@Mark Maxwell This is difficult, remote diagnosis without further information except that there are Chinese characters. It worked for me without any problems.
I had pfsense running nicely on a XG230 Rev2 unit, I sold it for more than I paid. I've since got another to maybe do some stuff with again. Currently running Sophos XG home on a Dell R220.
I've been thinking of pulling my firewall off of my r310 onto either a firewall appliance like a sophos xg 115v3 or another poweredge either a 200 or 300 series. Like the low power of the appliance but I like having a better back for my server.
@@lesfilanto the XG125/135 Rev3 units work well. I’m using a XG135 atm as lower power draw that the XG230 I have. Sold the R220 December 2023, great unit, but can only stub my toe so many times on surplus kit. XG125 and XG230 on the next clear out pile
Pfsense, untangle, mikrotik, monowall, and one that ran on just a floppy drive. Can't remember the name. 10+ years ago. All fun times and messing up the config on Pfsense / resetting it was a joy.
looks like an XG 310, in that case it should have 2 10gig sfp+ ports built in. the card slot in the front is called "flexi port" used in a bunch of different networking gear
I just installed pfsense on my sophos xg 106 with pfblocker ng running . After a failed dd of sophos home to the appliance I noticed that only port 1 and 4 worked once the sophos os loaded . Link lights flashes on 2 and 3 until the os loaded . After switching to pf sense all of the ports work and the proper status leds on the front flash with the correct Ethernet port link lights. I noticed that all my home kit devices are much more responsive than they were on sophos fire wall only official latest build on the same appliance .
Any problems with it over the past year since you posted this? I just bought a Sophos SG 230 Rev.1 off of eBay for $150. It comes with an 8-port FlexiPort module, which I'm going to sell and use the money to buy a Checkpoint CPAC-4-10F module to add 10Gb fiber to the Sophos. We'll see if it all works once I have the hardware in hand. Update: My SG230 arrived, and was absolutely spotless. Either the seller never used it, or they cleaned it extremely well. Mine only has 8 GB of DDR3 RAM, but I'm keeping an eye out for a matching stick to put in the second slot. I was able to install OPNSense on it, and got the serial console working. Have to run some network cables before I can use it. I might try to get the LCD working in OPNSense.
I personally would not want to run pfsense, considering what Sophos XG actually provides. Actually feels like a powerful and feature-rich firewall appliance compared to pfsense. Especially with TLS DPI. And XG Home edition provides all the same features entirely for free with practically 0 caveats [aside from a 6GB ram limit, but I literally never get close to that].
The Problem is, Sophos prevented the Hardware from getting flashed to the Virtual XG Home edition, I mean, this is a business device, that hopefully someone pays licenses for. Maybe try a SonicWall Appliance, that might eat the home edition :)
So I'm curious, it looks like in the bottom of your rack is a Unifi Dream Machine Pro (or maybe SE)...what are you using that for? I'm currently using a UDM SE for my firewall/router and am giving some serious consideration to going back to OPNSense after having time to discover the weaknesses of the Unifi lineup. I just haven't decided if I want to keep the UDM for inter-VLAN routing/default gateway for the VLANs and OPNSense as the network firewall.
Comcast is weird if you are running with dynamic addresses in conjunction with certain business grade firewall outers. I guess you have to lose the original assigned IP because it will refuse to assign the same dynamic IP when it sees the different MAC. Simply turning off the modem (I unplugged the coax too just because of how frustrated i was at this point) and lay it to rest for like 3-5min, followed by power cycling everything back on should do the trick. I was deploying a sonicwall tz300w when I ran into this. Hope it helps, good day!
Hello Are the rams installed externally in the xgs116 model? Or does it come embedded in the motherboard? Do you have information ? Is it possible to upgrade the ram on the xgs 116 model?
One thing I'm wondering If there is a way to remotely monitor pfsense network monitor from a pc or pi without having to keep logging in and finding it all? Maybe a pphp or pythong script of some kind. I'm not a programmer by any means But I would love to see my network on a monitor next to me on my desk.
you can log into the pf and just leave the dashboard on the screen and set an auto refresh timer of whatever youd like. the dashboard is completely customizable
@@bgp4me I’m working on my own little dashboard screen. I was just wondering if there was a way to read the bandwidth in some type of way so I can relay it though my little dashboard which is in php. or maybe store it into a database
I have installed pfsense on a SG115, it needed some bootflag tweaks but after that it works just fine, haven't tried what happens during the update process though I guess on a SG125, SG135 it would be the same and should work
@@usmanafzalcissp I have not tried that model, but looks like it's just running an atom processor, if you can get it to boot and install from USB I'm not seeing anything standing out that would make it not work
i threw my asa5525. 100w power drain and bullshit asdm manager. how long did it take you to setup basic routiing on the asa? it took me like 2 days. i switched to a pfsense vm on my proxmox server and i haven't got any issues so far. and the setup was done in like 20min^^
@@hannesstefani well it didn't take long. Pfsense setup took about 5 minutes. I removed the internal USB flash drive and installed a small 60gb ssd to use for the install. And as far as rules, was about 20 minutes as well. Just be aware this was the x variant which is x86 based. Even the 6 port sfp card was recognized without issue. But the port assignments for the GE ports did not match the port numbering. Was an easy fix though.
The thing that always shocks me is how they don't even use a CPU with ecc memory support (and corresponding memory)... So little respect for the customers!
The i3-6100 supports ecc...no telling where the ram ACTUALLY came from, sophos or someone else. Plus ecc for a network appliance, bit much. Also depends on where on the model tier this falls. Was it budget? Midrange? Etc. Don't assume...
Great video, but I think you should leave the background music out next time.
playing with it, thx for the feedback.
I run pfsense on a (former) sophos firewall, it is awesome! High performance in a great rack mount form factor.
I have the SG125
@Mark Maxwell This is difficult, remote diagnosis without further information except that there are Chinese characters. It worked for me without any problems.
@Mark Maxwell I use the vga, because u to need install first the cli
I had pfsense running nicely on a XG230 Rev2 unit, I sold it for more than I paid. I've since got another to maybe do some stuff with again. Currently running Sophos XG home on a Dell R220.
I've been thinking of pulling my firewall off of my r310 onto either a firewall appliance like a sophos xg 115v3 or another poweredge either a 200 or 300 series. Like the low power of the appliance but I like having a better back for my server.
@@lesfilanto the XG125/135 Rev3 units work well. I’m using a XG135 atm as lower power draw that the XG230 I have.
Sold the R220 December 2023, great unit, but can only stub my toe so many times on surplus kit.
XG125 and XG230 on the next clear out pile
I love the intro "Hey Y'all" that is awesome!!! Great video!!
Nice to see a fellow gun enthusiast doing homelab stuff!
Pfsense, untangle, mikrotik, monowall, and one that ran on just a floppy drive. Can't remember the name. 10+ years ago. All fun times and messing up the config on Pfsense / resetting it was a joy.
looks like an XG 310, in that case it should have 2 10gig sfp+ ports built in. the card slot in the front is called "flexi port" used in a bunch of different networking gear
Few months ago I got riverbed cx570. I run opnsense on it. My version even has IPMI which is usefull to see the state of boot process.
I just installed pfsense on my sophos xg 106 with pfblocker ng running . After a failed dd of sophos home to the appliance I noticed that only port 1 and 4 worked once the sophos os loaded . Link lights flashes on 2 and 3 until the os loaded . After switching to pf sense all of the ports work and the proper status leds on the front flash with the correct Ethernet port link lights. I noticed that all my home kit devices are much more responsive than they were on sophos fire wall only official latest build on the same appliance .
Thank you! I always enjoy your videos!
The OEM is Portwell, Taiwan ... its standard X86 with intel i210/i211 interfaces
Glad to see you have a yt channel, great video! -fiberflipper
One of those small j4125 boxes with 4x 2.5gb might be a better choice for the $. If you got it for free,etc - perfect
Did the SFP ports turn out to be SFP+ or just plain SFP? Also, were you able to load a plugin to use the LCD display on the front?
Idk if after 2 years u still need an answer or not lol. It is plain SFP. And there is a driver for the LCD display in the plugins, yes
Any problems with it over the past year since you posted this? I just bought a Sophos SG 230 Rev.1 off of eBay for $150. It comes with an 8-port FlexiPort module, which I'm going to sell and use the money to buy a Checkpoint CPAC-4-10F module to add 10Gb fiber to the Sophos. We'll see if it all works once I have the hardware in hand.
Update: My SG230 arrived, and was absolutely spotless. Either the seller never used it, or they cleaned it extremely well. Mine only has 8 GB of DDR3 RAM, but I'm keeping an eye out for a matching stick to put in the second slot. I was able to install OPNSense on it, and got the serial console working. Have to run some network cables before I can use it. I might try to get the LCD working in OPNSense.
I personally would not want to run pfsense, considering what Sophos XG actually provides. Actually feels like a powerful and feature-rich firewall appliance compared to pfsense. Especially with TLS DPI. And XG Home edition provides all the same features entirely for free with practically 0 caveats [aside from a 6GB ram limit, but I literally never get close to that].
The Problem is, Sophos prevented the Hardware from getting flashed to the Virtual XG Home edition, I mean, this is a business device, that hopefully someone pays licenses for. Maybe try a SonicWall Appliance, that might eat the home edition :)
I just did this on an XG 210 REV 3 for the dual SFP, I cannot change the front panel display to anything so i just unplugged it
Need daily video's! Every live on TikTok MUST be uploaded here :) also, a Day in the Life vlog would be pretty cool.
What's the point of uploading a long vertical video to TH-cam?
you need a 90 degree power cable and that will make for a nice pfsense box.
Nah, that's power cable unplug protection ;)
That is a great idea, loving it.
So I'm curious, it looks like in the bottom of your rack is a Unifi Dream Machine Pro (or maybe SE)...what are you using that for? I'm currently using a UDM SE for my firewall/router and am giving some serious consideration to going back to OPNSense after having time to discover the weaknesses of the Unifi lineup. I just haven't decided if I want to keep the UDM for inter-VLAN routing/default gateway for the VLANs and OPNSense as the network firewall.
amazing. been wondering about this. time to dig the old utm out.
LCD: what about it? How can we make adjustments?
Cant believe DDR4 is already 8 years old at this point
Very Interesting!
Cue ryan reynolds "but why" meme
what is a point to run pfsence on sophos machine.
I really enjoyed the content keep it up
I did this with a kemp load balancer I got off of ebay a few months ago
can you tell me whats type of rack this is?
self-answered: Tripp-Lite SRWO8U22DP
Comcast is weird if you are running with dynamic addresses in conjunction with certain business grade firewall
outers. I guess you have to lose the original assigned IP because it will refuse to assign the same dynamic IP when it sees the different MAC. Simply turning off the modem (I unplugged the coax too just because of how frustrated i was at this point) and lay it to rest for like 3-5min, followed by power cycling everything back on should do the trick. I was deploying a sonicwall tz300w when I ran into this. Hope it helps, good day!
Thanks for the video.
I have a strange question: could it run as an Esxi host server? 🙂
I assume it sees the sfp or sfp+ ports?
You can press PAUSE on keyboard on post screen to read it
Hello Are the rams installed externally in the xgs116 model? Or does it come embedded in the motherboard? Do you have information ? Is it possible to upgrade the ram on the xgs 116 model?
why don't you install the free version of Sophos firewall? if it works it's even better!
if you just go into package manager and load LCDproc the display should start working
Interesting power supply layout
Nice video, perfect alternative device to run pfSense ;-)
You could load PF sense.......or you could load SFOS v19 Home edition and get a much nicer firewall ;-)
Home must be better than the standard edition then, every option there starts with "PAY SOPHOS MORE MONEY"
@@leonkernan Home is free
What model of sophos was this?
One thing I'm wondering If there is a way to remotely monitor pfsense network monitor from a pc or pi without having to keep logging in and finding it all? Maybe a pphp or pythong script of some kind. I'm not a programmer by any means But I would love to see my network on a monitor next to me on my desk.
you can log into the pf and just leave the dashboard on the screen and set an auto refresh timer of whatever youd like. the dashboard is completely customizable
@@bgp4me I’m working on my own little dashboard screen. I was just wondering if there was a way to read the bandwidth in some type of way so I can relay it though my little dashboard which is in php. or maybe store it into a database
What Sophos model you have there?
Nice box but sadly I think I would rather use the edge router as I like my unifi ap
Did this the other day with 2 sg300s we had laying around. My boss said I commited heresy :D
What is the exact model #?
What is the model or will pfSense work on all Sophos models?
You can see it in 5:38, it's a Sophos XG 310r2
I have installed pfsense on a SG115, it needed some bootflag tweaks but after that it works just fine, haven't tried what happens during the update process though
I guess on a SG125, SG135 it would be the same and should work
Most of the ones I've seen so far are x86 at least, so with a little bit of luck they should mostly work.
@@TrTai have you tried on XG86?
@@usmanafzalcissp I have not tried that model, but looks like it's just running an atom processor, if you can get it to boot and install from USB I'm not seeing anything standing out that would make it not work
Can someone tell me what Model this is?
310
Did you manage to get the LCD working? Way to go repurposing old hardware that is probably still in perfect working order.
Great video. I am glad it was easier to do on this that it was on my Cisco asa5525-x
i threw my asa5525. 100w power drain and bullshit asdm manager. how long did it take you to setup basic routiing on the asa? it took me like 2 days. i switched to a pfsense vm on my proxmox server and i haven't got any issues so far. and the setup was done in like 20min^^
@@hannesstefani well it didn't take long. Pfsense setup took about 5 minutes. I removed the internal USB flash drive and installed a small 60gb ssd to use for the install. And as far as rules, was about 20 minutes as well. Just be aware this was the x variant which is x86 based. Even the 6 port sfp card was recognized without issue. But the port assignments for the GE ports did not match the port numbering. Was an easy fix though.
would have been a nice video to watch but the background music is a MAJOR turn off. couldn't make it past 30 secs
or Doom.exe
The thing that always shocks me is how they don't even use a CPU with ecc memory support (and corresponding memory)... So little respect for the customers!
The i3-6100 supports ecc...no telling where the ram ACTUALLY came from, sophos or someone else. Plus ecc for a network appliance, bit much. Also depends on where on the model tier this falls. Was it budget? Midrange? Etc. Don't assume...
Thomas Michelle Lee Paul Jones Sharon
What was the model #?