• IPSec Tunnel: length of ISAKMP Message is smaller than minimum

    LHerzog
    LHerzog
    Hi, I have one question: a SG 430 9.705-3 is connected to multiple other SGs via IPSec. Today I just put in a new Network in the tunnel config of lets say HQ to Site A The tunnel came up again but was extremely unstable - high packet loss - in…
    • over 4 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Version of StrongSwan

    SimonKeel
    SimonKeel
    Hi How can I find which version of StrongSwan the current Sophos UTM is using? We have an issue with a Site-to-Site VPN connection and the counterparty is asking for it. thanks and best simon
    • Answered
    • over 4 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • How do import the IP2Proxy VPN list and block IP addresses using the firewall?

    Chris Top
    Chris Top
    I'm currently evaluating firewalls. My goal is to block all traffics from VPN providers. We have the VPN IP address list from the IP2Proxy in the following format with IP address ranges in decimal format. "17496733","17496733","VPN","TH","Thailand" "17496784…
    • Answered
    • over 4 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • VERIFY X509NAME ERROR on remote SSL connection

    Mast_01
    Mast_01
    Hello9, i'm having an issue on a customer in which we can't connect using SSL VPN AT ALL. logs shows: Mon Sep 14 11:16:36 2020 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Mon Sep 14 11…
    • Answered
    • over 4 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • VPN connected client unreachable from subnet

    C F
    C F
    It might be I’m missing something very basic here. I have two separate network locations, both with an UTM running. One client from inside the first location / A / connects to the second location’s / B / UTM with L2TP over IPSEC. Everything works except…
    • Answered
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Allow access to specific devices when connected through vpn

    PieterH
    PieterH
    I want a specific user only to connect to some devices when he is connected to the network with vpn. I create a new SSL VPN profile, and only add this user and de devices in the network section. When I started I used the automatic firewall rule option…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • cannot route -- route already in use

    Mhmd Hsn
    Mhmd Hsn
    please can you help me in solving this problem am having new sohpoe firewall and i tried to setup site to site vpn with another old one this error comes out sent MR3, ISAKMP SA established 2018:05:15-16:58:17 pluto[25761]: "IPSEC" #4: responding…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Split Tunneling

    Sam Smith2
    Sam Smith2
    I'm using the Sophos SSL VPN Client to connect to my work computer from home, but I also want to make some large downloads on my home internet connection. I'm aware that the way to do this is via Split Tunneling, but I've been unable to find any clear…
    • Answered
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Route specific external IP-Address (Backend) on SIDE-A over IPSec-VPN and reach it with the Static-IP from SIDE-B

    Adolar
    Adolar
    Hi all, hope you can help me, because i investierte some time in the configuration without solving the issue. Whats the problem? i must reach a specific external IP-Address from SIDE-A over the IPSec-VPN with the static-IP from SIDE-B <SIDE-A…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • afcd cpu usage

    C F
    C F
    First of all sorry for my ignorance but I would like to know what exactly afcd does, I couldn’t find any information about it in the help and the forum. My problem is that it seems to limit my VPN speed by using all the cpu and it would be great if I…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Internet Access through Site-to-Site IPSEC Tunnel

    Eric DeStefano
    Eric DeStefano
    Good morning, I have a number of sites using Site-to-Site IPSEC tunnels, that terminate with my Sophos XG. I'd like to start sending the clients Internet Access through the tunnel, but am unsure what the best procedure is with UTM->XG S2S tunnels. …
    • Answered
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • VPN bidirectionality

    MarcoTeixeira
    MarcoTeixeira
    Hi, I've configured VPN remote access. I can access the remote computers through the VPN, but I want the remote computers to be capable of accessing the computers that establish the VPN. I have a server on the remote site that must automatically place…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • VPN Access from external network not working on UTM 9 VM

    Edward Voermans
    Edward Voermans
    Hi all, I'm new to Sophos UTM 9 in still in the learning curve. I have replaced my Forefront TMG VM with an UTM 9 VM on HyperV. I have configured the UTM 9 to publish my Exchange 2016 environment and that all works like a charm. OWA is redirected, mail…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Problems VPN Site to Site.

    jesus Moctezuma
    jesus Moctezuma
    Hi. Can you help me with this problem that appears in VPN configuration: 2018:01:23-17:04:57 shopos_amazon pluto[7027]: packet from xxx.xxx.xxx.xxx:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA 2018:01:23-17:05:23 shopos_amazon…
    • over 6 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • iview ssl site to site

    Mokaz
    Mokaz
    Hi there, Small question, i've got two sites connected by SSLVPN Site to Site. All fine. Though, on remote site (client site) if i configure the remote log server (iView system on main site), the IP used by the remote UTM in order to push logs to the…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Site to site ipsec gives INVALID_ID_Information

    Krrish Raj
    Krrish Raj
    I have two Sophos UTM in two different networks. Both UTMs are sitting between external and internal subnet. I want both UTMs to be able to initiate connection. For gateway setting gateway type for both is set to initiate connection and gateway is public…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • SSL VPN not working

    EricNilsson
    EricNilsson
    Hi! I can't get my SSL-VPN to work, I followed Sophos own guide for setting this up, only changing the port. See below for settings. The log outputs the following: 2017:11:10-14:47:05 openvpn[25581]: TCP connection established with [AF_INET…
    • Answered
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Can the Sophos IPSec client and Sophos UTM SSL client be installed on the same computer?

    JBooks
    JBooks
    Is there any problem with installing the Sophos IPSec client (11.x) and the Sophos UTM SSL VPN client on the same computer? Is there any conflict between the two clients? Only plan to make a connection with one client at a time. I just wanted to know…
    • Answered
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Site to Site VPN : RED

    scaledem
    scaledem
    Hello, I still don't get it, what are the purpose to use a RED site to site VPN ? From what I read: - its slower than IPsec. - its as easy as SSL VPN to setup. - its not possible to extend a same subnet with this mode because you have to…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Unable to connect to local resources on VPN connected machine

    Ibrahim Jabado
    Ibrahim Jabado
    Our users are able to connect to the VPN successfully and connect to network shares and all resources. They can even connect to the local C:\ drive of a user in the office however if a user connected to our LAN tries to connect to the local C:\ drive…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Can you keep the same IP when remoting into network?

    kieranfame
    kieranfame
    OK, so we have some software on the network that licences users by IP address. When a laptop is taken out of the office and uses a remote connection to dial in (either by using a RED or by Sophos SSL VPN client) they are obviously assigned a different…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Open VPN - Too many open files

    paul-bot
    paul-bot
    Hi, We have UTM 9 (9.501-5) deployed in AWS for VPN purposes and it was working fine for about 1 year, but since a few weeks now we're having major problems. Every day the VPN becomes unresponsive and in the openvpn.log files we see thousands of lines…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • When (if ever) will UTM support IKEv2?

    Tjalling Soldaat
    Tjalling Soldaat
    Hi all, We use Sophos UTM V9 for a lot of things and have always been very pleased with the quality and supported features. In the past, we also used Sophos UTM for a site to site IPSEC-VPN tunnel to a virtual network on Microsoft Azure. Not anymore…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • Site-to-Site VPN, UTM to SonicWall, Connection made but no traffic

    Bobby Tables
    Bobby Tables
    Welcome to my nightmare. On-site UTM, remote office SonicWall. Before turning on VPN for the entire remote network, I tried to set up just a single host on the same LAN which navigates IPSec phase 1&2 successfully. The connection is up, but no traffic…
    • Answered
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • L2TP with Certificate and RADIUS

    Stefan Becker1
    Stefan Becker1
    Hi everyone, i have the following sceanrio. UTM with Firmware 9.502-4, Windows Server 2012 R2 with Network Policy Role and Windows 10 Client At first i have generated a certificate under Remote Access -> Certificate Management with the Name vpn…
    • over 7 years ago
    • UTM Firewall
    • VPN: Site to Site and Remote Access
  • View related content throughout UTM Firewall
  • More
  • Cancel
<>