I have configured VLAN on Cisco switch 2960. Now, I want to communicate between different VLAN's on different switches, so how this can be achieved. Also, how to establish communication from DMZ zone to VLAN and reverse.
↧
Forum Post: inter-vlan communication between different vlan's on different switches
↧
Forum Post: RE: inter-vlan communication between different vlan's on different switches
Saquib , create the trunk on Cisco where you specify all the VLAN to transport on a specific port On the XG side, create VLAN for each VLAN ID and assign to each a different IP Bind the VLAN to LAN zone or a new zone Create LAN to WAN, where source network is VLAN Network That's all. If you need inter-vlan traffic, create zone to zone firewall rule (where source/destination zone is the one created during step 3) Regards
↧
↧
Forum Post: Getting the Guest Hotspot To Work Correctly
I currently have a Sophos UTM220 and an AP30, i'm trying to get the AP30 to broadcast two separate SSID's one for a password protected network and one for the guest network which will be open. My Sophos UTM220 is running in bridged mode with web filtering set to full transparent mode. So this is what i've tried so far to do to get this to work: Setup both the password protected and open (guest network) on VLANS which didn't work Plug a separate ethernet connection from the router into the firewall and setup another interface which also didn't work Any help to solve this would be much appreciated. Thank you, Patrick.
↧
Forum Post: Sophos scan errors
Hi, I have Centos 7 installed on a HP Micro-server and decided to install Sophos for protection. It all seemed to go well until I ran the scanner using the command; savscan / The scan completes but it states 13 "could not open ...." outputs then says there are 13 errors in the scan. See output pasted below. What is wrong here please? I am running the scan as the Root user and not the Administrator user. Thanks in advance. [root@localhost ~]# savscan / SAVScan virus detection utility Version 5.43.0 [Linux/AMD64] Virus data version 5.48, February 2018 Includes detection for 16773491 viruses, Trojans and worms Copyright (c) 1989-2018 Sophos Limited. All rights reserved. System time 22:33:43, System date 05 March 2018 IDE directory is: /opt/sophos-av/lib/sav Using IDE file blada-fz.ide Using IDE file msil-ksv.ide ....... Dozens of Using IDE file xxxxxxxx.ide outputs ...... Using IDE file pdfu-eko.ide Using IDE file docd-mtv.ide Quick Scanning Could not open /run/user/0/gvfs Could not open /usr/lib64/valgrind/exp-sgcheck-x86-linux Could not open /usr/lib64/valgrind/getoff-x86-linux Could not open /usr/lib64/valgrind/helgrind-x86-linux Could not open /usr/lib64/valgrind/none-x86-linux Could not open /usr/lib64/valgrind/exp-bbv-x86-linux Could not open /usr/lib64/valgrind/cachegrind-x86-linux Could not open /usr/lib64/valgrind/callgrind-x86-linux Could not open /usr/lib64/valgrind/drd-x86-linux Could not open /usr/lib64/valgrind/lackey-x86-linux Could not open /usr/lib64/valgrind/massif-x86-linux Could not open /usr/lib64/valgrind/memcheck-x86-linux Could not open /usr/libexec/pcp/bin/pcp-lvmcache 76559 files scanned in 13 minutes and 57 seconds. 13 errors were encountered. No viruses were discovered. End of Scan.
↧
Forum Post: RE: Over 90% licence Usage
ive read them pages and yes it is similar to them, am I right in thinking that changing the dhcp lease time to 1 day would help?
↧
↧
Forum Post: Could not associate packet to any connection
Hello all, We have a strange problem. When connecting to the sites of a client (peugeot.nl citroen.nl dsautomobiles.nl) we receive a ERR_CONNECTION_RESET in chrome. When enabling logging and looking into the log. I see a the following line: 2018-03-06 21:00:02 Invalid Traffic Denied 0 172.16.20.1 136.243.12.72 50303 80 TCP 0 01001 Open PCAP Could not associate packet to any connection. We had this problem with firmware 17.03 so I just upgraded to 17.05. But this did not solve the problem. Anybody ideas.
↧
Forum Post: RE: The installer package is out of date - KB 122157
I copied an installer URL and confirmed that I can download the installer without being authenticated, however I'm concerned with how often these links change. Does anyone on this thread have any idea how often Sophos changes this link? Could you tell me how long you've been using the link you have for SCCM?
↧
Forum Post: RE: Well, i was very excited to upgrade for the "HeartBeat".. still no tools to import HUGE configs to XG from SG on same hardware?
I just has a meeting with my reps. They said there is a beta in the works. Expect a to convert from UTM to XG with UTMv9.7 and XGv18. I understand this will be a button to convert, similar to when converting UTM from 6 to 7 to 8 to 9 and so on. But I would backup the config, create a VM and try it there before going live. They're so different that I wouldn't trust an automatic tool for several iterations.
↧
Forum Post: RE: Some Sophos services are not running/missing
The swi_update_64 service is only present on Windows 7/2008. It is designed to start early at boot and then stop. It's not meant to be running all the time it's mainly for removing the Sophos LSP when not required. It's hard to say without logs why the 3 services you mention are not present: Missing: HitmanPro Alert service Missing: Sophos AutoUpdate Service Missing: Sophos Heartbeat There should no longer be a Sophos Hearbeat service once you get to Core Agent 2. That is now part of Sophos Network Threat Protection. I'd have to see the logs of HMPA and AutoUpdate to know why they presumably failed to install. If AutoUpdate updated itself, then the logs would be under \windows\temp\. Likewise if HMPA failed to install correctly there should be a Hitman Pro install log under \windows\temp as well. Regards, Jak
↧
↧
Forum Post: RE: Could not associate packet to any connection
Hi, no this is not a problem with the XG version. The ability to see these packets was added in mr-3, you can disable that if you wish, in system services -> log settings. There is also change to packet timeout which is supposed to reduce the incidence of those type entries in the log, in my case there was no change. Ian
↧
Forum Post: RE: Mac Outlook to Exchange disconnects on mail send
Hi, I have the same issue with my wife's mac when I try to scan imaps because outlook will not take any notice of the certificate and seems to use 443 for imaps traffic. I can scan my mac using mac mail, I can scan my wife's mac mail but not outlook. Gave up and put her mac mail (both mac mail and outlook) access in a seperate rule. Ian
↧
Forum Post: RE: Mac Outlook to Exchange disconnects on mail send
I am pretty sure that we are using MAPI over HTTP with Outlook connected to our Exchange 2016 DAG. The failures are intermittent and upon reconnect it passes the traffic successfully so whatever is going on I believe it is related to the WAF content inspection for the server protection policy. I would suspect that the Macintosh TCP stack is handling TLS session tear downs in a way that leads the XG to spit out a bunch of these Invalid TCP RST warnings and dump the connection. I opened a case with Sophos support so maybe one of their engineers can look at my wireshark and see if they see something that they know causes this. I'll make sure to update this when I get some traction.
↧
Forum Post: RE: [9.506-2] BUG - IPSec Site2Site Rename of Interface Error
Hallo, tk - it looks like you've been around since the original User BB was barely past 100 threads! WebAdmin has gotten so big and complex over the years that the Up2Date process seems to break the configuration sometimes. What if you restore from the backup made just before the last time you applied Up2Dates - does the problem persist? Cheers - Bob
↧
↧
Forum Post: RE: KPI indicator uplink state
You can see that in the SMTP log file, Thomas. Cheers - Bob
↧
Forum Post: RE: Synchronized Application Control - Cannot get it working!
Now that we are out of the Beta and Intercept X 2.0 has been released, should it work with the GA build? I still can't get the list to populate and the lack of documentation is baffling. What client software is required, what builds, etc? Thanks, John
↧
Forum Post: RE: Certificate Authority Expected Issuer - Trustico
Thanks for the reply lferrara that has not worked. Yesterday I reimported the to the existing object after importing the CA, no luck. Today I deleted the certificate and reimported, no luck. Here's the CA: Help please, still no SSL. Thanks.
↧
Forum Post: RE: Certificate Authority Expected Issuer - Trustico
So is that error saying the CA doesn't existing in the XG firewall?
↧
↧
Forum Post: RE: Interface Routing Works From UTM out, not to UTM
Hi Tony and welcome to the UTM Community! If the prescription from oldeda didn't fix you up, others will need to look at your pictures. Please Edit your post and insert your images into the post here and remove the external links to Dropbox content. We can't know if that is properly protected. The only malware I've gotten in over 10 years was from an external link to a picture in this forum several years ago. Thanks in advance! Cheers - Bob
↧
Forum Post: SVE 1.2 install with multiple networks
I am trying to install SVE with multiple networks because our protected guests reside on multiple networks. While there are no restrictions on the network side as far as cross vlan communication goes, I am trying to avoid that having to go back to our core router to traverse the vlans. When I try to do the install with multiple networks, I can run through the install fine and setup the networks and their respective static IP's without issue and the installer completes. The VM does show up in the central console page but never updates and I can't ping it or connect to the public share to download the guest agent installer. When I run the SVE installer and only specify 1 network, it installs fine and the communication is successful on the network.
↧
Forum Post: Quarantined emails in the user portal
Hi, We have several email domains and a user may have several different email addresses. We've found that the digest email from the appliance lists the quarantined emails for all of a user's addresses, but if they log onto the user portal, then they only see the quarantined emails for their primary address set in Exchange/AD. If we change their primary address to one of their other addresses, then they see the quarantined emails for that address in the portal. Is this a limitation of the portal or is there a way of configuring it to display all of a user's addresses? Thanks.
↧