Hello, we have a Sophos UTM 9 SG550 running on latest Firmware 9.709-3. We are using Sophos Connect VPN Client version 2.1.20 ( latest ). We have Remote Access IPSec setup but for some reason some clients when connected ( from their Home ) will not…

Hi, We encountered issue in Sophos SG device wherein it cannot block VPN applications on BYODs, it is challenging to use decrypt and scan for these as it would require to install certificates and in BYODs its not feasible. Have you encountered…

Hallo, ich hatte vorhin ein Thema zum Vlans über RED-Tunnel routen, leider gab es keine Antworten und Gespräche mit mehreren Experten führten auch nur zu Fragezeichen Ich habe nun also noch mal das IPsec angeschaut und eine Problemanalyse betrieben…

Hallo, ich habe ein Problem. Ich möchte über einen Site-to-Site RED-Tunnel VLANs übertragen. Der Aufbau sieht so aus, auf jeder Seite befindet sich eine SG210 mit UTM 9.709. Seite A ist der RED Firewall Server, Seite B ist RED Client. VLAN 1…

Fri Feb 18 15:32:13 2022 OpenVPN 2.3.8 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [IPv6] built on Oct 30 2018 Fri Feb 18 15:32:13 2022 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.09 Fri Feb 18 15:32:13 2022 MANAGEMENT: TCP Socket listening on [AF_INET…

Hi, we use a SG550 and our vpn admins (with the Right Remote Access Manager) are not able to download the SSL VPN Package via Webadmin, (Definitions & Users, Users & Groups, Action Download SSL VPN Packages). This is because they don't even see Users…

Hallo an alle, ich habe jetzt knapp zwei Abende rumprobiert eine IPSec verbindung zwischen der genannten FritzBox und der Sophos herzustellen. Ich denke ich kenne mittlerweile jeden Artikel in dem es nur ansatzweise um VPN zwischen FritzBox und…

Hallo, wir betreiben eine SG210 mit der Firmware 9.707-5. ich hab seit ein paar Wochen das Problem, dass unser COM Server (nicht in der AD, IP 192.168.1.2) nicht mehr auf eine gegenstelle per SMB kommt. Der Aufruf passiert im Mirth und soll über…

Hello, I have a strange problem with a site-to-site tunnel from LANCOM 1793 to SG230. Let me explain first, I have 10 tunnel site-to-site ipsec tunnel from various lancom router to the same sophos utm sg230. All working with the same IP-SEC-Policy…

We have an SG230 UTM and we're using L2TP/IPSec VPN to allow remote users to connect to the network. This has been working flawlessly for about 2 years now but we've suddenly started having issues. When trying to connect from Windows clients we get…

I am currently using UTM9 and have users connected to SSL vpn via sophos connect v2 My issue is that when users are connecting over VPN from home our webfilter is not blocking what sites users are accessing. My only option is to pass all traffic…

Our network has a pair of wifi devices configured as a bridge which was installed several years ago. In my ignorance and before a UTM had been installed I configured the management interfaces for these two devices with IP addresses on a /27 subnet. …

Hello, I try to setup a brand new SD-RED-60 but facing endless error leds loop. On local site (192.168.1.0/24), Sophos SG125 configuration : On distant site (192.168.0.0/24), the RED-60 boots the following sequence : - System led blinking green…

Hallo zusammen, Ich arbeite mit einer Sophos SG210 (UTM9) und versuche mehrere User per SSL VPN Zugriff zu gewähren. Allerdings scheitert es leider schon beim ersten. Servereinstellungen laufen auf ANY IPv4 - Port 8443 TCP. Bei Hostnamen umgehen ist…

Hi all! We are using SSL VPN and facing severe performance issues all the time. When using RDP, the desktop sometimes freezes and copying files to and from the remote desktop takes very long (about 1MB/s, the connections are capable of 10MB/s (home…

Hallo zusammen, ich habe mir vor erstellen ein paar Threads hier durchgelesen, aber irgendwo ist der Wurm drin... ich möchte per SSL VPN eine Adresse auflösen. Die Adresse habe ich als Objekt auf der Firewall angelegt --> Bsp. test.web.de …

Hello everyone, I am trying to get my NordVPN to work behind my Sophos XG firewall. As of now, I managed doing so by opening the TCP connections globally. However, I would like to reduce this to the port 443 only. Is there any way to do so? …

Hi, I have UTM9 connected to modem, then modem connect to HQ firewall. How to setup ipsec site-to-site vpn connection using this setup? Branch UTM9: LAN (192.168.12.x) - LAN IP WAN (192.168.0.x) - Local IP of Modem Modem (175.x.x.x) - Public…

Hi, I'd just like to document how we did it: Sophos UTM SG 230 running latest firmware: SSL VPN configured, multiple connections allowed, compression disabled Each device got a new local user account on the UTM with their machine name, e.g…

Sorry but I have to unlock a user for Facebook inside our company network. We have blocked facebook for all, which works fine. Now just one marketing user need facebook for work and i want to whitelist this user so he can do his work on fb. We do not…

Hi, i try Sophos OTP for my vpn account and that works fine. But do i have to create a token for each account (i think yes) ? And so, how to simply send the qrcode to all my users? Thanks.

Upgraded last night and now my clients are getting the following errors when connecting to VPN. Any help would be great... Fri Oct 08 09:14:29 2021 MANAGEMENT: >STATE:1633698869,TCP_CONNECT,,,,,, Fri Oct 08 09:14:39 2021 TCP: connect to [AF_INET]173…

Disclaimer: This information is provided as-is without any guarantees. Please contact Sophos Professional Services if you require assistance with your specific environment. Overview This knowledge base article explains how to set up an IPsec connection…

utm version is 9.707-5 I use the utm for routing and network security on my home network. I have a subscription to a vpn service provider. The vpn protocol is openvpn (over udp). When I start the vpn service's client on my macbook and enable the vpn…

Hi, we've ran into a wall - we cannot set up phase II of VPN connection. We have a vyOS to set the tunnel up, the other side has Sophos UTM device. They say they have the following message: ignoring informational payload, type INVALID_ID_INFORMATION…