Good morning! We currently have a Standard/Unified configuration with XG125 in the Head Office and SD RED60 in the Branch Offices, all traffic goes to the Head Office. I would like a suggestion on how to make this communication not depend on the firewall…

I have been successfully using web filtering in UTM 9 for many years, currently with version 9.712012, and am familiar with the support article Sophos UTM (KB-000035180, 2022-03-22): Enforcing Safe Search with Web Protection ( support.sophos.com/.../KB…

Hello! I have an existing network with a SG125 without any web filtering rules and every computer in the network is in an ActiveDirectory domain to authenticate. Now I want to do web filtering to completely block internet access for a certain user and…

I have endpoints in a network group in a web profile that are hitting the default web profile. Specifially, I have endpoints in a host group called Recruiter TLS Inspection that is in Standard mode that have hosts hitting the Default Web Filtering Profile…

SG 125 UTM9 Hi, we use a transparent proxy with an authentication against LDAP. If an user enter an URL, he will redirect to https://passthrough.fw-notify.net and has to login. Because SSL-certificate-problems with iOS-Devices we change this URL to…

Hi all, Maybe this question is asked before, but I cannot find a clear answer on this. Scenario: Our company uses Standard Mode proxy for our Citrix Xenapp environment. Untill last year, internet was only allowed thru your Citrix environment.…

Hi community, we have a SD-RED 20 at our Sophos SG330. I can configure the modes standard/unified and standard/split and the tunnel and RED-Status comes up (green in the dashboard.) The SD-RED 20 is behind a Fritzbox for the test scenario. If I roll…

Hello I use sophos utm. I have one normal ethernet connetion and another ethernet connection that use DNSCrypt for linux. The second ethernet connection (DNSCrypt) is the same with normal ethernet connection, except that IPV4 settings I use Automatic…

Hi. i have Installed my UTM 9 with bridge Mode. however when Web Filtering is ON, all the client cannot connect to Internet. then when it's disabled all the client can connect to Internet. I don't know what cause of this. can anyone help?? i do have…

Ok this is REALLY beginning to bug me and I haven't ever managed to get this working so I am just not sure why. The title is a little misleading due to the web filtering working fine for my "LAN" traffic (using Transparent Mode with AD SSO) "Do not…

Have had this issue for a while and would be REALLY good to try and find a way to finally fix it. Sophos SG135w UTM9 running 9.510-5 fw. LAN interface for wired PC's (less than 35) connections running Outlook 2013/16 to hosted email with Rackspace.…

We have an SG310 and we have implemented Transparent Mode web filtering. When everything works well, users on the network can browse to safe websites. But occasionally the Sophos will block them from visiting a site that they have used before (and that…

Hi everyone Im getting a timed out response from a specific web site, we know is not an UTM issue but we need to avoid the UTM show the template with the "Timeout during conection to server " or an "Connection Timed Out" or "Timeout while reading response…

Hi Since upgrading to 9.509-3 I have been having difficulties with random websites (amazon, scan.co.uk and others) timing out when using Google chrome. I've inspected the logs and cannot see any issues at all. I've cleared the cookies/cache, re-installed…

Our web filtering is running in transparent mode with URL filtering only enabled. I wanted to put a warning on people accessing streaming media and in the main it works, however some sites, YouTube specifically the PITA in question at the moment, we get…

Is there any way I can statically map an IP Address (or preferably a range of IP Addresses) to a particular Active Directory user for web filtering? Current setup: On one Interface, I have Standard mode proxy with several different access profiles…

I'm using a software that synchronizes and makes a backup of one database, when I activate the Web Filtering I get this error in the log 2018:01:17-16:22:06 sun** httpproxy[33310]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xdc4eaa00…

Model: SG135 Firmware Version: 9.506-2 I'm not sure what I'm missing, but here is a breakdown of the issue I'm experiencing and how I have this unit configured. When connected to the local private network, I am able to access the internet on my…

I know I can add Exceptions to prevent the AV from running for certain websites (possibly using a REGEX). But there's already an application control definition for what I'd like to exclude. Is there any way to hook up the app control definition as part…

Hi there, I'm usually using Web Protection in transparent mode + browser authentication. Works fine no issues here. But, when connected through SSLVPN, i'm already authenticated to the UTM, the UTM knows with which user account i've logged on. Although…

I recently got a new Android device running the latest version of Android, Android Oreo 8.0.0. Having connected it to wifi at my workplace I find that I am unable to browse to Google in Chrome, even with the CA certificate from the Sophos UTM installed…

Hi All, Do we have a fully documented version of setting up the UTM like the XG at https://community.sophos.com/kb/en-us/125061 I have set it up and have it working but I would like to confirm that the URL(s) and IP(s) are up to date and will work…

Hi Everyone, I am in the process of migrating Webfilter from standard to transparent mode and currently testing with some key users. All works well except one problem. Acessing a website via public DNS Alias pointing to one of the public IP Adresses…

Hi, I have an issue with UTM 9. I made differents strategies : As you can see the #5 is disabled. If y try to access on "pole-emploi.fr", UTM blocked this website : Maybe i'm wrong but the only available filtre is "Filtre_SI" (because strategy…

Hi, Why does WebAdmin (TCP/4444) access to another UTM get blocked in the webfilter? I think it should be working since it by default is in the allowed target services list. It does of course work if i create a firewall rule, but what's the reason in…