XG Firewall v18 MR-4: Feedback and experiences

My fault. I've just checked the configuration backup and noticed that Local TLS exclusion list was empty before the upgrade. Shame on me. I should check that first.

I create an rule which blocks RDP (UDP, Port 3389) and I see the blocked UDP pakets in the firewall log. But still the RDP sessions freeze and disconnect in seconds or minutes. This issue can reproduced easely on our XG 230.

Is your rule droping or rejecting the udp packages? UDP on rdp service is used for "performance"... I rejected the packages, to notify the client about this permission error. So the client only uses tcp and not try using both. 

Would suggest to open a seperate thread to keep it more visible here, especially as you already noticed it with MR3. Suggest also to check if your IPSec VPN logs on client and XG for reconnects at about the time your RDP session starts hanging.
I remember an issue with the Connect Client reconnecting IPSec every ~15 minutes.

https://support.sophos.com/support/s/article/KB-000037055?language=en_US has an entry about

set vpn conn-remove-tunnel-up disable
When disabled, it will not flush the connections when IPSec tunnels come up

Removing my comment as it was incorrect.

I had an issue with reflexive nat.  I had to move the nat rule down to the bottom and turn off all reflexive nat rules for my terminal server.

Same problem here, does this ticket number already exist - trying to create one myself right now (support portal down ...).

Hi Sophos Support,

After upgrade of Firmware to v18 facing lots of issues with Remote desktop errors, i have contacted local rese;er of Sophos he also said ,may people facing same issues, why you people are with out testing released the firmware m here many companies or struggling with your bug firmware .

Requesting you to provide permanent solution for me.

Note: this is not a first time issue with your Firmware update last 6 months back also faced with your Sophos firmware. 

Regards,

Thirumalesh.T

Hello Thirumalesh

Rather than grumble, how about proving that you are a professional IT company (which your screen name attempts to suggest) and provide an efficient technical request and details.

A screenshot of an RDP session ending tells us 2 parts of STUFF ALL about your situation and determines that little to nothing can be done to assist you.

But from looking at that screen, it looks to me like you are attempting to RDP into a Windows WORKSTATION, and another user has connected. Workstation only allows 1 connection. So if that is the case, the Sophos has nothing to do with your issue

The screenshot is showing RDP disconnection correct once i down grade to v17 without  RDP disconnection i am able to connect, do i need to be in V17 or v18 , and as i said your local reseller also saying same thing , many people and other company people also facing same issue.

You are not providing the necessary information to give a statement:BTW This issue is, as Gavin already mentioned clearly not the XG fault. There are issues by customers, getting reconnect alerts and the session is expiring. But your issue seems to be related to something else.