I have an XG85 that we purchased a couple months ago, after upgrading to 16.5 it seems it runs at least 80-85% memory, and we experience it locking up requiring a reboot, along with slowness pinging even the router from a machine.... I disabled a bunch of the services and got it down to 50% ,but this doesnt' seem right.... anyone else having this issue?
Forum Post: XG85 memory issues
↧
↧
Forum Post: Why is my VLAN captive portal redirected to the root port?
I had a working XG set up with Port 2 = 172.16.16.16 (LAN Zone) and Port 3 = 172.16.17.16 (PublicLAN Zone) I decided to use a Smart switch and use VLANs to seperate LAN Zone from PublicLAN Zone. The Switch would use Trunk port with VLAN ID 10 and 20 connected to Port 2 on the XG device... I set up the switch and then proceeded to change the XG setup to match my VLANS : Vlan ID 10 = 172.16.16.16 Vlan ID 20 = 172.16.17.16 I found I had to have an ip address on Port 2 so I added 172.16.19.16 The PublicLAN (with Vlan ID 20) has a HotSpot configuration (Terms and conditions) and this works. The user is redirected to a page located at 172.16.17.16 and that is expected. However, the Private LAN (with Vlan ID 10) has a captive portal where username and password is required. The user is redirected to a page located at 172.16.19.16??? What is going on??? It should redirect to a page at 172.16.16.16.... By the way I can access the page at 172.16.16.16:8090/httpclient.html if I access it directly. The redirection is broken. How do I fix it? Device XG105 (SFOS 16.01.1)
↧
Forum Post: Consolidated Troubleshooting Report
How can I look at the Consolidated Troubleshooting Report so I can troubleshoot and get my XG Firewall to work? 8 hours of Professional Support and the last time I called support they said I needed to contact Professional Support again. When they compared my existing firewall to the XG they thought someone did way too much work on the Sonicwall but apparently not. Layer 2 network with 3 Cisco Routers doing layer 3 routing behind the firewall is not fun. I need to look at the logs myself. Please advise.
↧
Forum Post: Android devices with issues to connect through wifi
I'm facing issues when the android devices on the company try to connects to the wireless network. Each day they must forget and add again the network since, regardless they are connected to the wifi, the devices keeps sending the traffic over the cellphone network and never shows up the banner to keep using the same network to authenticate later with the network agent when the network is saved on the device. Also, the captive portal never pop up on the android phones. Any idea why is this happening? Any missing configuration on XG firewall? Note: This behavior happends over different Android versions. Thanks.
↧
Forum Post: Sophos utm 9 mit 2 internen Wlankarten
Hallo ich wollte mal fragen ob es jemand schon geschafft hat die Sophos Utm mit 2 internen Wlan Karten zum laufen zu kriegen? Treibermäßig werden die Karten unterstützt (sind 2 gleiche) aber wenn ich die zweite dazu stecke wird gar keine unter Wireless Protection angezeigt. Erst wenn ich eine wieder entferne wird die andere wieder erkannt und funktioniert auch.
↧
↧
Forum Post: Magine TV Aussetzer über UTM Home 9
Hallo alle zusammen, ich habe hier ein Problem mit meiner UTM Home 9 (9.411-3). Den Aufbau meines Netzes seht im Bild "Netzwerk.jpg" unter https://drive.google.com/drive/folders/0B6Jtlfgx6SZcR204MFotbkc1OGc?usp=sharing Ich nutze den IPTV-Dienst magine.tv. Jedoch habe ich ständig Aussetzer, egal welcher Sender. Mein PC hängt in der Regel an Ge-1 am rechten Switch (TL-SG3210). Wenn ich nun den PC an Ge-9 am rechten Switch hänge, und somit an der UTM "vorbeigehe", dann habe ich keinerlei Probleme. Daraufhin habe ich mal Wireshark angeworfen und sehe hier immer wieder Fehler. Zeitgleich zu den Fehlern kommt es auch zu den besagten Aussetzern. Leider kenne ich mich hier nicht so gut aus. V.a. kann ich mir nicht erklären woher die Fehler kommen. Das Netz ist komplett Gigabit geswitched, keine Auslastung, alles schon rebootet und auf aktueller Firmware. Der Fehler tritt sowohl an meinem PC, dem Laptop via WLAN (5Ghz oder 2.4 Ghz) sowie am FireTV auf. Ich habe mal das Wireshark Protokoll im Original sowie als Screenshot hochgeladen. https://drive.google.com/drive/folders/0B6Jtlfgx6SZcR204MFotbkc1OGc?usp=sharing Ich hoffe ihr könnt mir helfen. Grüße Patrick
↧
Forum Post: router
Hi Guys I am setting up my home UTM firewall. I have a BT router, firewall and WiFi disabled as the main router to the internet WAN side. PC with UTM . new router WiFi on what would people recommend? for about 25 devices looking at TP-Link Archer C9 would this be a good setup? Thanks Graham
↧
Forum Post: router
Hi Guys I am setting up my home UTM firewall. I have a BT router, firewall and WiFi disabled as the main router to the internet WAN side. PC with UTM . new router WiFi on what would people recommend? for about 25 devices looking at TP-Link Archer C9 would this be a good setup? Thanks Graham
↧
Forum Post: Multiple WAN IPs to different ports/zones
I am fairly new with using a Sophos UTM. I have a /29 block of public IPs with the first IP in my WAN configuration and the other 4 IPs in the additional interfaces under it. I have internet working fine on Port 1 using the first public IP in the block of x.250 with an internal of 192.168.10.1. What I am trying to figure out is setting it so Port 8 will use the next public IP of x.251 and an internal of 192.168.20.1. How do I go about configuring it so that the zone associated to port 8 will use the x.251 for the WAN traffic?
↧
↧
Forum Post: VPN: Remote computers cannot access computers in the main office
Hi, We setup an IPSec Site-to-Site VPN connection between our main office and branch office. In the main office, we have two ISPs, each with its own router. First router has a local IP of 192.168.0.20 and the second router's (XG 230, actually) local IP is 192.168.0.2. The branch office's router's (XG 135) local IP is 192.168.2.1. The VPN connects without any problem and computers from the branch office can successfully access computers/servers in the main office. For example, 192.168.2.60 can communicate with 192.168.0.50 Now, here's the problem. If the computer in the main office changes its default gateway to 192.168.0.20, the computers in the branch office will not be able to connect to it. 192.168.2.60 cannot access or even ping 192.168.0.52 and 192.168.0.53 192.168.0.52 and 192.168.0.53 can ping and access 192.168.2.60 due to static route configured on the first router What do I need to do to make the computers in the main office still accessible through VPN even if I change their gateways to 192.168.0.20? Thank you.
↧
Forum Post: Username Change
Please can you change my username to martinjr Thanks
↧
Forum Post: Archivierte Gesamtberichte
Hallo, wir haben in einer UTM9 unter Berichtseinstellungen - Einstellung für Gesamtbericht - die Anzahl der aufzubewahrenden Tagesberichte auf 10, der Wochenberichte auf 12 und der Monatsberichte auf 3 stehen. Unter Gesamtbericht - Archivierte Gesamtberichte kann ich mir die letzten Monatsberichte herunterladen, es sind aber keine Wochen- oder Tageberichte vorhanden. Hat jemand eine Idee woran das liegen könnte?
↧
Forum Post: Blocked request: File is not scannable
Hi I did run a search and could not find answer to this question so there it is: User tries to download encrypted xlsx file uploaded by client - this message pops Is there any way to allow the file to be downloaded (note, as Admin i have downloaded the file but this time but there will be more of them in next weeks)
↧
↧
Forum Post: I need to allow access to multiple sites and multiple machines to a 3rd party. Hopefully allowing them to access and manage from a central logon? Is this possible from within Sophos Central?
We have multiple sites where we have a 3rd party responsible for the support on some of the machines on site. Ideally we would like to grant them access to only these sites / machines and allow them to manage from a central console. We can set them up with individual logon's to each of the sites but would like to make support as simple as possible for them. Is it possible to register the same email address at multiple sites so they could receive notifications from all of their sites to a central account?
↧
Forum Post: Sophos UTM 9 | Single Nic | Single Arm | Proxy
I'm a new user and I'm trying to create a one nic proxy like this: (This is just for web filtering dodgy sites including HTTPS / turn on search engine safe searches etc.) [Wifi Home Router/Modem] /\/\/\/\/\/\ [Raspberry Pi 3] ---------- [Single Nic PC (Sophos UTM 9)] The Rpi3 is directly connected with a cable to the Single Nic PC - it's used because I can't insert a USB wifi nic into Sophos UTM 9 as it's fussy [:(] Therefore, with my limited networking knowledge, the traffic flow would be: Wifi Client PC Request > Wifi Router > Rpi3 > Sophos > Rpi3 > Wifi Router > Internet The Wifi Client PCs would have their browser set to the IP of the Rpi3 as a proxy along with the certificate of Sophos UTM for SSL scanning. My question is: 1. Has anybody previously posted a 'detailed' explanation of their 'Single Nic' Sophos UTM setup (including Sophos UTM settings) that I can follow? Thanks in advance!
↧
Forum Post: External Certificate used for VPN SSL is migrated?
After the migration of cyberoam to SF-OS the external certificate remains imported or does it have to be reimported? If we don't use per user certificate the ssl vpn config remains the same?
↧
Forum Post: Keine Internetverbindung bei Verbindungsunterbrechung zur UTM, obwohl Standard/Getrennt
Hi, wir haben in unser Firma über 40 RED Devices (RED10/RED15) installiert. Sie laufen im Standard/Getrennt Modus. Uplink Modus ist DHCP Client Alles klappt im Prinzip problemlos. Nur wenn die Verbindung zur zentralen UTM ausfällt haben die Standorte auch kein Internet mehr, obwohl sie ja ihren lokalen DSL ohne Filterung nutzen. Gibt es eine Einstellung, die REDs so einzurichten, dass dies möglich ist?!
↧
↧
Blog Post: ESH - What's next - status 24 Feb
Version one - to be more precise version 1.2.76 - is out and deployed to all Central Windows Endpoints! Our first big milestone has been completed ✅ The UI has not changed but we did some final changes under the hood to make it more reliable and to fix some bugs. We are slightly behind plan to include Heartbeat and Central Device Encryption. We might not be ready on time prior to our freeze period in March. In this case the extensions will only be deployed beginning April. Sorry for that! However, internal trainings have progressed and we want to "Go Ahead" in March and make use of the tool for any Central Windows Endpoint case related to the technologies covered. We hope to get lots of feedback in March, which we can review and include in the coming months. Thanks, Tom
↧
Forum Post: What package sophos uses for web server protection?
Which package is sophos using for the web server protection and where the config files could be found? Recently one solution switched to websockets and now it stopped working. There are fixes offered but they require direct tinkering with the config files of the proxy
↧
Forum Post: Migrating to Sophos Central
This resource has a lot of helpful information on migrating to Sophos Central. Check it out and let me know if there is anything you'd like to see added. Thank you, Bob
↧
More Pages to Explore .....
