Sophos Central Endpoint and SEC: Computers fail/hang on boot after the Microsoft Windows April 9, 2019 update. Please follow knowledge base article 133945
Learn about the Benefits of Multi-Factor Authentication (MFA). Turn your MFA on now!
We'd love to hear about it! Click here to go to the product suggestion community
I have a red 50 setup in standard/split mode and when I try to scan to email from a minolta bizhub c284 coper it fails. It just gives a general error. I check the network settings and it gets an ip and everything. When I go to the admin mode and trying to ping 126.96.36.199 from the copier it immediately fails. I can get it to work in transparent/split mode but then I can't access the server on the other end of the tunnel. I'm sure I have some setting wrong but I can't figure out which one. Some assistance would be greatly appreciated.
Hi Ben. I'm a little rusty on how these multi functional devices work. Where is the copier trying to send the e-mail when it does a scan? On premise mail server?
In reply to TimHansen:
No its gmail. We have even tried microsoft hosted email services but still not luck. Both work as long as the red it in transparent/split mode. Im not against running transparent/split as long as it can connect to the server at the other end of the tunnel. If I run it in standard/split neither work. I have checked the firewall log and I see blocking of the copier.
In reply to BenjaminRamezan:
Odd. Is the RED inline with the ISP equipment (standard/split)? Is the copier's default gateway the RED? Can you copy/paste a sample of the packet filter log showing the block? Likely it just needs a firewall rule.
It has been a few months since I have worked on this and that office is over 3 hrs away. Is it possible to use transparent/split and still see the server on the other end? If so that would be the easiest since i know the copier works that way.
If the copier works in transparent/split, I'm going to guess that the copier's gateway is not the RED. Reference https://community.sophos.com/kb/en-us/116573.
Which server are you talking about and could you define "see"? Can you verify what the entry looks like in the packet filter log when it's being blocked?
Okay so internally the copier works and gets an ip from the red 50. The only issue is the scan to email. I look at the live firewall log and never see the ip of the copier getting blocked. The only reason I havent sent the log is because that log doesnt exist from 2 months ago. As for the server. Sorry I forgot to mention but it holds the data that gets shared between the 2 offices. When setup in transparent/split i can not longer see that server. My setup is below for the red tunnel in transparent/split. Also correct me if im wrong but in standard/spit a firewall rule should only be needed if the traffic will be flowing through the UTM?
"...but in standard/spit a firewall rule should only be needed if the traffic will be flowing through the UTM?"
Okay, so I think the best thing to do would be to ask someone at that office to test the scan to e-mail function in order to produce fresh logs. Based on the logs we can take a look at your firewall rules to see what's missing. How is that server accessed, SMB (tcp 445)?
Benjamin, do you get any insight from doing #1 in Rulz?
Cheers - Bob
In reply to BAlfson:
I still wasnt able to get the scan to email working in standard/split. I checked firewall live log but it showed nothing getting blocked. I have however gotten transparent/split to work with now having access to the server at the other end of the tunnel.