Hallo Community, wir migrieren gerade von einer SG zur XG. Dafür haben wir zwischen Core-Switch, SG und XG OSPF eingerichtet, mit der Idee nach und nach alle Netzwerke umzuziehen. OSPF an sich funktioniert soweit, alle Netze werden ordnungsgemäß redistributiert…

Hallo miteinander, von unserer Hauptniederlassung (Site A) kam die Anforderung die bestehende VPN Verbindung zu uns (Site B - Sophos UTM 9) durch eine MPLS Verbindung zu ersetzen. Folgendes Szenario: Unser Netzwerk (Site B) bestehend aus div.…

Hallo zusammen, ich hatte in einer kleineren Umgebung mit drei Netzwerksegmenten das Problem, dass RDP Verbindungen über das Gateway (SOPHOS SG135) hinweg sehr langsam sind, bzw. in einer Schleife mit der Meldung "Versuche Verbindung wiederherzustellen…

In under a 24 period I have a logfile that fills up with this message: 2021:02:18-09:51:17 ast-thr-utm-001 httpproxy[16699]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="172.17.17.2…

Hi folks, I try to grasp how Sophos UTM handles routing and found this image on Rulz (from BALFSON): /cfs-file/__key/communityserver-discussions-components-files/51/4087.iptables-sequence.JPG Unfortunately, it doesn't tell me clearly what is the…

Hi Guys, I'm running the latest UTM 9 (version 9.705-3). I have the following configuration: LAN 1: 10.10.1.0/24 LAN 2: 10.10.2.0/24 SSL VPN Pool: 10.10.3.0/24 Everything works fine. I can log in with VPN users and they get allocated an IP address…

Hello dear members, quick question. I would like from A > Any > B also back again B > Any > A Explanation: I would like to be able to reach e.g. with my notebook A the notebook B by Ping and also vice versa. The aktiv Rule: At source it says:…

Hallo liebe Mitglieder, kurze Frage. Ich möchte von A > Any > B auch wieder zurück B > Any > A Erklärung: Ich möchte zB. Mit meinem Notebook A das Notebook B per Ping erreichen können und auch umgekehrt. Meine Frage: Richte ich das beidseitig…

Hallo zusammen, mal eine Frage zur Infrastruktur eines WLAN über Sophos XG. Wir setzen im Hauptstandort eine Sophos XG 310 mit diversen AccessPoints ein. Über eine MPLS-Strecke ist ein entfernter Standort angebunden, der zentrale Internetausstieg…

I`ve client who wants to route specific websites over IPsec tunnel connecting to Mikrotik router. I have done this on Mikrotik routers and its pretty simple there but in Sophos UTM 9 it seems like there is something specific that is required but im missing…

I'm currently using Uplink Balancing with one active WAN (WAN1) and one standby WAN (WAN-BAK) interface for failover. I have prepared a WAN2 interface (to another ISP) and would like to add it to active interfaces in order to provide a smooth transition…

I have a UTM version 9.705-3 with two subnets, LAN 192.168.100.0/24 on eth0 and WIFI 192.168.200.0/24 on eth2 that are connecting via IPSEC site-to-site VPN to a FortiGate appliance with hundreds of subnets. so I've configured the remote network on the…

Hello, I found similar topics on the forum but none on them clearly explained what the problem is. It seems Web filtering is taking priority over Policy Routes. I have the following routing problem : Network 10.10.10.0/24, which is a production…

Hello, is there anyway to setup SSL VPN without static ip, there is no option on ssl vpn configure to define the public domain name. This option available on XG and it working fine, but UTM i don't see way to setup remote access without static ip.

Hallo, wir haben auf unserer UTM9 ( 9.705-3 ) zwei DMZ Interfaces mit jeweils anderen ISP´s. DMZ1 geht über ISP1, DMZ2 geht über ISP2. Nun wollen wir aus dem DMZ1 Traffic an eine externe IP die am ISP2 per NAT an die DMZ2 aufrufen. Leider versucht…

Moin, kleine Vorwarnung: Ich habe die IT von meinem Vorgänger übernommen, kann auch damit arbeiten, stehe aber leider noch nicht so richtig stabil im Thema Sophos. Fangt beim troubleshooten also ruhig etwas gröber an, ich habe den Verdacht, dass das…

in which place of astaro SG310 can I define that when they enter http://test.intranet/ url it points to the ip 192.168.1.10 like and intranet routing

We have created Site to Site VPN tunneling . Port 443 of the specified IP but cannot access the IP . The error log say Web protection block how to fix this . I tried adding IP in exception and while list but that doesnot work How to fix this

I have several subnets in my local network (for subtenants) and some spare ip addresses in my WAN ip class. I would like to change the outgoing public ip address for some of those local subnets (used by subtenant organizations) and let the rest of the…

Hello Sophos-Community, my problem is the following: I am trying to set the following permissions for our ssl vpn: access to 192.168.13.0 access to 192.168.13.11, but just a specific port. It shouldnt be a firewall deny or discard rule because…

I am trying to configure VLANs for my WiFi and I am having problems and I am not sure if its the WiFi system, the HP switch or the Sophos SG135w UTM 9. I currently have 6 AP's to cover the whole site, 3 x UniFi AP and 3 x UniFi AP-Pro they end up in…

Hi, I'm running UTM in the following scenario: PPPoE DSL Upstream <-> UTM <-> internal router My provider Deutsche Telekom provides me with a /56 IPv6 prefix, I would like to be able to delegate a prefix of e.g. /58 to the internal router so that…

So I want to filter on client side so only sophos reds can use the internet.. what ip or port I need to whitelist? so far I only allow UTM ip but reds status still down.. I want to add sophos.com and supportaccess.. but their ip is dynamic (change all…

Hi, I have several web servers running behind a single Sophos UTM, with two interface: - eth0 > external (x.x.x.7/26) with default GW (x.x.x.1) > Additional addresses > x.x.x.8/26 > x.x.x.9/26 > x.x.x.10/26 > etc - eth1 > internal (10…

Hello Community I have a little routing problem I don't really understand. The Route should be like that Please dont ask why or tell me to directly connect the UTMs. Thats out of the question in this scenario: For this example lets say (IF …