Hi, experts, I have a network device that works when I plug it directly into my cable modem, but doesn't, when I plug it in behind the UTM (9.406-3). In an effort to identify the traffic that needs to be allowed, I've checked the Firewall, IPS, WAF…

Hi All, I have the WAN address for my Free Home Sophos 9.4 setup as a private address (its a double NAT'd situation) . The LAN is obviously a private address. Its setup like this as a test network. Not ideal but hey Im working on it.. I have a Masquerade…

Hello, experts, I'm running UTM 9.405-5 at home, and it works like a charm. I just got a work-from-home kit, but I can't seem to get the remote access point (Aruba Networks RAP-3WNP) to connect to my corporate network, while behind the Sophos UTM. At…

How i can limit ip connection per second , my server game has attacked DDROS and UDP from ipstresser.com . Thanks you

Hey Guys I have done the following to create a DMZ for a network that I administer. The method of setting it up like this, is keeping the following in mind: # Internal and External networks being able to access the DMZ via special ports # Hosts…

I am running a streaming server on a node, on the LAN. I want to allow access to it from the Internet. I added a DNAT to forward the specific port it uses to the local IP of the node that the streaming server is running on. I unticked the box for it to…

Hi all, since a few days I have a problem with unwanted traffic originating at the external interface of my UTM. It's destination addresses are from 17.0.0.0/8 (Apple?), the traffic seems to be HTTP (port 80), the application is classified as "doof…

Greetings, gang. I need to get a Q-See camera setup working on a client's network. It seems simple enough to me, but I just cannot figure out why it isn't working. Internal network: 192.168.1.0 / 255.255.255.0 Q-See Server: 192.168.1.245 DNAT with…

We have a Sophos UTM SG 125. We have two WAN links, our main one through our ISP and a 4G modem link setup in an active / standby configuration. (Uplink Balancing and Uplink Monitoring) When our main ISP connection fails, it fails over to the 4G cell…

Hi, I'm setting up an UTM-9 on an sg210 and I'm stumped by a really simple question: What is the difference between setting a single IP and setting a network range in the destination field of a firewall rule? I'd say the latter rule matches each…

Hey everyone, we have an SG 105 on the main branch, network is 192.168.42.x and a RED 15 on a subsidiary branch which is 192.168.9.x The RED serves fine DHCP on 192.168.9.128 until 254. Being on the remote subsidiary, I am able to for example ping…

Sophos UTM 9.403-4. Download of NPR podcasts used to work, but began failing 10 days ago. No changes on my side other than UTM maintenance patches, but I don't know if NPR made changes. Trying to download NPR podcasts on Android devices and now receive…

I have two Sophos AWS instances that are connected via a hotswap configuration with each of them in their own public subnets in the VPC. Behind that I have two private subnets that they send traffic to and I'm unable to connect via https to any site.…

hello all, I am trying to connect remotely to another network using VMware Horizon View (PCoIP) over UDP/TCP port 4172. I have created the firewall rule to allow the traffic to go out the firewall to the remote site, but it is still showing up in the…

Out of the blue today our UTM 9 started dropping (I think) all google domain related sites. All google related sites fail with: Your connection is not private Attackers might be trying to steal your information from www.google.com (for example, passwords…

We have been getting a LOT of IPS attacks lately. Getting Snort 38330 MALWARE-CNC TRUFFLEHUNTER SFVRT-1020 attack attempt from several internal IPs. Snort doesnt give much information.... is there a good chance these hosts are infected? Sophos Cloud AV…

Hi Guys, I have a small issue regarding Providing to One Specific Host Internet Access for Temporary Time. I Have One Production Vlan which doesn't have have Internet access. For a short time I need to Provide the Internet access to One Particular Host…

I am new to this and just finding my way around setting up utm/firewalls i have a 2 firewall setup an internal sophos utm 9 ffirewall and an external firewall The internal firewall sophos utm 9 is setup where all computers and mobile devices are behind…

HI, I have set NAT an FW to allow bittorrent use port 35951 (TCP/UDP) all looks ok but at live FW log i see lot of DROPs at this port 19:03:28 Default DROP TCP 178.40.178.147 : 50762 → WAN IP : 35951…

Hi Everyone, We seem to have an issue with our sophos dropping packets without giving any logs as to why. Below is what I sent to sophos when logged the call but hoping someone here might of seen it before for a speedier resolution as they have had…

I tried setting up sophos today in a test environment to see how much throughput I could get, but I couldn't get far. My core network is on a 10. subnet and I setup a computer and assigned it with 192.168.2.20 subnet IP. Sophos was the router between…

Hi everyone, I'm new to the Sophos UTM product but LOVE what I'm seeing in the home version I'm rolling out at my house. FYI - I'm using it in a virtualized environment on VMWare on a host with 4 gigabit Ethernet ports. I have a fiber optic internet…

Hi all, We've just migrated from an old flat network, to a VLAN'd one, containing a number of VLANs, using a layer 3 core switch as the router, which in turn has our UTM as it's default gateway. Everything is working OK except for a laptop, that is…

Hi. I've added 3 windows 8.1 pc to my net. None of the new system can access the net. Internal networking is working well, without any problem, and if I move the in another net the can surf the Internet without any problem. Other systems (windows…