Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem with many User on V18

Today I had to realize that the V18 still has problems with the SSL-VPN access and several users.

Due to the current situation, home office has been prescribed in our company and so today almost 30 people had to work via SSL-VPN. But this seems to be too much for the V18. From about 20 users the V18 simply restarts without notice.

I watched the whole thing 3-4 times within an hour and had to reboot to V17.5. There the problem does not exist.

We have an XG330 Rev.2 so the Hardware is not the Problem.



This thread was automatically locked due to age.
Parents Reply Children
  • Hello KingChris,

    could you please explain to me how is it possible that your support announced to  that there is a problem with the HW appliance and you write us that it is a known problem and that it will be removed in mid-April in MR1?
    How is it possible?!? Could you please explain this to me? You know that it is a known problem, including the number of the error under which the problem is internally solved and your colleague  does not know about it, really?!?

    So far, the quality of your support has surpassed everything I have experienced in my professional life.

    Regards

    alda

  • Sophos installed an patch on my XG.

    Ill let you know if it fixed the reboot issue

  • To follow up with  post, the following advisory KBA has been published:


    Florentino
    Director, Global Community & Digital Support

    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question, please use the 'Verify Answer' button.
    The Award-winning Home of Sophos Support Videos! - Visit Sophos Techvids
  • Just another reset. I can see in /log/sslvpn.log.0:

    Thu Mar 19 09:25:29 2020 us=327051 [5669] x.x@x.x/::ffff:x.x.x.x UDPv6 READ [97] from
    [AF_INET6]::ffff:x.x.x.x:56236 (via ::ffff:x.x.x.x%PortB): P_DATA_V1 kid=0 DATA len=96
    Thu Mar 19 09:25:29 2020 us=327113 [5669]x.x@x.x/::ffff:x.x.x.x TUN WRITE [40]
    Thu Mar 19 09:25:29 2020 us=393643 [5669] event_wait : Interrupted system call (code=4)
    Thu Mar 19 09:28:53 2020 us=50297 [9848] Current Parameter Settings:
    Thu Mar 19 09:28:53 2020 us=51104 [9848] config = '/cfs/system/openvpn/openvpn.conf'

    And in /log/syslog.log:

    Mar 19 09:20:30 (none) user.debug heartbeat: [SEND-TLV] No response from autherntication server expected.
    Mar 19 09:21:02 (none) user.err sslvpn: Sending authtlv to access_server. msg_type: 1, user_name: x.x@x.x, ipaddress: 172.18.1.15
    ..........................................................................................................
    ..........................................................................................................
    ..........................................................................................................
    ..........................................................................................................
    ........................................Mar 19 09:22:08 (none) syslog.info syslogd started: BusyBox v1.21.
    1
    Mar 19 09:22:08 (none) user.notice kernel: klogd started: BusyBox v1.21.1 (2020-03-04 19:44:36 CET)
    Mar 19 09:22:08 (none) user.notice kernel: [ 0.000000] Linux version 4.14.38 (jenkins@ci-1) (gcc versio
    n 7.3.0 (OpenWrt GCC 7.3.0 7185-ged7f3dd9)) #2 SMP Wed Mar 4 22:26:05 CET 2020
    Mar 19 09:22:08 (none) user.info kernel: [ 0.000000] Command line: BOOT_IMAGE=/18_0_0_339 quiet console
    =tty0 console=ttyS0,38400n8

    15th SSLVPN connection led to kernel panic.

    We've just downgraded to SFOS 17.5.9 MR-10 and we're waiting for patch.