• Using firewall rule XXXX -> ANY -> Internet causes YouTube connection speed to drop below usable rate on that device / network

    Hello Sophos Community, I noticed a strange phenomenon when I wanted to set up a guest network. Since this network has no access to other networks and should be able to browse the internet freely, I created a firewall rule as follows: Guest network -…

  • Sophos UTM9 - SSL VPN - Cannot connect to intranet sites through VPN

    Hello everyone, i have a problem and i'm not able to fix it. I have a Sophos UTM 10.1.99.254 VLAN99 (transfernet) and SSL VPN activated. I have a CoreSwitch 10.1.99.1 VLAN 99 and a Windows 10 Computer in VLAN 1111 behind the the switch (Switch is…

  • Web Filter Overrides the Firewall rules

    Hi, I am new to the Sophos UTM. Have been using Untangle, but just migrated into Sophos UTM and i really like what i seen so far. The only issue i have is: I installed and configured (as far as i can tell) the Sophos UTM, but when i enable Web Filter…

  • Firewall rule dont work - user group

    When I create a rule using a user group, don't work (it seems that it is not right that the user is part of the group) When I change de same rule to user a user directly, work's fine; This user is not a local user, it's imported from active directoty…

  • Local Client not able to access resource from Sophose SSL VPN client

    Hello Friends, I am a new to Sophose, i have sophose UTM9 is installed & company employees are able connect through the Sophose SSL VPN client to Office resource. Am able to ping to SSL VPN client machine & client machine is able to ping my machine…

  • Default Deny Not Blocking Traffic Across Interfaces?

    I'm using the software version of Sophos Home UTM on my ESXi server and have three vNICs added. The connections are my WAN/Internal (192.168.1.0/24 router on this network), Lab (10.10.0.0/24), and Lab2 (172.16.1.0/24). If I set a firewall rule to allow…

  • Replacing TMG with a Sophos UTM SG210.

    Hi all, I'm trying to replace my old TMG with my SG210, the problem is when I create a new rule, it doesn't work. I noticed that my LAN can't access internet even with the firewall rule "Any-Any-Any" so I had to create a NAT rule to make this happen…

  • Blocking access from internal range to an internal host is NOT working!

    Hello, I am having difficulty in blocking internal IPs from accessing services on another internal IP. The rule seems to have no affect whatsoever. I have a UTM 9 with remote access (SSL VPN) setup in such a way that users logging in get static IPs…

  • Sophos Home UTM 9 Firewall Problems

    I recently have setup Sophos Home UTM 9 and I currently having trouble port forwarding my CCTV System, so I can remotely access. however when I create a rule it doesn't seem to work. I have checked the firewalls live log, and the CCTV System doesn't…

  • How to block Amazon Prime Video

    Currently the UTM we have is unable to block amazon.co.uk prime videos. The application control function works relatively well, but maybe because of the way Amazon has setup their domain it maybe impossible to do without having to block the whole site…

  • Can't Connect to External VPN from behind UTM 9

    Hi, I installed a SG115W (running 9.409-9) at a client site last week. All users work on a RD server where some Cisco VPN software is install. The VPN connection is called in to action when they need to do a lodgement through MYOB. The VPN connection…

  • New interface and how to block traffic from lan

    Hi, Internal LAN is 192.168.157.0/24 and the new interface added is 192.168.158.0/24. Our Sophos SG 125 has 192.168.157.70 ip I´d like to block all traffic between LAN and 192.168.158.0/24 but the existing rule rejecting all traffic does not work…

  • firewall rules without NAT/MASQ

    I'm in the phase of evaluating Sophos UTM as the standard firewall product for a large company. One thing that I stumbled upon - and which would be a show stopper - is that you can't use any firewall rules without activating masquerading. Though for many…

  • NAT rule and RED device

    We have a location set up with a RED device. On that location we also have a webserver we'd like to forward webrequests from Bitbucket to. I found a guide saying I needed to use a FULL NAT rule for this, but still it doesnt work. I have screenshots…

  • Block an external IP

    Hi everyone, Since 2 weeks, an bot's site read my website. Number of connexions grip and website shutdown. I tried to create a rule nat "External IP > Any > My external adress , but it's same. I tried to create rule at firewall : nothing. Everyone…

  • Difference between allowed dst IP and allowed dst network in FW rule

    Hi, I'm setting up an UTM-9 on an sg210 and I'm stumped by a really simple question: What is the difference between setting a single IP and setting a network range in the destination field of a firewall rule? I'd say the latter rule matches each…

  • Firewall rule dont work --> is Webfiltering the reason?

    Hi, i got a Question about Firewall rules, first my settings. 2x Wan with uplink balance and 4 multipath rules allowing some Network only to use 1 of the Wan, and the other can use both Uplink interfaces Eth1 Wan 1 Eth0 Wan2=vlan91 Eth0…
Unfiltered HTML