This topic has been covered before a few times but I was hoping to get some help wrapping my head around what I'm seeing. I tested 5 VPN configurations both with and without IPS turned on. As previously documented IPS kills basic throughput (without…

Hello, Following a reboot of our servers, we are no longer able to access several internal and external services (VPN, telephony, User portal) I am neither a network expert nor an advanced user of Sophos solutions, but I will gladly provide you with…

So this is basic I'm setting up a firewall rule to allow specific VPN traffic Here's the specific service definition Attempting to setup a VPN, I get this... Here are some of the same drops from the full firewall log Why is this traffic…

Hi Has anyone successfully been able to install OpenVPN Client alongside Sophos Connect v2 client? It appears that because the Sophos Connect v2 software utilises the OpenVPN service for SSLVPN connection you can install them together but not have multiple…

Hello all, Somehow I missed getting the EOL notices for SSLVPN and only saw the information this past week when looking at FW 9.710-1 upgrade . I'm having my end-users, log into the present portal (9.709-3), download their .OVPN config, uninstall 2…

Hi all! We are using SSL VPN and facing severe performance issues all the time. When using RDP, the desktop sometimes freezes and copying files to and from the remote desktop takes very long (about 1MB/s, the connections are capable of 10MB/s (home…

Sorry but I have to unlock a user for Facebook inside our company network. We have blocked facebook for all, which works fine. Now just one marketing user need facebook for work and i want to whitelist this user so he can do his work on fb. We do not…

Upgraded last night and now my clients are getting the following errors when connecting to VPN. Any help would be great... Fri Oct 08 09:14:29 2021 MANAGEMENT: >STATE:1633698869,TCP_CONNECT,,,,,, Fri Oct 08 09:14:39 2021 TCP: connect to [AF_INET]173…

Hello guys, Trying to get a IPSec tunnel between our HO UTM and a USG we got for testing. Currently have it on my home network, seeing if I can get a IPSec tunnel going. In logs, I keep getting: "MyWANIP" :500: ignoring informational payload, type…

Hello, i use Sophos UTM Home since years now, and im really happy with it:) But as the Sophos UTM is still missing the Open VPN Client possibility, and DNSCrypt DOH is also not possible, i was thinking to add an other FW as Fronted Firewall to configure…

I have five Draytek 2960 running IPSec VPNs to a Sophos XG230. The Drayteks initiate the connection using IKE2. I get an email from the Drayteks every 53 minutes saying the link dropped. (It reconnects.) IKE Phase 1 timeout is 28800 seconds, Phase…

Hi all, I have a bunch of users now in Home Office that have connected their laptops over Sophos VPN (we use UTM 9) to our network. I want to have access to the laptops from within the network to update some configurations over our deployment tool.…

Hello Guys I have a problem with the l2tp VPN on my UTM9 Firewall. I activated the l2tp vpn Option, and for the IP's i have chosen the l2tp vpn pool. I also made a Firewall Rule which allows my VPN User Network to have acces to mit LAN Interface…

I'm trying to find out the (historic) source public IP address of a user who has been connecting to the Sophos SSL VPN on a Sophos XTM firewall. In the firewall logging I can find all the info for this user after he has connected, but the only way I can…

Hi there. I have a host machine with Sonicwall Global VPN Client installed on it that can't connect to the peer/destination. The network map looks something like this: Host >>> UTM >>> Cisco ASA >>> Internet >>> VPN Target I've been looking at this…

Hi everyone, We have two sites running UTMs that have an OSPF connection to each other over private link. They also have AWS VPC site-to-sites to the same VPC instance. AWS VPC | | Office 1 - Office 2 Is there a best practice advised for how…

Dear all, I have a serious problem with a VPN-Tunnel between a SophosUTM and a Barracuda CloudGen Firewall. The Tunnel is established but I cant access anything from the other Site. When I run a ping I continuously see that ESP Packets between…

Basically we would like to reserve some bandwidth (up & downstream) for our employees who sometimes work from their home office. We have an asymetrical bandwidth with 250MBit down & 25 MBit upstream. Sometimes we notice that for example uploads massively…

I'm trying to connect remotely to a local pc to access its files. Remote connection to utm vpn server establishes successfully. I can see the shared folders of the pc behind the UTM. However, when I try to copy a remote file (behind the utm) to the…

So I have successfully been able to establish a ssl site to site between two offices. I have added the local networks from each site to the ssl config and can see the firewall rules have been auto added. However I'm not able to reach some workstations…

Hi I am running UTM 9.506 and unable to figure why i cannot access some of the internal (sophos webadmin, user portal, webui for other devices), do not see any drops on the firewall logs. Everything works flawlessly on my android. Also tried the same…

Hi All, We are having an issue with IPSec tunnel going down on two site after a few days. If we just plug another device to the switch then Tunnel comes back online. we have switch connecting through 4G modems connected back to our Sophos firewall…

Hi, I have searched for an answer to this, but am unable to find a result which includes a 1:1 NAT. Here is the scenario: Remote User -(SSL Remote Access VPN)-> Sophos UTM 9 -(IPSEC Site-to-site VPN)-> Partner servers We have a requirement for…

I can't access the WebAdmin despite being connected via VPN (SSL). Here's the basic configuration: The UTM has a publicly accessible hostname (with matching certificate) - COMPANY.COM -> our public IP On our internal DNS it also has a local DNS entry…

Hello Everyone, a customer of ours asked us a question about giving a Power-User a seperate DSL-Line with a static IP-Address for his home-office. So here is my question: Is it possible to give one single user an ssl-vpn profile that connects…