Hello, I verified that my Sophos XGS SFOS 20.0.0 GA-Build222 has OpenVPN 2.4.7 which is vulnerable to CVE-2020-20813 which according to NIST has a high level. As I use SSL VPN for remote access, I need to know if my firewall is vulnerable.
Best Regards…
Hi all,
Have an xg firewall running 20.0.0-GA that locks up every day or at least every other day just after midnight UTC. Load climbs up over 20 or so, then requires stopping/starting manually in AWS ec2 console. Running on AWS ec2 c4.xlarge in us…
Hello,
we are doing a migration from old XG330 to a XGS3300
I have a question regarding the sophos connect client, which is currently used with the XG.
the current sophos client is openvpn 2.3.8
The new one is in version 2.3, but, do we have a…
Hi there,
we had a very interesting problem with our Sophos-Firewall and the mailflow on Wednesday.
On 2024-06-26 around 08:00am (UTC+2) no more mails were delivered via our Firewall.
All mails were visible in the GUI under "Mail logs", but only…
I tried to configure the email notification for any config changes but somehow It's not working. Getting email has been accepted by device and queued for scanning. Then failed after sometime. Please help me to fix this issue. I have followed the steps…
Greetings community.
I have an XGS126 device (SFOS 20.0.0 GA-Build222)
I'm trying to do a policy test on google.com, facebook.com, and I get this message:
An error has occurred in resolving the URL, please update the URL and retry the policy…
Update to LAG not working unless you specify interface speed
Using XGS4500 on 20.0.0 GA-Build22 with XSAZTCHF4 "Sophos FleXi Port Modul 4 port 10GbE SFP+"
LACP bonding was not working on PortsA1-A4 unless specifying 10G Interface Speed manually, disabling…
I am using Sophos Firewall SFOS 20.0.0 GA-Build222.
How do I setup DNS over TLS (with Cloudflare)? I can't find any instructions on the Sophos help pages.
Hello,
I am experiencing the issues listed in NC-120119 when I am using TCP mode for my SSL VPNs.
I have a select number of users who I required to get a static IP address, however when they are connected, if they change network type and it tries…
Good day, On our XG230 [ SFOS 20.0.0 GA-Build222] we have two IPsec site-to-site tunnels on two different GWs.
Both connect to the same remote GW but use Different NATed local Subnets to Fortigate Firewall. IPSec policies are the same no change there…
I have a Sophos that has a publicly accessible IP address which I will call 47.x.x.x, and this same IP is also publicly reachable via DNS name which I will call myhost.com.
I have IPsec set up and working on my Sophos v20 firewall.
I have Sophos Client…
Hello All,
I need your assistance regarding an issue I face with an XGS116 FW v 20 with vouchers.
To specify, I am able to connect to the wifi via using vouchers, but there is no option for logout button.
In addition, I wish to see my remaining…
In SSL VPN Global Settings, when I try to apply, I get the error message " You must enter a network IP address." This happens even when I don't make any changes.
Any idea what's going on, and how to fix it?
I'm on a XG125w (SFOS 20.0.0 GA-Build222…
Hello,
I am using XGS2300 Version 20
When users are on LAN, they cannot access servers on the same network while using their public IP, they can only access the server over the public IP when they move out of the network. How do I solve that
Hello everyone I am struggeling with the following: The customer has microtik router that connects via wireguard VPN to a remote Windows Server in a Datacentre. The Microtik router is the VPN Client, the Windows Server is the VPN Server. The employees…
This isn´t really a question but rather some strange behavior I ran into when updating a customer´s RED-Devices from v3.0.008 to v3.0.009.
Environment:
- Sophos XG2300 running SFOS 20.0.0 GA-Build222
- Multiple RED20 and RED60 Devices (6 total)…
Is it still true that we cannot remove unwanted items from the user portal like email in v20?
remove "email" menu item from end user portal
I wonder how many users create allow and block lists while we do not use that feature and when they only need…
With reference to below doc
https://docs.sophos.com/nsg/sophos-firewall/20.0/help/en-us/webhelp/onlinehelp/AdministratorHelp/WebServer/AuthenticationTemplates/index.html
Is there any variable available to get client ip address?
Example "client_ip…
Hi all,
i have 2 xgs2300 (SFOS 20.0.0.0 GA-Build222) configured in active-passive high availability
When i restart primary device and the auxiliary device became standalone it block outgoing traffic for hearthbeat (seen in the log)
If i disable…
Hello,
I have a bridged interface. Port 1, 4, and 8. VLANs 1, 10. the bridge is in the LAN zone.
VLAN 10 supports nearly all traffic, VLAN 1 exists for a private wifi network that allows guests/vendors to use the internet, but prevents them from…
I have set up a SSL VPN connection in SOHPOS Firewall v20 Build 222. I can access local services and machines no problems there, but I cant get internet access.
When I ping external sources no packages comes through, however domain names are resolved…
We have 2 XG330 in HA, a 300Mbit connection and are using the SFOS 20.0.0 GA-Build222 firmware with Sophos Connect.
Using the SSL VPN with UDP we are seeing speeds of 3.6Mbit down and 6.9Mbit up. The Client has 100Mbit.
I've read a lot of different…