Hey all, been working through this issue for so long with the remote party and cant see to have any progress on it so needing to see if can get some expert advise from the group as to where to proceed from this - We manage Sophos UTM9 and trying to…

Hello Guys, I am currently trying to setup two different IPsec VPNs. The first one is to simply connect to our Network and the other one is to route all traffic threw the firewall, if you are in a cafe for example. So far so good. They both work…

Hello everyone, I have been having issues connecting a VPN points together. I have tried everything and still the connection won’t come up. I will share as much information as I can and I hope I can get the needed solution here. 1) Error I get from the…

Customer is randomly losing connection and I see this type of error message on IPSec VPN logs, any idea what is causing them? Informational Exchange message is invalid because it has a previously used Message ID Quick Mode I1 message is unacceptable…

Hello guys, following my last post, managed to get a tunnel working between the Sophos UTM and a Ubiquiti USG, however, it seems traffic is only flowing one way. From the USG, I can access the network of the UTM, over IP addresses, and FQDN's. From…

Hi, I have one question: a SG 430 9.705-3 is connected to multiple other SGs via IPSec. Today I just put in a new Network in the tunnel config of lets say HQ to Site A The tunnel came up again but was extremely unstable - high packet loss - in…

hi guys, we are having issues with our Site-to-Site VPN connecting to Office365. Location A, in Germany with a SG330 - Location B, in China with a UTM 210. A and B are connected via Site-2-Site Ipsec VPN which works fine. Now we started to use O365…

Hi all, I am experiencing a very strange behavior with an IPsec tunnel between a customer's site (Checkpoint) and our UTM9: It seems to me that every evening at the same time our customer kills all IPsec connections - somewhat ungracefully. Then…

Is there a setting that needs to be turned on? i can't get a client with IPv6 connected to L2TP over IPsec. in the log it says the connection is coming from IP 0.0.0.0 Thanks

I have two Sophos UTM in two different networks. Both UTMs are sitting between external and internal subnet. I want both UTMs to be able to initiate connection. For gateway setting gateway type for both is set to initiate connection and gateway is public…

Hi Guys I'd be appreciate if someone help me with this crazy (yet should be well easy) IPSec Tunnel between two FWs. I followed this dude's vlog, but i got no luck yet.. This is what I see from IPSEC VPN* log from Webadmin portal of UTM9 ... …

I am running Sopohs UTM 9.504-1 and am having trouble connecting my UTM to an AWS VPC. It seems all the 'hard' parts are working. I have used the site-to-site VPN-> Amazon VPC->Setup->Import Via Amazon VPC Configuration tool. I have also set the 'Local…

Hi, this is my first post and i hope you can help me. I'm having this problem in 2 UTM 9. Model: SG230. Firmware: 9.503-4 The thing is that the Strict routing works well for about 2 or 3 days, then for no reason every traffic which its destination…

Hi all, We use Sophos UTM V9 for a lot of things and have always been very pleased with the quality and supported features. In the past, we also used Sophos UTM for a site to site IPSEC-VPN tunnel to a virtual network on Microsoft Azure. Not anymore…

2 SG330s in an ipsec vpn over wan with 1gb fiber connectivity. Aspera p2p running at 300 Mb. Transferring over this p2p connection triggers massive latency over the vpn and results in dropped packets and spikes on other connected interfaces. 53 ms…

Currently running UTM 9.501-5. Running into an issue with accessing the User Portal and then downloading the utility to install and launch the Remote Access VPN IPSEC pool. Worked wonderfully in the past, but I have not used it in many months because…

Hi, I'm in the process of connecting our Sophos UTM 9 to an AWS VPN with dynamic routing enabled. As I understand the process, this requires us to enable BGP on the UTM. I'm now facing two problems: I lack any kind of experience with BGP and how…

Hello Guys, here is a quick and dirty illustration of the current setup: The hosts sit all in de same internal subnet 192.168.150.0/24 and the remote offices all have there unique subnets. Till now. A new customer have the same Subnet as an already…

I can't connect with macOS built-in Cisco VPN client to Sophos UTM (latest OS on both). Both exporting "IPsec VPN" and "iOS VPN config" from User Portal downloads a file (.p12 and .mobileconfig) which if I double click it, installs my vpn user's private…

Hi, I've read many threads about this on this forum, but most of them are too specific and don't really help me forward in this. Background: I work mainly with Mac clients, and have since I discovered the Sophos/Astaro UTM some years ago always…

Guten Tag, ich habe ein Problem beim Nutzen von mehreren IPSEC Fernzugriffen per NCP Client mit XAUTH und PSK. Es funktioniert immer nur die zuletzt aktivierte Regel, alle anderen geben beim Connecten im NCP Client sofort die Fehlermeldung "PAP/CHAP…

I have a Samsung Galaxy S7 running Android 6.0.1 and a Sophos UTM device with firmware version 9.404-5 (holding off on updates because I was bit by the MTU "feature"). I have almost literally tried every combination of IPsec, L2TP, and PPTP configuration…

Hi, I'm running the home version of the UTM, on the latest firmware (9.405-5). I'm experiencing some jitter when using my Cisco 7942 phone over a VPN from home, which is resulting in "gaps" in the conversation when talking - this goes both directions…

Does anyone here have any up-to-date documentation on getting an IPSec tunnel working between UTM9 and a Fortigate 60D? The only thing I've been able to find is quite old and recommends using 3DES and MD5.

Hi, I've been having an issue which I thought was easy to fix but unfortunately wasn't :( This is the situation: I setup an SSL vpn connection from my pc (VPN Pool 10.242.2.x) with my business network (192.168.10.x). Then I try to access the resources…