Hello Sophos Community, I noticed a strange phenomenon when I wanted to set up a guest network. Since this network has no access to other networks and should be able to browse the internet freely, I created a firewall rule as follows: Guest network -…

Right now the WAF is showing as the source ip address in the log files of my servers. I'd like to see the public ip address of the clients that are accessing the servers. I've enabled "pass host header" but that doesn't seem to do it. Is this possible…

I'm using the WAF as a reverse proxy. I'm wondering if there is a way to block or whitelist access by ip address? i found this post from 9 years ago saying it'd be available in 9.3 but if it's available now i'm not seeing it: RE: Source-IP filter…

Hello, For a few days we have been receiving disturbing mail notifications from our UTM sophos. I hope you can help me to identify and maybe solve the problem. For security reasons, I replaced the public IP of our Sophos UTM. The notification provides…

Hello. This is a follow upto an old thread from about a year ago: https://community.sophos.com/utm-firewall/f/network-protection-firewall-nat-qos-ips/126571/microsoft-teams-calendar-through-waf (that thread is now locked) I've tried again to enable…

Hello, I'm trying to create a simple allow list (whitelist) in in the SOPHOS UTM Firewall for a particular site, leaving all other sites unaffected. See the following configuration screen; Rules 9 and 10 are the ones of interest. Rule 9 is attempting…

Hello, i use Sophos UTM Home since years now, and im really happy with it:) But as the Sophos UTM is still missing the Open VPN Client possibility, and DNSCrypt DOH is also not possible, i was thinking to add an other FW as Fronted Firewall to configure…

Hello together! When i want to Download Apps from the Windows 10 Store, only a few MB are downloaded and then the download stops .. In the IPS Log i always found "MALWARE-OTHER Executable control panel file download request" (SID=33942) this Event…

Hi, I would like to setup something so that I can block the youtube query where part of it contains specific keyword. I am currently not decrypting https traffic and I don't know how can I do that. Will it be possible to block youtube queries for…

One tutorial I was checking for implementing SOPHOS UTM 9, implemented one inside interface and one outside interface. Routing table was created such that external traffic from other subnets were pointed to inside interface of firewall and inside subnet…

Hi, We've got a 3CX Server hosted in the cloud. On our internal network we have a 3CX SBC setup on a Raspberry Pi and we are using 3cx client on Windows laptops. We also have two older phones that cannot use the 3CX SBC, so they have to connect directly…

Hi, today, i've got many IPS alerts with the source IP of UTM's LAN and WAN ports. Is this normal? Regards Meghan P.S. The address No.1 in Screenshot 1 is the LAN IP of UTM and address No.2 is the WAN IP of UTM

Hi Guys, I have a working PBX system (Alcatel) inside my SG450. Here is the connection. Static routing between SG450 and core switch. VOIP is on 172.16.16.0/24 subnet. SG450 >> Core Switch >> VOIP Server.. 172.16.2.2/30 >> 172.16.2.1/30 >> 172…

Hi, We are using Sophos SG230 UTM having Sandstorm license. UTM is not able to send suspicious files to Sandstorm for analysis. Whenever UTM detects a file as suspicious, it displays following message: File requires further analysis The requested…

Hi @all, I am trying to publish Good DirectConnect via the Webserver Protection. I first tested with portforwading (FullNAT) wihich is working fine, so I guess the mobile Device and the Good Server are configured correctly. If using WAF, the Client…

Hey guys I am having an issue properly setting up RDP port forwarding I am able to open the port but when I try to connect remotely it doesnt work, but locally works like a dream! Am i missing something plainly obvious? :) I am also setting up a Site…

Hi, We have recently implemented sophos UTM 9 as a bridge between our internal LAN and our ISPs router. Our ISP has a hosted firewall and our static IPs are natted from public to private IP address in the hosted firewall. Sophos is up and running…