Hi everyone, I have a challenge managing two firewalls (FW1 and FW2) in two different data centers (DC) that are far apart. In DC1, I use FW1 for IPSec tunnels with my clients. I want to add some details: We don't plan to use a FW cluster. We…

Hi, I have L2TP over IPsec VPN setup on our SG125W firewall and it's not the best as it adds a lot of overhead to the user's connection experience. So searched around on the internet and found this article for setting up SSL VPN using a RAIDUS server;…

I’m documenting my numerous issues with SOPHOS Firewalls so that others can be aware of what they are getting themselves into. Episode 1 community.sophos.com/.../sophos-purposefully-designs-bugs-into-their-firewalls-episode-1---vpn-failover-and…

I’m documenting my numerous issues with SOPHOS Firewalls so that others can be aware of what they are getting themselves into. Our Background: My business is a long time customer of SOPHOS Firewalls(more than 10 years). We have 18 Firewalls and…

Hello community, i got a question related to the NAT Traversal setting in Sophos UTM (9.714-4). I created a new VPN tunnel between an SG125 and an SG230 and the tunnel seems to be up and running fine, according to the webinterface, but i am not able…

The Problem was first described here : Remote Access via IPSec, Client connected but not receiving packets Currently running Version 9.713-19 of the Sophos UTM 9 SG550 Firewall. Client IPSec version is the latest available : 2.2.75 NAT-Traversal…

The Sophos VPN client does it only work on SSL or can I use it with L2TP over IPsec? Thanks,

The client can conecct to the VPN from Windows but the problem is even he can ping, can't resolve the domain, anyone seen this before?

Hello, we have a Sophos UTM 9 SG550 running on latest Firmware 9.709-3. We are using Sophos Connect VPN Client version 2.1.20 ( latest ). We have Remote Access IPSec setup but for some reason some clients when connected ( from their Home ) will not…

We have an SG230 UTM and we're using L2TP/IPSec VPN to allow remote users to connect to the network. This has been working flawlessly for about 2 years now but we've suddenly started having issues. When trying to connect from Windows clients we get…

Hi, I have UTM9 connected to modem, then modem connect to HQ firewall. How to setup ipsec site-to-site vpn connection using this setup? Branch UTM9: LAN (192.168.12.x) - LAN IP WAN (192.168.0.x) - Local IP of Modem Modem (175.x.x.x) - Public…

Hi there, I´m having a hard time understanding some RADIUS authentication issues. For better understanding, a sketch of my setup: We have a UTM with Wireless Protection in the Head Office. We have a running Authentification with RADIUS for some…

Hello all, As the UTM 9.705-7 we are using was setup by an MSP and at that time we had Exchange 2010, on premise as well. We've since moved to Exchange online and I handle all the Sophos items now. Lately we have random users receiving the following…

Hello, I am stuck with my 3 UTM9s installed in 3 sites. I want to configure S2S VPN Azure to UTM9 with Route Policy and it won't pass the connection. Can someone help me to do this configuration on UTM9 side? Does it support Route Policy? It's…

I'm currently using Uplink Balancing with one active WAN (WAN1) and one standby WAN (WAN-BAK) interface for failover. I have prepared a WAN2 interface (to another ISP) and would like to add it to active interfaces in order to provide a smooth transition…

We're having issues being able to connect to our new location's UTM behind our ISP's NAT'd public IP. I was able to get a site-to-site VPN connection working between our New Location and our other location's UTM by setting our other location's UTM to…

Hello guys I got an strange issue. I needed a long time to complete a configuration between my Sophos UTM9 and my ShrewSoft Client to bring up a tunnel with an X509 certificate. A preshared key is unwanted. Now this is completed with 99%. The problem…

Hi all, I just created a new Site-to-Site-VPN with IPSec and the VPN is UP. If I log into my Firewall and try to ping the private IP on the other party, it works, if I try to do that from my PC it does NOT work... The VPN should use two private…

Hello, I have an issue related to ipsec. Definitely IPSec was not disconnected, but client which was located in BO can't access the server which was located in HO via IPSEC tunnel. PING reached a destination server correctly when client was not able…

OK, here is the deal. I have UTM 9.5s installed at my main office, and a branch office. The Site 2 Site VPN between the 2 offices is an IPsec VPN. Main office has static IP, branch office is Dynamic. I have all that sorted out and working fine. I can…

Hi I setup Site-to-site VPN by IPSec using C2821 and SG115. It looks like to be connected from looking Site-to-site VPN Tunnel Status. but, it can't response by ping ,eachother. And ,this situation is reproducted when using C2921 instead of C2821. …

Hello, I've been bashing my head against this issue for a few days and finally need to ask for some help. I have a network created in AWS which uses a Sophos UTM for all connections into the VPC. I'm not using the AWS VPN Tunnel for VPC. The Sophos…

I have SG devices on the Head office and branch office. And two devices are connected using IPSEC VPN tunnel. All traffic including internet traffic from the branch office is going out through Head office. That means IPSEC VPN full tunnel. There was…

After upgrading to 9.411-3 IOS devices cannot connect via IPSec, if the configuration on the ISO device is deleted and configured again via remote access it works, but we dont like to bother our users reinstalling the VPN configuration... is there a way…

Hi, I have several UTM's last night that I updated to the latest firmware (9.409009) 3 of them are having issues with the IPsec VPN tunnels after the upgrade. It'll show the tunnels as being connected, but can't pass any traffic, ping, etc. They were…