• VPN config broken, no server_dn is NULL in SQL after restore

    Martin Walter
    Martin Walter
    I had to restore my firewall from a backup, and now I can't download SSL VPN config from the portal anymore. Checking the log I get the following error: /home/jenkins/root/workspace/OmC/CI_64/build_dir/target-x86_64_glibc/vpnportal-1/internal/vpndownload…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • VPN

    Administrador Homoterapia
    Administrador Homoterapia
    Ola boa noite, tenho 2 firewall configurado em Tunel RED,Dentro da rede consigo enchergar a rede do outro Firewall , mais quando estou em rede externa, e uso a VPN Sophos connect client, so consigo ping em uma rede, nao consigo da outra, quero acessar…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Policy Mis-Match Error on Sophos VPN Client.

    Muhammad Jahanzaib
    Muhammad Jahanzaib
    Hello, we are using Sohpos XG virtual firewall to connect VPN, it was working fine till few days before. Now on connecting we are observing error which states that "Policy mismatch error. Import a new policy for this connection." Please note that applied…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • XGS4500 (SFOS 20.0.2 MR-2-Build378) after Firmware update from 20GA to MR2 stays dead

    Speedfish
    Speedfish
    Hello Sophos Community, we just updated two XGS4500 (in HA) to 20 MR2 and now the SSLVPN stays dead: After checking the admin interfance I logged into the shell: I used the command: service sslvpn:restart -ds nosync 503 Service Failed We don't…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • XGS3300 MFA for SSL VPN

    MM the Admin
    MM the Admin
    Hey, is there a possibility to set up MFA for SSL VPN on the XGS 3300? Maybe even a SAML authentication with the MS authenticator? Can't find any infos on that in the documentation, neither can i find an optiuon the the admin panel. Can anyone…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • SFOS 20.0.2 SSL VPN connection problem only on work laptop

    FlashErickson
    FlashErickson
    Hey everyone, I was recently given a SG115 firewall to mess around with and installed SFOS on it. While learning how to use it I've setup an SSL VPN connection that works on every computer except for my work laptop, which oddly enough is able to connect…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Multiple Gateways in Branch Office

    CreateShare
    CreateShare
    Hi, What is the proper way to connect a branch having multiple internet gateways but the head office has only one gateway? The branch office WAN1 interface has a Real IP but WAN2 uses DDNS with a dynamic IP. Should the branch office have a failover…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Yellow Icon under IPSec Status

    CreateShare
    CreateShare
    Hi, One of my IPsec tunnels shows a yellow icon under the status but when I click on the connection details, all subnet connections show green. Any Suggestions?
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect options (Provisionig file)

    seroal
    seroal
    Hi team, is it possible with Sophos Openconnect to only execute the Logon Script after successful vpn connection (using the .pro file)? Or is it also possible to run any custom script or command? I read the articles and if I did understand correct…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Site-to-Site VPNs and VLANS

    Randy Cleveland
    Randy Cleveland
    Hi, We've run a flat lan for years at our main location. We've recently updated our network and added a few new VLANS to the mix. Now I have a problem. We have several Site-to-Site VPNs up and running that work great with our original VLAN1. However…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Remote Access IPSEC - tunnel connects but unable to access any devices

    Aaron Berger
    Aaron Berger
    I have configured Remote Access VPN - IPSEC and I am able to establish a connection via the Sophos Connect app. However, I am unable to talk to any LAN devices connected to the Sophos XG 125W. Here are my configuration settings: 1. Remote Client…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect Provisioning File Userauthentification error

    IT Hoschi
    IT Hoschi
    Hello, we build a Sophos Connect Provisioning File for our XGS 3300 on FW 20MR1. We have the following Problem. If the Users "starts" the provisioning File and Enter his Credentials for log in, he gets an UserAuthentification error - with the Correct…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Implementation of provisioning + OTP in Sophos Connect client

    seroal
    seroal
    Hi there, I´m refering to this thread: Unsatisfactory implementation of provisioning + OTP in Sophos Connect client Is it still not possible to SETUP OTP during first Sophos Connect Login? Is it still necessary to have all users connecting to…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Established sSite to Site SSL VPN, Voip phones only working partially

    mmiller
    mmiller
    Hello - I have an XGS 2100 at HQ. We were using a RED device to connect the branch office Phone and LAN traffic via VPN to the HQ PBX/LAN and everything worked fine. Given the rollout of the latest OS, the RED is no longer compatible, so we are attempting…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Using SG Firewall as a RED device

    admin_idl
    admin_idl
    Hello, can you continue to use the SGs at the secondary locations as RED devices with an XGS or should you switch to an SD-RED 20 or SD-RED 60? Thank you very much
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect 8 hour disconnect

    mark vanderwaal
    mark vanderwaal
    We have a XGS210 using Sophos Connect and SSL VPN. After 8 hours users are getting disconnected. There has to be an authentication time out that is set for 28,800 seconds but I can't find it. Can someone point me in the right direction? I'd like to increase…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Connect Windows on ARM CPU support

    Matt Bender
    Matt Bender
    Testing Microsoft Copilot+ Windows 11 laptops based on Qualcomm Snapdragon ARM CPU - Lenovo ThinkPad T14s G6 snapdragon in my case. I have seen old forums mention that ARM support was in the backlog for Sophos Connect. I suspect this question will come…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • IPSec site to site vpn, one tunnel goes down frequently

    Lennart Johansson
    Lennart Johansson
    Hi, I have a Sophos XGS107 (SFOS 20.0.1 MR-1-Build342) setup with Site to Site vpn to a Mikrotik router. There is 4 vpn tunnels (or separate address pairs), It mostly works fine, but every other day one tunnel goes down. If I check in webgui >> site…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • SD WAN config between CGW and AWS EC2 Virtual FW

    Matt Carter
    Matt Carter
    Hi all, we currently have 20 sites all using Sophos XG107 or XG 117 FW. all sites have a S2S VPN connection into AWS for SMB access. issue we have is failover internet, if failover is required then our VPN drops due to new IP. Failover internet is…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • IPSec Recommended Settings for Branch Office

    CreateShare
    CreateShare
    Hi, Are there any specific IPSec Profile recommendations for connecting the branch office that does not have a static real IP Address? I am currently using the DefaultBranchOffice profile, but it disconnects automatically after some time. Thanks.
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • RED Modes

    CreateShare
    CreateShare
    Hi, I read about all red modes but could not find a way to let the network behind RED Devices use the internet from their local internet gateway but take the web filter policy from the Firewall. Is it possible? Thanks.
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Red and XGS Limitation

    Bathathe Gondwe
    Bathathe Gondwe
    Community, 50 branch sites that we want to deploy red devices to connect to HQ and route all traffic to HQ for content filtering, HQ LAN resource access, and internet breakout, Bandwidth for all branch sites: 10 - 30Mbps Bandwidth at HQ: 100 to…
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Add subnets to NAT with policy-based IPsec when local and remote subnets are the same

    Mark Tarrant
    Mark Tarrant
    Hello all, I have a situation with a IPsec VPN setup between two sites that have subnets that are the same. I followed these instructions and it worked ok; NAT with route-based IPsec when local and remote subnets are the same - Sophos Firewall However…
    • Answered
    • 4 months ago
    • Sophos Firewall
    • Discussions
  • Unable to Reach RED hosts from Remote SSLVPN - Urgent help needed

    BeanAnimal
    BeanAnimal
    HI - Time sensitive here, back against the wall (will pay outside consultant if needed). Sophos Partner, long out of the loop. I have (2) REDS. Both are reachable from main XG network. I am unable to reach the RED hosts from the SSL VPN. REDS are in…
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • IPSEC/L2TP with Radius and CVE-2024-3596

    Dieter
    Dieter
    Hello, with the patch from Microsoft KB5040434 07/2024 there are problems with Radius authentication for L2TP. Without the patch, the client connection works without any problems. What can we do? Best Regards Dieter
    • Answered
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>