Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Internet traffic stops every time XG has an IPS or ATP update

We have an issue with an XG-125 running MR3. Every time it does an ATP or IPS update, it blocks all traffic for two minutes.

Any suggestions would be welcome, I have opened a tech support case (03253973) with 'High' priority five days ago but haven't had a single response yet.



This thread was automatically locked due to age.
Parents
  • I believe this is the current expected behaviour when the IPS patterns are updated, I will confirm with Engineering. 

    Scheduled updates of firmware are available today using Central. Scheduled updates of patterns are coming, I hope in 18.5 but please do not take this as commitment, we are doing our best to catch up on some of these long requested features, but the Engineering teams also have other priorities to balance.

    Stuart

  • I hope this is granular and not a one size fits all option. Anti-virus updates take place multiple times a day, don't cause an issue, and I would like applied ASAP. Those that stop internet connectivity I want to be able to schedule outside of working hours. Better still would be code that didn't stop internet connectivity when it was updating!

    It really is time that you employed someone with some business acumen in your design team. I appreciate that this is a security device but anything that regularly stops it passing genuine internet traffic is a design failure and should not make it in to production. What do you say to a customer that loses all their VOIP calls several times a week? - "Sorry, its designed to do that!!!"

    BTW, my 'high' priority support case has now been open 8 days and I haven't had a single response yet!

Reply
  • I hope this is granular and not a one size fits all option. Anti-virus updates take place multiple times a day, don't cause an issue, and I would like applied ASAP. Those that stop internet connectivity I want to be able to schedule outside of working hours. Better still would be code that didn't stop internet connectivity when it was updating!

    It really is time that you employed someone with some business acumen in your design team. I appreciate that this is a security device but anything that regularly stops it passing genuine internet traffic is a design failure and should not make it in to production. What do you say to a customer that loses all their VOIP calls several times a week? - "Sorry, its designed to do that!!!"

    BTW, my 'high' priority support case has now been open 8 days and I haven't had a single response yet!

Children
  • JasP said:

    I hope this is granular and not a one size fits all option. Anti-virus updates take place multiple times a day, don't cause an issue, and I would like applied ASAP. Those that stop internet connectivity I want to be able to schedule outside of working hours. Better still would be code that didn't stop internet connectivity when it was updating!

    It really is time that you employed someone with some business acumen in your design team. I appreciate that this is a security device but anything that regularly stops it passing genuine internet traffic is a design failure and should not make it in to production. What do you say to a customer that loses all their VOIP calls several times a week? - "Sorry, its designed to do that!!!"

    BTW, my 'high' priority support case has now been open 8 days and I haven't had a single response yet!

    I'd second the "business acumen" comment.  They'd also quickly discover how futile the logging in this product is whenever they had to try and track down why something wasn't working.