4 as…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Site-to-site IPsec VPN with Mikrotik and Overlapping network

    Andrea C
    Andrea C
    Hi everyone, I'm having difficulty getting site to site IPsec to work properly with a Mikrotik device. Both LANs use the same class 192.168.99.0/24 and to configure the Sophos (SG115 SFOS 20.0.0 GA-Build222) I followed these instructions: https:/…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect Installation

    Pradeep
    Pradeep
    Hello All, Recently we are facing issue while installing sophos connect attached snip for your reference .please verify it and provide solution and help me to resolve this issue. Thanks in advance.
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect 2.3 with disabled IPv6 component

    Quallensaft
    Quallensaft
    - upgraded our Windows Connect Clients from 2.2.9 to 2.3 - when now connecting with SSL VPN: The client is connected (all is working) but the state in Sophos Connect will not switch to connected and stays in "is connecting"... -> not possible to disconnect…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN no Internet access

    NismoC32
    NismoC32
    I have set up a SSL VPN connection in SOHPOS Firewall v20 Build 222. I can access local services and machines no problems there, but I cant get internet access. When I ping external sources no packages comes through, however domain names are resolved…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS IPSEC site-to-site connection

    admin_idl
    admin_idl
    Hello, We are trying to establish an IPSEC VPN connection between 2 XGs Firewall. There is a Fritzbox behind the firewall at both locations. We have already tested many different settings and policies but keep getting the following error message: …
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Fluctuating WAN IP with Dynamic DNS in Sophos Gateway Firewalls

    Mohammed Minhaz
    Mohammed Minhaz
    I was seeking a solution for an issue encountered with my client’s Sophos Gateway Firewall (Site-to-Site IPsec VPN Setup), which was due to the ISP’s PPPoE Service causing frequent changes in the WAN Interface IP. I’ve learned that Dynamic DNS could…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Dynamic WAN IP With IPSec Site to Site

    Mohammed Minhaz
    Mohammed Minhaz
    The client has a Sophos XGS107 in the branch office and an XGS2100 in the head office. We have site-to-site IPSec with PSK with HO to 2 BO. Due to the PPPoE WAN IP provided by the ISP, the firewall’s WAN interface IP changes frequently. We face a challenge…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • IPSec site-to-site with login/password authentication

    Alysko
    Alysko
    Hi, I'm trying to set up an IPSec VPN on a Sophos XG to connect as site-to-site to an internet box that serves as a IPSec (IKEv2) VPN server. When configuring a new VPN user, the box only gives username/password and VPN server address. Is it possible…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Country Restriction vpn ssl

    Alexander Vasquez
    Alexander Vasquez
    I have configured an SSL VPN to which I want to apply a restriction so that it only allows connections from Colombia, I have created the ACL allowing "Colombia" in the Source and selected the User Portal and SSL VPN services, after this I have disabled…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • XGS IPSec S2S Azure and isolating a shared MAC Mini with SSL VPN Contractor

    WABGOR_DAVE
    WABGOR_DAVE
    Hello all, Network (kinda) and XGS newb is back with another question. I'm pretty sure the answer is going to be a "yes/no and you're just missing this little step to get it done". I've included a summarizing picture. Presently working: We have an…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Performance is horrible using TCP or UDP

    Shawn Adams
    Shawn Adams
    We have 2 XG330 in HA, a 300Mbit connection and are using the SFOS 20.0.0 GA-Build222 firmware with Sophos Connect. Using the SSL VPN with UDP we are seeing speeds of 3.6Mbit down and 6.9Mbit up. The Client has 100Mbit. I've read a lot of different…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Possible bug: Issue in site to site VPN ipsec changing WAN interface

    eclipse79
    eclipse79
    Hello, I have an issue with site to site vpn IPSec. I suppose it is a bug. Scenario: You have 1 WAN port (port 2) You have some created site to site VPN IPSEC (initiate the connection type) Follow these steps to reproduce the issue: - Configure…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Remote Access SSL VPN Static IP address results in route issues

    Linh Phàng Tú Linh
    Linh Phàng Tú Linh
    Hello there I'm using version XGS2100 (SFOS 20.0.0 GA-Build222) and getting an error in SSL VPN Static IP When I use static IP for VPN user, the firewall cannot connect to the static ip of vpn user When i have the static IP Address disabled in my…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>