What is this in Sophos Central Firewall Management?
1st thing: only 3 firewalls showed, need to go to second page to see more? why that - that is not userfriendly nor necessary.
2nd issue:
What is that warning message? Nothing has changed on the cluster, but it shows such strange status.
Hi LHerzog,
Thanks for sharing your feedback. I've relayed these items to our product teams for further input.
The alert you’re seeing with HA may be something we can look into a bit further. Do you know if that HA cluster was registered to Sophos Central originally? I will follow up with you via PM to ask for more details surrounding the Sophos Central instance so we can look into the communication that occurred when that alert was raised.
Hi Qoosh,
the cluster has been registered, yes. And this warning just appeared. I did not see any issue or alert. Maybe just a bug just like the sorting of the firewalls.
Can you please explain what this message should mean?
I will send you access details.
Essentially with the change of Central UI, there was a little bit of a hick up in the Dark Mode of FW Central Management.
DEV is investigating the issues right now and will fix the layout.
The sorting (5/10/25) Firewalls should be there to have a better overview in bigger setups. But you see another issue. This could eventually also explain your other issue. It should not split up the firewalls in two pages. The splitup seems to cause Central to believe, the Cluster is not in one group (essentially your issue alert).
Could you registered both appliances to central?
__________________________________________________________________________________________________________________
LuCar Toni said:Could you registered both appliances to central?
I'm afraid to do so - this would regenerate the Heartbeat Cert, correct?
There is no "one" Certificate. Each and every firewall will generate one Certificate. And this will be pushed to the Clients (Essentially per Firewall cluster you will have one CA).
Registration will generate a new certificate - That is correct. If you have concern of the duration, you should do it on a off work hour.
You could create a support case to get this investigated, why the split is happening. I could not see this in any of my installations.
OK, I'm very sensitive about the Heartbeat certificate changes as you could read from my other posts.
But thanks for confirmation and other details you posted about the new layout.
We've seen this firewall grouping issue (show 5, see only 3 clusters) once before but it has been fixed but is now back again.
If you change to 10 Items instead of 5?
that works and guess what?
then the error is also gone. If I switch back to 5 - it is shown as orange warning again.
5:
10:
Yeah, the problem is actually, each and every firewall is considered to be "One unique firewall". This means, you are having 6 Firewalls, not 3 clusters. This means, the firewall page breaks after 5 and split one into the next page, causing this alert.
It is a cosmetic issue, which came with the recent change of CM and DEV is currently looking into this.
Thank you - so no worries to begin the weekend!