Hi I am trying to ping/RDP L2TP client from Main office but unable to access but through L2TP client I can access my office network. Thank you Policy tester Rules and policies NAT Rule

Hi, We have around 40 users from which some Intercept X users (Windows 10) which are unable to connect over VPN. All the components are installed and even updates from Sophos central are reflecting on the end point. Below is the error which is shown…

We recently converted the UTM to Sophos Firewall OS (SFOS 19.5.3 MR-3-Build652). This Sophos Firewall interface is much worse than the UTM interface and buggy as well. One issue we found is we are unable to set different preshared key for different Remote…

Hello to all, I would like to set up an L2TP remote access VPN connection with authentication via certificate. Unfortunately, this does not work if an intermediate certificate is used without having to modify the ipsec configuration via shell. Environment…

Hello, I set up L2TP policy as usual - any Mac or iOS client can connect. Everything seemed to be fine. But now the first WIn11 client tried, but strongSWAN says: xxx.xxx.xx.xxx is initiating a Main Mode IKE_SA 2023-06-12 21:17:19Z 14[CFG] …

Hi, I've setup an IPsec remote VPN which works well with the SOPHOS connect client and heartbeat is being sent. Now, I want to achieve this same scenario that users connect through l2TP VPN and have SOPHOS connect client installed on their systems…

Hi, after some testing I got the ip-sec part to connect but now I recive a error in l2tp. "<l2t-1|94> received netlink error: Invalid argument (22)", I did some searching and it might be related to hw acceleration. But I don't know how to disable…

Hi, ipsec-l2tp remote vpn is unable to pass ipsec phase 1 connection, client i nativ Windows 10 L2tp is enabled, Profile is default L2TP Gateway type: respond only Preshared key is added Port is wan port, have tried sub interface too No local id remote…

Hello Community, I'm migrating from a SG550 (UTM) to a new XGS5500 (SFOS 19.5). Both firewalls connected to the same ISP. If I connect to the UTM via L2TP I can copy a file via CIFS with around 5 MB/s, which is almost equal to the bandwidth of the client…

Hello Community, we have many L2TP-VPN Users and the /24 IP Scope is too small for all our VPN Users. If I read the documentation right, it is not possible to use a lager pool then /24. For us a /23 Pool will fit. Actually, we use a mix of SSLVPN and…

Hello Community, I have a working L2TP VPN dialup and a working OSPF routing over our site firewalls. From the L2TP network I can reach all local networks (connected to the firewall itself), but I can't reach any network in the site locations. I figured…

Hi, We have an established L2TP VPN tunnel that has been working for years. Local authentication on the firewall. The firewall is XG ver 19.01 MR-1 Build 365, and a copule of days ago the VPN just stopped working. Around the same time we imported…

I typically connect to multiple XG firewalls using a L2TP connection. Issue is when I disconnect I get an email alert that the session was terminated (I know, I terminated the connection). As an MSP, I get alerts for a lot of things, and this seems entirely…

Hello all, I have the following problem: There is a VPN device in the server network. This builds a L2TP to a service provider through the firewall. From the server network I can reach the "website / services" of the service provider. Over the client…

We used to have an XG SG115 appliance, but the CPU was always very high, so I built my own XG appliance. Since we've moved to this, we've had intermittent internet issues that I've not finally figured out the cause of. We have an L2TP (also tried to…

On Saturday, we were running SF OS 18.5.3 MR-3-Build408 on our XGS2100, and Mac/Android/iOS users were able to dial in to our L2TP VPN fine with their built-in clients (Windows 10 users had mixed results, some worked others didn't, some codec trickery…

Hi Everyone, I have an interesting issue. One of our branch offices uses an LTE router to connect to the internet and then VPN to connect to HQ. The problem is that when one person connects to VPN, the one that was connected before gets disconnected…

Sophos XGS116 running 18.5.3 MR3 I have a client that has taken two of their office laptops home. Both laptops are setup with L2TP VPN. She wants both laptops to VPN into the firewall at the same time from her home internet connection. When one laptop…

Hello, as mentioned in the subject, in android 12 both IPsec Xauth and L2TP were removed completly. The only available authentication types of the android vpn built-in client are: IKEv2/IPsec MSCHAPv2 IKEv2/IPSec PSK IKEv2/IPSec RSA Are any of…

Hi everyone Error Description: Firewall: Sophos XG230 cluster Firmware: SFOS 18.5.3 MR-3-Build408 VPN: L2TP (currently with psk) | AES256 & SHA2 256 (1 & 2) / DH14 (1) / ECP256 (2) We use Windows' built-in VPN via L2TP/IPsec via our UTM…

Hi, I would like to deploy L2TP VPN on large number of PC's as you know the configuration is time consuming on the client PC. is there a way to automate the process. if no, can I use intune to automatically push the profiles and network configuration…

hi folks, i have create a l2tp vpn on a sophos xg115 , the ip range works, i can connect to the vpn but when i connect i could not use the "normal" internet. ill get the ip, then the dns and wins server but no gateway. in the roulset i have also…

Hi guys, is this possible? We are currently merging from another L2TP-solution to Sophos XG remote access, but the performance of the SSL VPN / IPSec remote access is really poor regarding the old L2TP-IPSec solution. The following settings are in…

Dear community- Been banging my head for a while now and don't seem to find any answer to why my XG330 does not allow me to assign a custom IPSec policy to the L2TP configuration I have set up for our road warriors. There are a bunch of default rules…

Hi, I would like to pass through 1701 UDP LAN to WAN. It seems blocked although it is not in the log or live capture. Maybe related to internal VPN services? How can I fix it? Cheers