I have a main office with an SG330, and several smaller offices with SG115s and SG125s. In looking at possible backup scenarios for the devices, one option for the smaller offices would be to keep a cold standby SG125 unit with no licenses. Then if one…
Hi,
I was wondering whether someone might be able to help me write a cloudwatch event which would alert when a VPN connection is established and extract the username, time, source and destination IP addresses?
Really appreciate any guidance or even…
Basically, i installed Sophos UTM Home onto my UTM220, and followed the basic setup, however after this when i added extra Ethernet interfaces in "interfaces" they wouldn't work. To be honest i dont understand how to setup the firewall, and i need help…
I've been using a small UTM appliance for a few years for my small business and installed a home version for the house a year or two ago. Both have worked nicely with very few issues.
As of yesterday, my home UTM is acting up and is pegged at 100…
Hi, i have an Astaro ASG220 and it is on version 7 of the Astaro Security Gateway, however I've only recently purchased this and when i go to perform the basic installation, i get an "UNKNOWN" pop up like the one shown in the included screenshot below…
Hello @ll,
I would like to authorize one target service for one LAN source, and one IP destination without create an exception in client browser proxy list.
I've tried different way, but I think it's not possible in proxy settings directly. I don…
Hi guys,
I'm new to UTMs. I have 2x UTM nodes configured in HA active/standby mode. Both UTMs are hosted in vCenter and I can console into both nodes using the same crendentials of username"loginuser".
However, the problem is:
ssh as "loginuser…
Good Morning,
We had a strange problem with our firewall this morning. We could not access the internet from within our network (web page could not be displayed) yet I could ping the websites both by their IP and their url. I could also ping the firewall…
Hi,
we are recently getting notifications very often:
Application Control daemon not running - restarted
and
Up2Date prefetch failed: All 4 Authentication Servers failed
Firewall is SG330 with latest firmware.
Any ideas what is causing this…
Hi All,
I am new to forum and new with Sophos.
I do know some basic troubleshooting as the KB was very useful.
We had this one concern where Sophos is not logging allowed packets in the syslog.
Please notice the log:
2018:01:21-14:2029 sg330…
Hello guys,
I´m planning add my own name server for my domain. Just for testing in my lab. Is there any option to protect this server which will be opened to the Internet with Sophos UTM?
I´m using IPS and name server will be in DMZ but is there any…
Hi,
I have configured a few subnets in my utm.
In my "internal" subnet (192.168.2.0/24) a chromecast is connected. How do I need to configure my utm, that clients from the second subnet (192.168.221.0/24) can connect to the Chromecast?
Any ideas…
Hi together,
for connecting to a remote server (remote desktop) with only IPV6 I enabled IPV6 on a Sophos UTM 9.5.
1) I configured my first free address from my given /64 address range with is :2 with a /125 mask at the end.
:1 is the ISP interface…
Hello
I have a big problem
I need to create publications for Outlook Web Access + Exchange Autodiscover + Outlook Anywhere with only one domain name
I have certificate only with one name - mail.domain.com
Can you help me with detailed manual?…
Morning All, I'm begging for your help should anyone know, I've been working on this for 24 hours now and am using a PFsense VM just to get by.
I have a very loaded UTM (full of config for websites, SMTP rules, web rules etc) about a years worth…
Hi All,
This is more of a, "Hey, look what I found", in hopes it may help others looking at the same problem and need a workaround.
This all started when I could not stream video from my Zoneminder (ZM) server when connected to my network through…
Hi,
I am hoping this is a simple solve.
2 issues:
Client A is unable to get a DHCP address from the DHCP Server.
Sophos cannot PING DHCP Server using eth4 Interface.
However setting a STATIC IP on Client A allows communication to DHCP…
Hi Team,
I have installed a Sophos UTM 9.5 and it running perfectly. I have enabled web filtering and created firewall rules as well. Now our company wants to block internet for all the users except for one group on the AD. I would highly appreciate…
Hi, I just have a quick question surrounding communication on within the same network.
I know that between different networks I have to define rules to allow communication e.g. if i want to RDP between VLAN 101 (10.10.1.1) and 102 (10.10.2.1) which…
Hi all,
On Friday I patched our Sophos UTM cluster to 9.506 and found that the cluster is broken unless the passive node is switched off. The VM's are on the same ESX host and I have checked that they both have Virtual mac setting set to 0. Has anyone…
I have recently installed the newest version of ELK stack 6.0.x and I receive this errors in logstash-plain.log:
`[2017-11-30T11:27:11,235][WARN`` ][logstash.codecs.netflow ] Can't (yet) decode flowset id 260 from observation domain id 1, because no…
Hi,
I have a single ISP, so right now all outbound traffic are using this. If ever it went down(ISP), does the UTM has an option to use a proxy server so I can still have internet access for my clients.
The proxy server is located in a different…
Hi,
I'm a newbe. So thanks for your patience.
We are a school. We have an Internet connection with 5 public IPs (xx.xx.xx.202 to 206 - same gateway). We are using UTM 9 as our firewall.
Our main network gets DHCP from a Windows box (192.168.x…
Hello guys,
I´m running Kerio Mail server and I would like to block all incoming mail to a specified email address from all domains expect one - lets say example.com. I was trying to do this by transport rules on Kerio but without success. I can block…
