Hello there. I have doing some labs and until now I have achieved to make a Sophos-Sophos and Forti-Forti Ipsec tunnel. However I am trying to make a Sophos XG-Fortigate IPSEC tunnel but my tunnel does not wake up.
I have followed this guide and configure…
I am having an issue with an HA hardware pair. When the secondary node is the master SSL VPN users cannot connect with a remote VPN.
Please help me on it.
Dear Community Members, I am immensely grateful for being part of this wonderful community. Could someone kindly provide guidance on how to upgrade SophosConnect_2.2.90.msi to SophosConnect_2.3.0.msi using Group Policy (GPO)? Alternatively, if there is…
Hello,
all our Site-to-Site-VPN don't work again after upgrading from SFOS 20.0.0 GA-Build222 to SFOS 20.0.1 MR-1-Build342.
In the log we find:
(unnamed) - Couldn't parse IKE message from ..
Also all outgoing remote IPSec don't work again after…
Hi all,
I was hoping I can seek some guidance on this forum. Currently, we are using our Sophos XG Firewall to connect to our network on Azure using an IPSec VPN Tunnel. We do have two ISP running in our building one being main and other being backup…
I am having issues configuring a connection between two Sophos firewalls and i am hoping someone can help. The firewalls are installed in two datacenters which are operated by the same provider, both sites are currently configured with a WAN/internet…
Hello,
We have an application that requires reverse DNS lookup.
When users are on SSL VPN they are getting a new IP address via dhcp on the firewall frequently and the Ip Address does not get a PTR record created in the reverse lookup.
I've seen…
I have an IPSec connection that I would like to start the connection via Console. Which commands do I need for this?
I am referring to the second button that can be found next to Activate connection in the SFOS web interface.
Hi, I need help connecting the headquarters containing device ruijie rg-nbr6210-e and the branch containing device SOPHOS. I have made all the required settings, but there is no connection to find out more. I am at your disposal. Thank you.
I'm dealing with two stubborn workstations that are giving the "Service Unavailable" error in Sophos Connect when used with SSLVPN. This is a brand new deployment, everything is fresh. The services appear fine and if I switch the Windows user to a different…
We have multiple site to site VPNs setup with connection type 'Tunnel Interface'. The VPN links connect multiple remote subnets. How does XG pick a source IP because it seems to be random and can change when we re-establish a connection. This causes issues…
Buenas tardes,
Me pueden ayudar por favor con algún comando o instrucción para forzar la desinstalación de la VPN "SSL VPN Sophos (Semáforo)" de forma desatendida (Remota) en 150 equipos para luego actualizar e instalar a Sophos Connect, Muchas gracias…
Hello,
we are doing a migration from old XG330 to a XGS3300
I have a question regarding the sophos connect client, which is currently used with the XG.
the current sophos client is openvpn 2.3.8
The new one is in version 2.3, but, do we have a…
So I've seen some articles around on how to setup a Sophos to Azure site to site using tunnel interface, however all my research and talking with Sophos indicates this can only work if the Sophos firewall has a static IP on the WAN. In my scenerio, the…
Case is not resolved. Please open the case.
Sophos team has migrated cyberoam to Sophos firewall & Its working properly from last 3years with Cyberaom certificate which expiry is 2036.
The issue is Sophos connect 2.3 is not working but 2.2 & 2…
I have a Route based VPN from SOPHOS to SOPHOS. I need to create a loopback to allow a connection back to a server.
I am not able to find any information regarding this. In fact from what I can see I am not sure I can even do this with a normal IPSEC…
Recently, I had a problem with a client and their VPN. I noticed that when connecting to the VPN using Sophos Connect, all the DNS requests I make are resolved by the XG. In other words, when I run an nslookup google.com while connected to the VPN, the…
I have the same problem as described in the following post:
RE: LLMNR disabled - DNS resolution no longer works over VPN
I have now updated to 20v1 MR1 and installed the current Connect Client. Unfortunately, the error is still not fixed with Sophos…
We are experiencing a very strange effect with the Sophos Connect 2.2.90 client
We use SSL VPN connections for users. Users load the profile from the user portal and import it into the client. The connection works fine, but when the user switches networks…
I want to deploy Sophos Connect 2.3 to a group of computers before we install the firewall at the site and push the provisioning file. File is easy, but the GPO to install the Connect Client, while applied to the computer, never installs. We have a company…
Hello, everyone. I would like to hear from you about your experience. Thank you in advance. Sophos version: 19.5.4 I have two questions. First (1) - Our company is going through a name (identity) transition. We are no longer called XYZ but ABC. Our provisioning…
Every time I wanted to connect to a VPN via Sophos connect the connection was established for the first time but then the Sophos TAP Adapter card displayed unidentified network, The temporary solution is to deactivate/activate the card to be able to connect…
Hello,
I am experiencing the issues listed in NC-120119 when I am using TCP mode for my SSL VPNs.
I have a select number of users who I required to get a static IP address, however when they are connected, if they change network type and it tries…
Hello,
I have Sophos XG 2300 with firmware 19.5.3 MR-3.
I'm trying to set a static IP address for a site-to-site SSL VPN client. Is there any way to achieve this?
Whatever I do it keeps getting leased IP address from Global DHCP pool or the VPN…
Hello, we have a single remote user at our organization using the Remote SSL VPN group. We do not use AD to sync passwords or anything. they are just set by the Admin. He emailed me today saying that his password expired, and he can log-in to the VPN…