XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

Change SSL VPN Port

Right now it is not possible to change the SSL VPN Port by GUI. Port 8443 is used by default. Please add the possibility to change, because Port 8443 is not allowed in many networks.

401 votes
Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)

We’ll send you updates on this idea

Stefan shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

46 comments

Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)
Submitting...
  • Oliver commented  ·   ·  Flag as inappropriate

    Why is the service listening on all IPs? Its a really show stopper, since you would block for example port 443 on ALL IPs.

  • Kimmo commented  ·   ·  Flag as inappropriate

    Also this is not being told anywhere. If sales would have told us that it wont work then I would not even considered Sophos at first place.

  • Kimmo commented  ·   ·  Flag as inappropriate

    It is unacceptable to have to rely on band aid fixes to get a working setup when all other FW manufacturers can do it. Good thin is that we have not unboxed our 30 000eur worth of devices yet I will for sure return those.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Just install second XG firewall as virtual machine (free base license) and use SSL VPN on 443/tcp there. It’s not best, but it will work.

  • Kimmo commented  ·   ·  Flag as inappropriate

    Why does SSL VPN bind to every single external IP?

    There has been some really bad decision when XG were created. On UTM you could USE 1 single IP and still run SSL VPN, WAF etc on port 443 no problem.

    I am deeply disappointed on XG and regret we purchased it when we selected new firewalls.

    I feel Sophos is not focusing on fixing problems users wants to be fixed but instead focuses on adding new features.

  • Peer Scholz commented  ·   ·  Flag as inappropriate

    So with 17.1 you made it possible to change the SSLVPN Port. But you cant change it to 443 once there is a WAF Rule active on 443.
    As long the Customer has enough external IPs, that should be not a Problem. Please fix that!

  • Steve commented  ·   ·  Flag as inappropriate

    Please fix this. It’s been over a year. I should pull back out my utm and scrap XG firewall. Not happy Sophos. I knew you better then this as well. This feature is more then a priority it’s friggin’ extremely URGENT!!!!! Do you care about customer relations / service?????

  • Loic commented  ·   ·  Flag as inappropriate

    Please Fix This i'm in version 17.0.5 MR5 and it's not possible .....
    the Port 8443 are closed in many configuration !!!!!!!!!!!!!

  • Prady commented  ·   ·  Flag as inappropriate

    With network filters existing as they do almost everywhere... how is this feature still not available...?

  • Chris commented  ·   ·  Flag as inappropriate

    @Alan Toews where is this feature? and when is it scheduled. I am not programmer but inst this just a variable in a config file!

  • Bebo Gendy commented  ·   ·  Flag as inappropriate

    currently one of the ISPs in my country blocked the default 8443 port this means i have to use another appliance for VPN can you please Add this feature ASAP.
    Thanks.

← Previous 1 3

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.