Hello, I installed Sophos XG on the cloud. I can't access it from the web because it is port 2 WAN, and it should be the LAN, but I can't change it. Is there any way to change the zone from WAN to LAN? It's the home edition, so I'm not sure this is the…

Hello all. I'm a newb home user coming from OpnSense. I'm having an issue accessing my subdomains. This is something simple that I'm just not understanding. A couple pics will help explain what I'm trying to accomplish, and my setup. Interfaces …

Hello. We had 2 XG330 firewalls in our environment that failed within a week of each other. I was able to back up the configuration from the working firewall before it failed. We installed 2 new XGS3300 firewalls and restored the configuration to those…

Hi All, I have 3 APX 320 connected in Mesh on 5 Ghz. Only the first AP is connected to LAN, while the others are meshed. One Wi-Fi is bridged to AP lan, and users are able to surf. I have also created another wifi (guest) as separated zone. Clients…

Is it normal that in the FW Logs is sometimes a zone entry and sometimes not? The FW should in any case know what zone the paket comes from/to.

Hi, I've moved to SFOS 19.5 from UTM9 and having some trouble getting my head around a couple of the concepts. One of them is the Zone/Network/Devices model that SFOS uses; What's the relationship between Zones, and Networks and Devices when creating…

Hi, I want to access my access point which are in zone called B (ip range: 172.16.1.1) and my computer are in another zone called A(ip range: 192.168.100.1) now how I can access the access point from Zone A to Zone B. Please help me to setup firewall…

Hi, I am getting Phantom traffic from WAN to WAN in XG firewall even if the LAN Port is disconnected and no AF or DNAT rule is there for webserver. No Webserver is present there. After implementing WAN to all Interfaces Block policy the traffic dropped…

Hello. We have Wi-fi -> Access Point -> Router -> Sophos FW. I just want to know is it possible to use DMZ without Masquerading? Because we need to actually control what kind of content each of the users access using the Sophos. As you guys…

New Sophos user here, setting up my XG's with a zone for my POS system. POS zone will have limited internet access, only to allowed or trusted sites. I will also need to set up some nat rules for internal communication with wireless units and local PC…

Buenas a todos, puede que sea la manera menos ortodoxa pero lo hicimos asi Tengo una Zona_Lan_0 (192.168.0.xxx) por el port1 y tengo una Zona_Lan_1 (192.168.1.xxx) por el port3, en principio era preparado para cuando partieramos el sophos. Se creó…

Hello, For a special configuration on a customer, we need to create a 2nd WAN zone to manage the VoIP traffic. When creating a new zone, we have only 2 types available : LAN and DMZ. Is there any possibility to add another WAN, separated from the…

Hello, I have 3 zones in my network. I cannot ping between zones. Ping command working only in zones. What i have to change in sophos?

I have created a separate zone (LAN) for my IP phones and to use a separate interface on the XG. The IP address for my LAN interface is different to this zone (IP PHONE) DHCP is configured to provide ip addresses to these IP phones by the XG. My question…

Hi, We have sophos XG 430 installed on our primises, and have wireless network created with Bridge to AP LAN mode, which is giving full upload and download speed of 100 Mbps without any issues. We have recently created another wifi network, in separate…

hi, i have XG210 with V18 Mr5, my clients are in LAN zone and Domain controller/DNS is placed in DMZ. dns address of client end is domain contorller. when user want to go to internet then 1st of all for dns resolution it goes DNS server placed in DMZ…

I am working to setup a firewall and facing strange issue. The configuration is as follows: Firewall and Other Servers are hosted in subnet: 172.16.100.x Clients are hosted in various subnets like 192.168.x.x, 10.10.10.x Top Firewall rule is to…

We would like to test with with the one of the 2.5 Gbps as the WAN port after the device is in production. Is it possible to change the designated WAN port on the XGS 136 without having the redefine the whole configuration – NAT / MASQ, Rules, Policy…

Hallo Zusammen In der LAN Zone ist der Port1 mit 192.168.150.0 Netz In der DMZ Zone ist der Port3 mit 192.168.151.0 Netz Ich habe ein LAN Zone mit den Port1 auf den DMZ Zone Port3. Da habe ich eine Firewallregeln angelegt und eine NAT-Regal hinzugefügt…

I am using XG 450 with version 18.5. We have to control traffic between LAN and DMZ with internet also. We have three subnet running in DMZ. I have created three vlan interfaces with gateways of the subnets as vlan interfaces. Created three different…

Hi, is it possible to change the zone of a RED (here RED60) without deleting and recreating the RED? The RED is member of a bridge and it seems, this is causing the zone drop down to be inactive. Other REDs, also 60's have this option changeable.

As a quick background, I have been working with firewalls for about 15 years (Cisco PIX, Cisco ASA, and recently SonicWall TZ and NSa). I have been working on and off with Sophos XGs for about 2 years now so I am familiar with them but they are definitely…

Hi All, I am attempting something similar to this: https://support.sophos.com/support/s/article/KB-000035920?language=en_US I am using XG Home (18.0.5 build 586) on a VM with 4 port NIC. I would like to use: Port1=LAN; Port2=DMZ; Port3=WAN I initially…

Hello, I still don't understand how zones work. Unfortunately, I can't understand how and what the meaning behind it is. At first glance, it looks to me that the zone is actually nothing other than how one would define various services in advance…

Sophos XG106 (SFOS 18.0.5 MR-5-Build586) I have set up several own DNS servers and added them to XG DNS settings. XG DHCP service provides those DNS servers to our clients. Clients are separated in different zones, all with their own WAN rule and…