Hey liebe Sophos-Community, ich brauche eure Hilfe, da ich sonst nach drei Tagen rumprobieren wahnsinnig werde. Was hab ich vor? Ich betreibe zwei Sophos UTM Firewalls zuhause, eine UTM 320 welche das LAN verwaltet und eine SG115 welche das WLAN…

I have the need to change an incomming stream request to an different streaming server with different name name and on different port. For example: Request to www.test.com:8144/abc.mpeg www.test.com:8044/def.mp3 Is this possible and how? I tried…

Bei einem Kunden wird aktuell über die SG330 eine VPN IPSec v1 zum vTK Server der Telekom aufgebaut. Weil diese in Zukunft nur noch per IPSec v2 aufgebaut werden kann und die SG330 dies nicht anbietet, wollen wir die VPN Verbindung über den Lancom aufbauen…

I've successfully setup my first SSL VPN for remote access into my network, I can immediately access the listed first subnet, my internal infrastructure. However, I also want to be able to access two other subnets, they're listed in the SSL VPN profile…

I have two internet connections from two different ISPs. Let one be called X and the other be called Y. X and Y are separately connected to a firewall. I use X actively. I want Y to be active when X loses internet connection. Then, when X internet connection…

Hello, I have two WAN connections. Now I want to the service Port 51413 to use ONLY WAN2 and whole internal network LAN from WAN1. How Can I do this? I repeat when WAN 2 is down I don't want Port 51413 connect through WAN 1.

Hallo, folgendes Szenario: Ich würde gerne Mails die an bestimmte Leute im Unternehmen gehen an einen anderen Mailserver senden. (wird gebraucht um bestimmte sachen zu testen ohne die produktivumgebung lahm zu legen). Ich habe es über ein SMTP Profil…

Hallo, ich habe folgende Situation: 2x Sophos UTM 2 Standorte verbunden über einen IPsec Site2Site Tunnel, automatic firewall rules enabled Standort 1: 192.168.240.0/24, UTM IP Address 192.168.240.254 Standort 2: 192.168.0.0/24 , UTM IP Address…

Hello volks, yesterday I stumbled over a weird new issue. It seems that our NAT masquerading rules are not applied when traffic matches a policy or multipath route (in interface mode). So I tried a traceroute with a port so the trace would match the…

Hi We have a datalink L2, to communicate site A and Site B. On the Sophos site (site A), we receive the ip automatically, and can ping to gateway. On the site B, we have a unifi UTM (unifi UDM pro), we already make the firewall rule to able communicate…

I’m documenting my numerous issues with SOPHOS Firewalls so that others can be aware of what they are getting themselves into. Episode 1 community.sophos.com/.../sophos-purposefully-designs-bugs-into-their-firewalls-episode-1---vpn-failover-and…

Hi guys, I’m trying to NAT (or DNAT) Single WAN with multiple ports to Internal LAN IPs. Just wondering what’s the best way to do it. Example: WAN 40.12.34.56:1000 to 192.168.1.5 WAN 40.12.34.56:2000 to 192.168.1.6 WAN 40.12.34.56:3000 to 192…

I have a SG135 with UTM Home and a Fritzbox 6591. My Network is a followed: ETH0: WAN with IP 172.10.0.2 (Fritzbox 172.10.0.1 / Additional IP 192.168.3.1 with DHCP on UTM for WLAN over Fritzbox) ETH1-7: internal Network with 192.168.4.1 and DHCP Pi…

Hi, ich habe eine SG135 und nutze sie in Verbindung mit einer Fritzbox 6591. Der Aufbau sieht wie folgt aus: ETH0= WAN / Additional IP UTM 172.10.0.2 (Fritzbox 172.10.0.1 / WLAN 192.168.3.0/24) ETH1-7= internes LAN 192.168.4.1 (192.168.4.0/24…

Hi, I'm not too familiar with IPv6 yet and I'm struggling with my setup. I got assigned a subnet 2001:xxxx:yyyy:zz00::/56 from my ISP with 2001: xxxx : yyyy : zz00 ::1 as the gateway. I assigned 2001:xxxx:yyyy:zz00::2/56 to my WAN interface and can…

Apologies if this topic is covered here elsewhere. A quick search did not find a solution. We have the following equipment: Endpoint LAN: 10.0.0.40 GW: 10.0.0.1 Sophos UTM LAN (eth0): 10.0.0.1 /24 WAN (eth1): 100.100.100.2 Private…

Hi Community, I need help creating active redundant Data-Chanels for a customer system. Heres my Setup (also see picture): I have 2 UTM-Clusters on two sites "1" + "2", Connected via transparent DWDM-Transfer-Interface, OSPF active for redundancy…

Hi Community, we're experiencing a weird problem. We have just got installed a new router from our service provider which connects us to a 192.168.200/24 where our Telephony Server is located. There is a working route on our coreswitch( 192.168.14.39…

Hi, I am deploying a Sophos Firewalls + RED devices at a customer place. The customer has P2P RF Links and Broadband connectivity and the current setup looks with something like follows: 15 location: Broadband Only - Deployed RED-60 devices 10…

Hallo zusammen, wir installieren aktuell komplett neue Infrastruktur mit HPE MSA & 4 verschiedenen Hosts. Bei unserer aktuellen Firewall SG115 sind alle 4 Ports bereits belegt, gibt es eine Möglichkeit unsere neue 2100 ins vorhandene Intranet…

Our network will consist of 5 access switches connected to a layer 3 core switch connected to a SG430. We will have several VLANS consisting of computers, VoIP phones, security cameras and card access readers. Total users will be around 100. We are fully…

The setup is a layer 2 switch with 2 vlans, Management (172.20.20.0/24) and Data (192.168.100.0/24). The vlans are separate port groups. The switch has a physical connection for each vlan connected to 2 interfaces on the UTM. The UTM is the default gateway…

When I wrote the belowed static route, it is not shown in the route tables and it also doesn't work, any idea why?

Hallo Leute, ich habe aktuell FritzBox 6591 (10.0.0.1/24) und ein Öffentliches 30er Subnetz mit der Sophos SG230 OS 9.7xx Habe von der FritzBox 2 Lan Kabel an der Sophos. FritzBox LAN1 auf die Sophos ETH0 (10.0.0.254/24) Statisch FritzBox LAN2…

Hi guys, yesterday I installed a nice system consisting of a SG210 and 6 outdoor sites with RED60 at a customer. So far everything is great and I am very satisfied. For reasons of web filtering / IDS / antivirus / firewalling, etc., the REDs run according…