This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion
  • The classification process is still broken - ntp, Imaps.

    Is there any reason at all on why the Firewall can't detect NTP traffic as Its own application?

    Creating a application signature for NTP shouldn't be that hard.


    If a post solves your question use the 'Verify Answer' button.

    Ryzen 5600U + I226-V (KVM) v20 GA @ Home

    XG 115w Rev.3 8GB RAM v19.5 MR3 @ Travel Firewall

  • This morning I decided to try out the DPI engine in MR-5. All went fine for about 30 minutes when working items broke. I performed a restore from yesterday, all good except the update screen hung at 100% and I had to close the web browser and start the access to the XG again.

    ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • You mean the DPI Engine started to decrypt websites, which it should not do? Because i am running full DPI Engine for several clients without any issues. But this should be looked at by the time you can invest and not in this mega thread. 

    __________________________________________________________________________________________________________________

  • Hi,

    I will take  a more logical step to testing tomorrow.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • First Test on my home Firewall looks good. If there are no issues I will install the MR5 next week on our productive Firewalls. 

    If a post solves your question please use the 'Verify Answer' button.

  • I updated a MR4 Firewall with running OSPF Routing to MR5 and it is working. 

    If a post solves your question please use the 'Verify Answer' button.

  • Reporting is broken. I get two daily reports every hour starting at approx 0100 this morning.

    I will start a new thread on reporting.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • LDAP Auth is broken on 18 MR-5

    all auth requests on the firewall are producing "LDAP Server not found with authserver id" errors, tried to recreate the LDAP server, tried setting the LDAPserver to use an known dn instead of anonymous ... auth failed.

    ldap server is configured like the kb states https://support.sophos.com/support/s/article/KB-000035738

    had to rollback to -MR 4

  • Can you show us a screenshot of this issue? You are using LDAP server to anything specific? 

    __________________________________________________________________________________________________________________

  • we have an pretty standard OpenLDAP setup

    i don't have any screenshots but i have some logs:

    ERROR     Apr 12 06:39:47.620137 [LDAP_AUTH]: (ldapauth_handle_authrequest): LDAP_AUTH: LDAP Server not found with authserver id 4
    ERROR     Apr 12 06:39:47.620155 [LDAP_AUTH]: (ldapauth_handle_authrequest): LDAP_AUTH: LDAP Server not found with authserver id 3
    ERROR     Apr 12 06:39:47.620266 [access_server]: check_auth_result: VPN/SSLVPN/MYACC Authentication Failed
    MESSAGE   Apr 12 06:39:47.620301 [access_server]: (update_admin_access_table): ### Admin user authentication failed from IP xx.xx.xx.xx
    MESSAGE   Apr 12 06:40:02.521909 [access_server]: tlvserver_process_request: GOT ALERT.EXECUTE_HEARTBEAT
    ERROR     Apr 12 06:40:15.155300 [access_server]: ldapauth_bind: bind failed: Invalid credentials
    ERROR     Apr 12 06:40:15.155311 [access_server]: ldapauth_test_auth:'ldap.xxx.xx:389': bind failed for user: 'uid=xxxxxx'
    ERROR     Apr 12 06:40:20.247596 [LDAP_AUTH]: (nsg_decryption): failed to find needed_length for :

    ERROR     Apr 12 06:40:20.247613 [LDAP_AUTH]: (pg_db_handle_get_ldap_server_config): LDAP server password decryption failed
    ERROR     Apr 12 06:40:20.247620 [LDAP_AUTH]: (pg_db_handle_get_ldap_server_config): LDAP server: password not found, will not add server
    ERROR     Apr 12 06:40:20.247624 [LDAP_AUTH]: (pg_db_handle_get_ldap_server_config): couldn't added LDAP server 'ldap.xxx.xx:389'