Hi there. I have a host machine with Sonicwall Global VPN Client installed on it that can't connect to the peer/destination. The network map looks something like this: Host >>> UTM >>> Cisco ASA >>> Internet >>> VPN Target I've been looking at this…

Trying to use TeamViewer QuickSupport on an Android device that's on one internal network (10.10.0.0/24) and access it from a PC on another (192.168.12.0/24). I have FW rules allowing outbound TCP/UDP 5938. Both can "activate" TV and get an ID. When I…

Sigh my browser died and I have to write this again. It was a lot more creative before, I can tell you that. So I have a datacenter with a Sophos UTM 9.506-2 cluster as my gateway. I've created a new VLAN210 which is not supposed to talk to VLAN31…

Dear all, I have a serious problem with a VPN-Tunnel between a SophosUTM and a Barracuda CloudGen Firewall. The Tunnel is established but I cant access anything from the other Site. When I run a ping I continuously see that ESP Packets between…

I am replacing an old firewall (Cisco ASA) with a Sophos SG. I have set the SG with the same firewall and DNAT rules as the old firewall, but the 2 IP phones that are in remote locations are not working - they cannot connect to the office and the office…

Hi, I am new to the Sophos UTM. Have been using Untangle, but just migrated into Sophos UTM and i really like what i seen so far. The only issue i have is: I installed and configured (as far as i can tell) the Sophos UTM, but when i enable Web Filter…

Bonjour, Voici mon problème je possède plusieurs arrivé internet sur mon pare-feu, je voudrais que sur une seule arrivé internet je puisse ouvrir un port qui l’est déjà sur l’ensemble des arrivés. Afin que ce qui arrive sur cette ligne internet soit…

As Sophos Country Blocking (in the firewall section) is process in the very beginning of the process, it will affect many logs. As we freshly activated Country Blocking, it's very difficult to see the impact without looking at every log like Firewall…

Hi We have a Utm and at the moment we do not have or need a Dmz We have just bought a pulse secure appliance that has two network ports internal and external. I’m trying to decide the best way to set it up. If I create a new interface with a new…

Hi, I'm using the UTM for many years now, but now I have a problem I got stuck.. The Environment: Site A (a rented Server): Small Server, virtual UTM (UTM A), many public IPs, fast Internetconnection Site B: big hardware UTM (UTM B)…

When I create a rule using a user group, don't work (it seems that it is not right that the user is part of the group) When I change de same rule to user a user directly, work's fine; This user is not a local user, it's imported from active directoty…

Hi, I have several web servers running behind a single Sophos UTM, with two interface: - eth0 > external (x.x.x.7/26) with default GW (x.x.x.1) > Additional addresses > x.x.x.8/26 > x.x.x.9/26 > x.x.x.10/26 > etc - eth1 > internal (10…

Hi, I am trying to run speedtests via speedtest_cli on one of my boxes to regularly check the actually available speed my ISP provides. Now the download speed is limited by my Sophos UTM box (9.510-4) by snort going to 100%. If I turn off IPS I…

Hi, We need to publish a new mail server for a new domain, but we want to publish it with it's own public ip. The story :) We have Sophos UTM to manage mail protection for our principal domain, let say example.com The public ip for the UTM is…

Having a pretty persistent issue that's been driving me nuts. We run UTM 9.5 at the main site and have a RED 50 device at a remote site (Standard/Unified). Starting last week, we've been randomly losing the dial tone on phones. Checking the firewall…

Hello, I have a somewhat unusual situation with my Sophos... up until a few days ago everything was working as expected but we had a power failure that resulted in the firewall shutting down (not gracefully). Since it's been rebooted, all the VLANs…

Hi, we have an SG230 running Firmware version: 9.508-10 and some SG115s in our remote offices. The Sophos UTM replaced an old Cisco ASA and now we are having issues re-establishing our WAN accelerators (Cisco WAAS). As the WAAS appliances renumbers…

Hello UTMers! Quick question for the geniuses here (I'm talking to you balfson!): What is the proper design of a country code exception that allows SMTP inbound and outbound from all countries? I have seen a bunch of posts on these forums...some say…

Hi, how can I exclude IP address range in uplink balancing. We have a user/client ip address changes from ISP1 to ISP2 automatically. ISP1 = fast internet ISP2 = not so fast internet. currently using Sophos UTM9 SG230

So, I inherited the current UTM 9 config and have been working on updating the definitions (some were out of date, some were no longer needed, etc). I found a large group called "Google Server Group" with the following entries: accounts.google.com apps…

Hello together! When i want to Download Apps from the Windows 10 Store, only a few MB are downloaded and then the download stops .. In the IPS Log i always found "MALWARE-OTHER Executable control panel file download request" (SID=33942) this Event…

Hello, some time ago I get messages from my UTM9 like these two following 2018:05:09-07:53:21 lyra snort[17243]: id="2101" severity="warn" sys="SecureNet" sub="ips" name=" Intrusion protection alert " action="drop" reason=" EXPLOIT-KIT Rig Exploit…

Hi I am new to Sophos UTM and figuring my way around setting things up. So far everything is working fine. However I ran into couple of scenarios, that I am not able to figure out why, how etc. Any help would be appreciated. My Setup: Linux Machine…

Hello, I'm experiencing some interesting behaviour that I don't quite understand. It seems the UTM will reply to some ARP requests but not all. This is all on the same subnet. Problem: Access Points are constantly sending out ARP requests for their…

I have a UTM 9.5 in the cloud. I connect to it with a L2TP over IPsec connection. I establish the connetion and visit some site to check my IP and it shows the IP of my UTM. If I drop the L2TP over IPsec connection and refresh it shows my work IP. So…