Scheduled maintenance on Saturday, August 8th from 7am to 10am (UTC). Licensing registrations and key activations will be unavailable during this period. More info here.
We'd love to hear about it! Click here to go to the product suggestion community
i am frustrated. Since 4. Februar, after i updated the SG115 UTM to 9.701-6 the connection to a remote RED15 is not working.
Full Error Message from the RED Live Log is
SELF: Cannot do SSL handshake on socket accept from 'x.x.x.x': SSL accept attempt failed with unknown error error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown rotoco
The IP X.x.x.x belongs to a company in Ukraine, this should be the Sophos Provisioning Server, but at such a place?
IP Location Ukraine Ukraine Kiev Rm Engineering LlcASN Ukraine AS49877 RMINJINERING, RU (registered Aug 02, 2016)
The Problem with the Firmware 9.701-6 was that the RED Part of this firmware has an DNS Problem.
In the RED Configuration, which is uploaded to the provissioning Server, i used in the past the UTM Hostname
Acording to the statement from the online help: „UTM hostname: You need to enter a public IP address or hostname where Sophos UTM is accessible.”
I now changed this to the public IP adress of the UTM. The UTM uploaded the new config to the provissioning server and the RED15 tunnel started working after a short time.
I am very disapointed that i found this problem and not the Premium-Support by Shophos, it needed 6 Weeks to get this fixed.
And i am lucky that this is fixed now.
Hoefully Sophos fixes this bug and other users can use this workaround.
This is not a common problem today. You really should insist that Sophos Support escalate this immediately. It's probably too late now for you to get a German engineer today, but you should be able to get the case escalated now in preparation for tomorrow.
Cheers - Bob
I have the same error in my RED log. (UTM release 9.703-3).
2020:06:09-04:34:00 utm red_server: SELF: Cannot do SSL handshake on socket accept from '22.214.171.124': SSL accept attempt failed with unknown error error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol
At the time of this log entry there wasn't any RED devices connected.
Is it an attempt to connect by an unauthorized party?