Content Block
Ask Sophos a question
Aug 17, 2018 at 17:49 UTC on the Sophos page
Avatar user
Aug 13, 2018 at 11:21 UTC | Sophos

Sophos Home Premium Kills machines

Howdy Sophos,

Been recommending your Home Premium to quite a few customers, but the issue I'm picking up is the Vulnerability protection for applications kills anything that still runs on a spinning disk. For example, dropbox took 20 mins to open.

My customers being adversely affected are mainly older people, so won't be upgrading to a SSD anytime soon, but it pains me to disable this feature because a lot of them don't run updates. Is there any plan to work on this issue to try stream line it a bit with future updates. I wish I could say it was just one person, but it isn't, have had the issue with around 10 different people.



  • View 3 other comments
  • Mini magick20160620 12272 1w0jpo7 big
    Robert@SOPHOS Aug 14, 2018 at 09:13 UTC

    Hi  Shaun,

    We would like you to open a case with Sophos Home Support and if you do please mention this link as a reference to the issue , We would like to investigate the issue further. It is possible that some conflict may be caused on your system to cause such a delay.


  • Avatar user
    shauncrosby Aug 14, 2018 at 09:30 UTC

    Will do Robert.

Aug 10, 2018 at 14:25 UTC on the Sophos page
Aug 3, 2018 at 06:42 UTC in Sophos
Aug 1, 2018 at 12:13 UTC on the Sophos page
Avatar user
Jun 9, 2018 at 10:06 UTC | Sophos

Got a large box today

Just went to collect a large box today at the post office. The sender was the Sophos Store. Mwahahaa I love the calendar. It will go up on the wall in my living room when I get home. Thank you to a certain Kim from Sophos. 

  • View 5 other comments
  • Avatar user
    jameskahre Jul 23, 2018 at 16:16 UTC

    forget the sock, what does the calendar look like?

  • Avatar user
    Ben5352 Jul 26, 2018 at 08:38 UTC

    I like to think this post was made by the doggo in your avatar.

Avatar user
Jun 6, 2018 at 16:35 UTC | Sophos


After uploading the CA cert to get our site secure, but now we are unable to connect to SSL VPN....keeps getting this error

VERIFY ERROR: depth=0, error=unable to get local issuer certificate

anyone has any idea? 

  • Avatar user
    Br@d Jun 6, 2018 at 16:49 UTC

    Have you tried rebooting the firewall?

    " After uploading the CA cert to get our site secure" are you talking about a webserver? Did you replace the appliances cert or upload an additional one.

  • Avatar user
    support2207 Jun 6, 2018 at 18:14 UTC

    No I have not but I will reboot the firewall soon, I uploaded the Pk12 cert to the Sophos sg115 firewall for our user portal than went to Management > Webadmin settings > Https Certificate > Choose webadmin/ user portal certificate . Now when we go to the user portal website the site is secure with the new ssl cert.

Avatar user
May 2, 2018 at 23:45 UTC | Sophos

Has Certificates for S2S VPN been resolved in v17?

We are currently deployed on 16.05.8-MR8 release and have tried using certificates since MR3 I believe and always had an IPSEC SA expired notification email arrive and the VPN would no longer reconnect. This has been ongoing for several MR's and Sophos Support were unable to resolve the issue. Each time we went back to using PSK.

Now we are looking to upgrade to v17.06 at three of our sites and wanted to know if certificate based S2S VPN was resolved or not over IKEv2. Has anyone ran into issues?

Our VPN policy goes something like this (from memory)

IKEv2, Compressed

Phase 1

28,800 seconds key life

300 seconds with 0 second +/0

DH14 (2048)

AES256 / SHA2-256

Phase 2

3600 seconds

Same as Phase 1

Check every 30 seconds, 120 seconds, re-initiate.

  • View 3 other comments
  • Avatar user
    Br@d May 3, 2018 at 14:20 UTC

    it's very easy a pretty secure.  Each side have to have their local and remote keys (the other XG local key) have those on top of the factors of IPSec and it not going to get compromised anytime soon :)

  • Avatar user
    maverick71 May 3, 2018 at 22:36 UTC

    Br@d wrote:

    it's very easy a pretty secure.  Each side have to have their local and remote keys (the other XG local key) have those on top of the factors of IPSec and it not going to get compromised anytime soon :)

    So after my key expiration time, my VPN tunnel dropped and reconnected. Email alerts went out.

    This is with RSA configured.

    Any reason why the tunnel would drop and not just stay connected and simply renew?

Avatar user
Matthew (Digium)
Apr 2, 2018 at 18:56 UTC | Sophos

Activating a new UPG license key

Received an SG210 and I'm trying to activate the license file that was sent to me.  If I try to use MyUTM it says invalid license because those must start with ACT.  Tried to get a license activation through my sophos id, didn't work.  Also tried through my partner program login, still cannot get an active license file to download to install to my SG210.  This is a fullguard license starting with UPG-SGH0210

Can anyone help me?

  • View 13 other comments
  • Avatar user
    Matthew (Digium) Apr 3, 2018 at 19:25 UTC

    Thanks all, 

    This is resolved now.  I was able to get my Channel Manager to help out.

  • Avatar user
    jameskahre Jul 27, 2018 at 13:51 UTC

    sometimes it isn't what you know but who you know that counts.

Avatar user
Mar 9, 2018 at 14:21 UTC | Sophos

Maximum Attempts - Partner Training

If you hit the maximum attempts for a course test in the Sophos Partner Community Training Portal and are locked out of re-taking the test (4 attempts), how can you get it unlocked? Can you re-take the course to attempt again? I kept missing the same two questions and now I am locked out.

  • Avatar user
    Br@d Mar 9, 2018 at 14:24 UTC

    You will have to talk to your account team... specifically so SE. They should be able to put in a request to have it reset for you

Avatar user
Feb 13, 2018 at 19:23 UTC | Sophos

Sophos VPN and Exchange

Hopefully someone can help out as I am stumped on this one.

We use a Sophos XG firewall locally here. We have an Exchange server hosted in a data center quite a ways away from us. From inside our network, we can access Exchange perfectly. From outside our network, we can access Exchange perfectly. The issues comes when using Sophos's SSL VPN.

Users that are on business trips often need access to our network files. To make this easy we use the Sophos SSL VPN client. However, when our users are on the VPN, they cannot connect to Exchange.

Any suggestions?

  • View 2 other comments
  • Avatar user
    Br@d Feb 13, 2018 at 19:47 UTC

    also a traceroute will confirm how the vpn users are hitting (attempting to) the exchange server

  • Avatar user
    Evan2935 Feb 13, 2018 at 20:19 UTC

    1981DMC's comment about checking subnets tipped me off. When the VPN was setup by our consultant, he didn't include the subnet of the exchange server in permitted resources. He was allowing connections to all our internal resources but not allowing the connection out to the data center. Adding that one to permitted resources on the VPN allowed connections to go through now. Thanks for the help guys!

Avatar user
Feb 13, 2018 at 19:12 UTC | Sophos

Endpoint Antivirus Licensing

Am hoping to get pointed to a place to purchase additional licensing for endpoint protection.  We are running Sophos UTM 9 and it comes with 10 free licenses for endpoint antivirus; we'd like to add/purchase 5 additional licenses.


  • View 2 other comments
  • Avatar user
    Br@d Feb 14, 2018 at 00:31 UTC

    ah, virtual appliances are a different matter :)

  • Mini magick20151026 26581 1wvk7de big
    Maxim@SOPHOS Feb 14, 2018 at 19:00 UTC

    Your Sophos reseller should be able to help you out. But, as Brad says, it might be worth looking at a 15-user license of Sophos Central Endpoint Protection and perhaps Intercept X. You'll get the latest protection and a superior management experience.

Avatar user
Jan 22, 2018 at 21:44 UTC | Sophos

Manual Rule Modification

Our UTM has been through an update where the OS was copied over to the new device last year so there are some legacy settings that I'm trying to sort out.

In Intrusion Prevention -> Advanced tab under Modified Rules there are two rules that have been disabled; 15851 and 16576. The last article I can find referencing these is from 2010 to fix an IPS fault. 

Do they still need to be disabled? Are there other rules I should consider disabling?

  • Mini magick20140410 14251 gaoh0a big
    Kim@SOPHOS Jan 24, 2018 at 16:58 UTC

    Hey Bert! I'm going to look into this with my support engineers. Be in touch soon! 

Join now for updates. Creating your account only takes a few minutes.

Join Now

Sophos in Spiceworks

  • Mini magick20140410 14251 gaoh0a big
    Community Manager / Certified Reboot Specialist
    Aug 17, 2018 at 15:33 UTC
    • Mini magick20160620 12272 1w0jpo7 big
    • Mini magick20151026 26581 1wvk7de big
    About Sophos