Hi, we have a site-to-site tunnel from Sophos Firewall to AWS. Several local (sophos side) networks are appearing in AWS routing tables correctly. However, the SSL-VPN network will not appear in AWS routing tables. When I check bgp information…

Hi Team, We have a client who has hosted some servers on AWS and has an XG firewall. They have set up an Amazon VPC connected to a Sophos firewall via a single WAN interface. They possess two leased lines and require guidance on configuring a tunnel…

Hi all, we currently have 20 sites all using Sophos XG107 or XG 117 FW. all sites have a S2S VPN connection into AWS for SMB access. issue we have is failover internet, if failover is required then our VPN drops due to new IP. Failover internet is…

Hi all, Have an xg firewall running 20.0.0-GA that locks up every day or at least every other day just after midnight UTC. Load climbs up over 20 or so, then requires stopping/starting manually in AWS ec2 console. Running on AWS ec2 c4.xlarge in us…

Hi team, been stuck on this one for a while now. we have an on prem server, and cloud servers, both networks are connected using Amazon VPC VPN. all services, features etc work perfectly fine when in the DHCP dynamic range, i can ping all servers…

Hello, help troubleshoot this IPSEC connection. I have two IPSEC connections on My Sophos ( XG210 ) to AWS first is on My Primary IP which has connected successfully even though it's slow. The Second one is on my Secondary IP which is our back…

Hello, I have set up a site-to-site tunnel from our device XG210 to AWS, despite having less than 100ms on ping the connection is very slow, kindly advise what the issue could be the issue, since the setup is okay, and tunnels are connected.

I have site-to-site connection from office to AWS VPC 1 another one from office to AWS VPC 2, using a firewall XG230 in office, what can be done to create a communication between AWS VPC1 and 2.

Hi there Have setup a VPN to AWS from a XG on v 19.5 firmware I used the VPC config file provided by AWS on the VPN Gateway and uploaded it to the Sophos as a VPC site to site VPN. The BGP and VPN comes up - however once up the WAN interface…

I'm trying to setup DNS Request Route to a DNS server on AWS. Situation is similar to the below but I'm using Sophos Firewall instead of UTM. For SNAT on the Sophos Firewall, I can't seem to use a subnet so can't test the resolution that is mentioned…

unable to reach login page of my SFOS instance on AWS. A troubleshooting screenshot (utility provided by AWS) seems to show boot has not completed. port 3400 scans as open but 22 and 4444 do not. No console provided by AWS gives me access. I have…

Cheers, In this case, I am writing to ask you to please help me with a manual to configure site-to-site connection to AWS in XG 330 VERSION 18.5 firewall. I thank you in advance for the collaboration you can give me.

I have setup a Site to Site VPN between AWS and a Sophos firewall v19. Both sides show up and connected but AWS shows 0 BGP Routes on both tunnels. I am also unable to ping between the sites (yes I have dynamic routing and ping turned on for the VPN)…

Hi Guys, This is after 2 months of troubleshooting, escalations, helplessness from Sophos support, i'm writing this. I have this issue since we deployed the new XGS 4500 firewalls and still not able to resolve this. One of our core application is hosted…

Hi, Can someone advise me on how to deploy Sophos firewall on AWS Multi-Availability Zone? Best Regards Nandakumar

Hey guys! Can you help me with a configuration? I need to migrate the configuration of my VPNs with AWS and I needed to use BGP for that. Is it too complicated to make this configuration? What is the best scenario for the setup to run smoothly?…

Hi guys, I have a AWS XGS and I don't receive emails notifications and email backup. I use the same SMTP server that I use in others firewalls, all works well, except this XGS on AWS. There a some configuration specific to this works on AWS?

Just setup a VTI / route-based VPN with a customer who is using AWS VPC. Unfortunately, AWS side is using a link-local address (169.254.x.x/30) for the tunnel interfaces. I was able to assign the xfrm interface the needed IP, I can ping the aws side interface…

ENV: Sophos XG SFOS 18.0.5 MR-5 SG230 Hello, my org recently changed our AWS VPN connection from a site-to-site connection to tunnel interface connection using BGP. We have everything working with our new AWS VPN except one thing. We have a public website…

Running XG 18.0 MR5-Build586 on a pair of SG230's in HA (Active-Passive). We use the XG as a local cache and DNS relay, since we rely on AD DNS hosted in our AWS Virtual Private Cloud. We have DNS request routing setup so that only internal domains are…

In the ongoing saga of trying to clean-up our broken AWS S2S VPN tunnels this past weekend, we rebuilt them and finally got them working via BGP. Unfortunately now, we're left with a new problem. The XG itself can't authenticate with our AD DC's located…

HI I am trying to ping from Sophos LAN router block of 192.168.11.0/24 to 172.16.1.0/24 to 172.16.1.253 machine of the servers in AWS Ec2 instance. IPSEC is showing up, but Tunnel on AWS side is showing down. Sophos firewall sits behind the ISP router…

I am writing this because I found many people who can't get the AWS VPC to work on the XG like it used to work on UTM v9. This document assumes you know how to do this on the UTM also. 1) Create the VPN on EC2. a) make sure you disable all of the…

Hello, I am trying to migrate an AWS server to an Azure. In doing so I have to setup a VPN site to site connection and I have been following the Sophos instructions to setup Azure connection. I get to the IPSEC connection with a pre-shared key and when…

HI, I´ve to static tunnels from my XG 125 to AWS.Both configured using failover group Sometimes, tunnel goes down and opened a ticket to AWS and told me we are configuring from my side all networks LAN, Red´s etc and, as they told me, this situation…