Sophos XG: routing DNS queries

DNS configuration

Presentation of routing DNS queries on Sophos XG The routing of DNS queries is similar to a conditional redirector under Windows, which allows to indicate for a DNS zone the server or servers to contact to resolve a record. This type of routing is useful in the case where your network consists of several private …

Read more



Sophos XG : add a vlan

In this article, I’ll explain how to declare a vlan on your Sophos XG firewall. Before you create it on the firewall, you must make sure that the port of the switch where the firewall is connected is tagged. Go to the firewall administration web interface, in the left menu click NETWORK 1 . The …

Read more



Sophos XG configure a DHCP relay

relay added

Présentation A DHCP relay is a service that listens for DHCPDISCOVER frames to transfer them to a DHCP server. The DHCP relay avoids installing a DHCP service by network segment (MPLS, VLAN …). Before configuring the relay firewall, the DHCP service must be an IP range for the segment where the relay will be configured. …

Read more



Sophos XG: installation on Hyper-V

Login page

In this tutorial, we will have how to install a Sophos XG firewall on a virtual machine with Hyper-V. For this article, I used the Sophos XG home version which is available for free. Prerequisites Download the ISO firewall on the site sophos and recover the license key that will be sent by email. Create a …

Read more



Sophos XG: Configure the SNMP Agent

added community

If you want to supervise the firewall using the SNMP service with software (PRTG, Centreon …), you must activate and configure the agent on the firewall. 1. From the administration interface, go to Administration 1 / SNMP 2 . Check the box 3 to activate the agent, enter the information 4 then click on Apply …

Read more



Sophos XG: configure a Netflow server

Netflow is Cisco’s network-developed networking protocol, which collects information about IP flows. It is possible under Sophos XG to configure a Netflow server. PRTG has a Netflow sensor. 1. From the administration interface, go to Administration 1 / Netflow 2 and configure the server 3 . Validate by clicking Apply 4 .



Sophos XG : port forwarding rule

Add rule

This tutorial explains how to create a rule on a Sophos XG <= 17 firewall to transfer internet traffic to a DMZ server.



Sophos XG: change the SSL VPN port

By default the SSL VPN port on the Sophos XG firewall is 8443, since version 17.1 it is possible to change the VPN listening port. Using port 443 for VPN blocks listening to this port for other services (forward / WAF). 1. From the web interface, go to VPN 1 and click on Show VPN …

Read more



Sophos XG: add a host

Host added

This tutorial shows how to add a host (object) on a Sphos XG firewall in order to be able to use it in the different traffic rules



Sophos XG: secure emails

Portail user

Introduction In this tutorial, we will see how to secure emails with a Sophos XG firewall. The firewall offers two modes of operation for filtering emails: MTA : the firewall will act as an SMTP relay Legacy : it will be placed in transparent mode, which we will see in this tutorial. In both modes …

Read more