• CVE-2020-20813

    Elvys Marchon
    Elvys Marchon
    Hello, I verified that my Sophos XGS SFOS 20.0.0 GA-Build222 has OpenVPN 2.4.7 which is vulnerable to CVE-2020-20813 which according to NIST has a high level. As I use SSL VPN for remote access, I need to know if my firewall is vulnerable. Best Regards…
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • xg firewall on aws - locks up at midnight UTC

    solmc
    solmc
    Hi all, Have an xg firewall running 20.0.0-GA that locks up every day or at least every other day just after midnight UTC. Load climbs up over 20 or so, then requires stopping/starting manually in AWS ec2 console. Running on AWS ec2 c4.xlarge in us…
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • Sophos connect

    Support Ipsilan
    Support Ipsilan
    Hello, we are doing a migration from old XG330 to a XGS3300 I have a question regarding the sophos connect client, which is currently used with the XG. the current sophos client is openvpn 2.3.8 The new one is in version 2.3, but, do we have a…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Mails not more delivered (MTA-Mode). After service smtpd:restart mails successfully delivered, but also very old from February/March/April

    Erik Wi
    Erik Wi
    Hi there, we had a very interesting problem with our Sophos-Firewall and the mailflow on Wednesday. On 2024-06-26 around 08:00am (UTC+2) no more mails were delivered via our Firewall. All mails were visible in the GUI under "Mail logs", but only…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Connect from guest network to VPN

    Sophos User3521
    Sophos User3521
    I have a new xgs ( SFOS 20.0.0 ) and would like for the guest wifi users to be able to connect to our vpn. How can I achive that?
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Email Notification is not working in Sophos XGs v20.0

    Yuvraj Singh
    Yuvraj Singh
    I tried to configure the email notification for any config changes but somehow It's not working. Getting email has been accepted by device and queued for scanning. Then failed after sometime. Please help me to fix this issue. I have followed the steps…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • An error has occurred in resolving the URL, please update the URL and retry the policy test.

    n4shito
    n4shito
    Greetings community. I have an XGS126 device (SFOS 20.0.0 GA-Build222) I'm trying to do a policy test on google.com, facebook.com, and I get this message: An error has occurred in resolving the URL, please update the URL and retry the policy…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • XGS SFP ports not working until you specify interface speed (1G or 10G XGS, v20)

    LHerzog
    LHerzog
    Update to LAG not working unless you specify interface speed Using XGS4500 on 20.0.0 GA-Build22 with XSAZTCHF4 "Sophos FleXi Port Modul 4 port 10GbE SFP+" LACP bonding was not working on PortsA1-A4 unless specifying 10G Interface Speed manually, disabling…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • How do I setup DNS over TLS?

    GodAtum
    GodAtum
    I am using Sophos Firewall SFOS 20.0.0 GA-Build222. How do I setup DNS over TLS (with Cloudflare)? I can't find any instructions on the Sophos help pages.
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • /31 WAN

    Jenny Skinner
    Jenny Skinner
    Hi, Can anyone confirm whether Sophos supports /31 subnet config on WAN interfaces please? XG2100 running SFOS 20.0.0 GA-Build222 Thanks
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN (TCP) Static IP Address issues

    Hugh D
    Hugh D
    Hello, I am experiencing the issues listed in NC-120119 when I am using TCP mode for my SSL VPNs. I have a select number of users who I required to get a static IP address, however when they are connected, if they change network type and it tries…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Site-to-Site connected but no traffic over failover GW

    Werner Smit
    Werner Smit
    Good day, On our XG230 [ SFOS 20.0.0 GA-Build222] we have two IPsec site-to-site tunnels on two different GWs. Both connect to the same remote GW but use Different NATed local Subnets to Fortigate Firewall. IPSec policies are the same no change there…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect 2.2 scx file gateway_order not working

    EastCoastUser
    EastCoastUser
    I have a Sophos that has a publicly accessible IP address which I will call 47.x.x.x, and this same IP is also publicly reachable via DNS name which I will call myhost.com. I have IPsec set up and working on my Sophos v20 firewall. I have Sophos Client…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • mirror rule sets of existing ip/host to new ip/host

    Sophos User1175
    Sophos User1175
    hi all, we have a xgs 4300 v20 i want to give a new ip/host the same rule sets as an existing ip/host how can i do this please? thanks, rob
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS116 FW 20.0 how to logout when connected to wifi via vouchers

    Eva Pavli
    Eva Pavli
    Hello All, I need your assistance regarding an issue I face with an XGS116 FW v 20 with vouchers. To specify, I am able to connect to the wifi via using vouchers, but there is no option for logout button. In addition, I wish to see my remaining…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Global Settings Apply Error

    Brian1941
    Brian1941
    In SSL VPN Global Settings, when I try to apply, I get the error message " You must enter a network IP address." This happens even when I don't make any changes. Any idea what's going on, and how to fix it? I'm on a XG125w (SFOS 20.0.0 GA-Build222…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • ENABLING INTERNAL USERS TO ACCESS INTERNAL SERVICES OVER EXTERNAL INTERFACE

    TimothyWanume
    TimothyWanume
    Hello, I am using XGS2300 Version 20 When users are on LAN, they cannot access servers on the same network while using their public IP, they can only access the server over the public IP when they move out of the network. How do I solve that
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Allow 3rd Party Wireguard VPN to Access LAN ressources from offsite Server

    Rene Böhres
    Rene Böhres
    Hello everyone I am struggeling with the following: The customer has microtik router that connects via wireguard VPN to a remote Windows Server in a Datacentre. The Microtik router is the VPN Client, the Windows Server is the VPN Server. The employees…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Static Routes not working after RED-Update to Version 3.0.009

    Anthony Stang
    Anthony Stang
    This isn´t really a question but rather some strange behavior I ran into when updating a customer´s RED-Devices from v3.0.008 to v3.0.009. Environment: - Sophos XG2300 running SFOS 20.0.0 GA-Build222 - Multiple RED20 and RED60 Devices (6 total)…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • remove items from user portal

    LHerzog
    LHerzog
    Is it still true that we cannot remove unwanted items from the user portal like email in v20? remove "email" menu item from end user portal I wonder how many users create allow and block lists while we do not use that feature and when they only need…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Authentication template variables for ip address

    Akshay Hegde
    Akshay Hegde
    With reference to below doc https://docs.sophos.com/nsg/sophos-firewall/20.0/help/en-us/webhelp/onlinehelp/AdministratorHelp/WebServer/AuthenticationTemplates/index.html Is there any variable available to get client ip address? Example "client_ip…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • no internet access with auxiliary device

    Diego Forcella
    Diego Forcella
    Hi all, i have 2 xgs2300 (SFOS 20.0.0.0 GA-Build222) configured in active-passive high availability When i restart primary device and the auxiliary device became standalone it block outgoing traffic for hearthbeat (seen in the log) If i disable…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • XG bridge editing causes network to go down

    Daniel Fehrenbach
    Daniel Fehrenbach
    Hello, I have a bridged interface. Port 1, 4, and 8. VLANs 1, 10. the bridge is in the LAN zone. VLAN 10 supports nearly all traffic, VLAN 1 exists for a private wifi network that allows guests/vendors to use the internet, but prevents them from…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN no Internet access

    NismoC32
    NismoC32
    I have set up a SSL VPN connection in SOHPOS Firewall v20 Build 222. I can access local services and machines no problems there, but I cant get internet access. When I ping external sources no packages comes through, however domain names are resolved…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN Performance is horrible using TCP or UDP

    Shawn Adams
    Shawn Adams
    We have 2 XG330 in HA, a 300Mbit connection and are using the SFOS 20.0.0 GA-Build222 firmware with Sophos Connect. Using the SSL VPN with UDP we are seeing speeds of 3.6Mbit down and 6.9Mbit up. The Client has 100Mbit. I've read a lot of different…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>