Hello Community, We have a UTM SG430 and 1GBit/s internet connection. Now I have noticed that IPS a. prevents the line from being fully utilized. b. Long response times (100ms-500ms) and even packet loss occur when the WAN interface is heavily utilized…

What is the best way to block all traffic to .zip TLD via UTM9? Normally I would use web filter profile with regex, but that isn't working. I've already blocked via intune where applicable, but that doesn't cover all devices.

Sophos SG 310 1Gbps bandwidth subscription Capped Internet Connection when IPS is enabled we try to change MTU size from 1500(default) to 1436 and force link speed to 1000BaseT test connection but still capped to 400MBPS

Please help me to check this case Thanks everyone!

I think what we all were thinking, finished my Sophos UTM Udemy course, thanks for all of your suppor without this community, it wouldn't be easy as much as it is now, I just wanna thank the Sophs Community for your support. If you wanna take a look…

Hello, Today i found something weird on my UTM logs, the client downloaded some files from Internet and i see the the traffic it show opposite direction, the download content should appear as Inbound traffic but below screenshot show totally wrong.…

I have a File server name Synology, it has option to share files to external users, i tired to share the files but remote users not able to access it, i have two Firewall in my Domain, one UTM version 9.711-5 another XG. On XG i just created DNAT…

Newbie question. I am running Sophos Home UTM 9 software appliance on a server I built. I have an app running on a single workstation that needs to communicated in and out on ports 4000 and 4001. I set up the following rules but it doesn't seem to be…

Hi, I know this has been posted many times but the answers I found are not working. I cannot going a subnet on a different interface on my UTM. I can ping OTHER subnets, so something tells me it's a setting with this one in particular that's stopping…

Hello, I am new to the forum and have a question directly to the experts here. We use a Sophos SG230 UTM 9. I would like to establish an external OpenVPN connection from my computer, which is behind the Sophos, to another network. Unfortunately the…

Hi folks, when you enable QoS on a switch, the switch applies a default DSCP policy table, which can be edited to special needs if necessary, but overall it should be fine. Now, does the Sophos UTM also work that way? Is it sufficient to just enable…

Under Webserver Protection -> Certificate Management -> Advanced I'm trying to enable LE certs, but i keep getting the message: "The previous attempt to enable Let’s Encrypt failed: Failed to retrieve the current Terms of Service link. Please try again…

Even though i have an internal to internet IPV4and 6 rule I still get Default DROP STUN Any clue how to allow STUN even though its not an option to allow like TCP/UDP/ICMP etc....

Ok, so how specifically do I ' set the corresponding intrusion protection rule to "drop" in WebAdmin ' per the alert email below I received? There is no 'rule' identified in the alert. Am I supposed to infer that 58442 in the snort link is the rule…

Hi! Ive got a few IPSec tunnels on a Sophos UTM that have up to 40-50 IPs on the remote network. (Not my call, I can't fight the other side). Please what cc get_object incantations can help me print out all the IPs? Because, unsurprisingly, the other…

Hi! Running an SSG330. I have a strange situation and I am a bit at my wits end. I have a subnet attached to a VLAN interface, which is applied on the Sophos LAN interface. I have setup masquerading for this subnet to the SSG330's External interface…

I realise i should probably looking to the VOIP phone support people, believe me i am on it, but after a recent firmware upgrade of an LG iPECS system what was previously working fine now works intermittently throuhg our Sophos SG UTM. Callers can't be…

Hi all, maybe a stupid question, but i'm struggling here... Our company has got their own domain let's call it: *.yummy.eat, now we've got an external partner hosting a subdomain, let's call it meat.yummy.eat From outside the company network, meat…

I'd like to know about MAC Address Filtering in Sopho UTM 9 firewall. I have 5 Vlans, vlan2-management (10.1.0.0/24) vlan3-Server (10.2.0.0/24) vlan4-Office-Group (10.3.0.0/24) vlan5-Branch-Group (10.4.0.0/24) I also have DHCP Server on…

Hello, I'm trying to create a simple allow list (whitelist) in in the SOPHOS UTM Firewall for a particular site, leaving all other sites unaffected. See the following configuration screen; Rules 9 and 10 are the ones of interest. Rule 9 is attempting…

Hello everybody, I hope someone can help me with our problem. Starting position: Small terminal server farm consisting of 1x broker server and 2x terminal server. Establishing a connection and working in the LAN is therefore possible without any problems…

Hi, we have an existing Ipsec VPN from oure Sophos to an customer with an Juniper device. No we have moved to an new location and also have an new provider (Vodafone). I changed the WAN IP where possible, and contacted our customer because they also…

Hello I run a UTM 9 and everything works quite well. But I have a question about a remote access configuration to two different networks over the same remote access connection. Right now, I have a remote connection to the internal network (A) let…

Dear all, I have 2 old Sophos firewalls UTM220rev5 on which I'd managed to change the root and the loginuser passwords (following the instructions from https://support.sophos.com/support/s/article/KB-000034260?language=en_US ). I'm not able to change…

Hello Guys I have a problem with the l2tp VPN on my UTM9 Firewall. I activated the l2tp vpn Option, and for the IP's i have chosen the l2tp vpn pool. I also made a Firewall Rule which allows my VPN User Network to have acces to mit LAN Interface…