Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 2307 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Firewall using incorrect IP address

Paul Jones2

Hi Guys, I'm a bit of a Sophos XG Noob so please bare with me.

Sophos XG - 310 (SFOS 17.5.9 MR-9)

We are having an issue with our systems authenticating around our Sophos Box, authentication is failing due to traffic not going where it should.  What we have noticed is that our Sophos WAN port(Port 2): IPv4 10.172.65.30 /28 has also been using 10.172.65.29(which belongs to our Cisco Switch Port, Static Address) and registered the IP against the Sophos Port2 MAC address.  We only found this out by looking at the logs on our Cisco switch that the Sophos box is plugged into, the logs show this as a conflicting address.

Has anyone seen this happen before?  Any ideas how to rectify this issue.  Both the Cisco and Sophos box haven't been touched in the last few weeks, this error happened this morning for the first time.

 

Cheers,

Paul.  



This thread was automatically locked due to age.
Parents
  • 0

    Paul,

    in addition: check that you do not have an alias created on the WAN port.

  • 0 in reply to lferrara

    Hi Guys,

     

    Thanks for the reply's.

     

    Let me clear it up, I have now rolled back firmware versions and can see under the Neighbors(ARP-NDP) the offending ip, it wasn't there on the latest firmware.  It is also using port 2 but has a different MAC address, I don't have any aliases on Port 2.  Is there an easy way to delete it?  Clicking on the trashcan doesn't get rid of it.  Also, still not sure where it came from.

Reply
  • 0 in reply to lferrara

    Hi Guys,

     

    Thanks for the reply's.

     

    Let me clear it up, I have now rolled back firmware versions and can see under the Neighbors(ARP-NDP) the offending ip, it wasn't there on the latest firmware.  It is also using port 2 but has a different MAC address, I don't have any aliases on Port 2.  Is there an easy way to delete it?  Clicking on the trashcan doesn't get rid of it.  Also, still not sure where it came from.

Children
Unfiltered HTML