Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 37 subscribers
  • Views 522 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RDP session crashes when used via clientless VPN session on Sophos XG Firewall

James Holley

We have configured RDP within a bookmark to run to a server running Ubuntu 18.04.

All is well with the set up, and we can connect OK to the firewall and start the RDP session.

However, the session crashes whenever we open a browser or launch an application within RDP on the server in question. It appears a burst of data back through the firewall is dropping the connection.

This is not a bandwidth issues, as this is the only traffic on this link. There is no QOS set on the incoming or outgoing interface for this ssl traffic.

It looks like a bug on the code version - Sophos XG SG550 – SFOS 17.5.12 MR-12

Has anybody had a similar issue and did they manage to correct it by way of configuration?

Thanks

James



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    Hi ,

    We've moved this thread to the XG Firewall group from the Community Chat group as it’s better suited here. 

    Would it be possible for you to post a screenshot of the DoS & spoof protection configuration from your firewall? 

    Have you noticed any dropped traffic entries on the firewall for RDP traffic?

    Thanks,

  • 0 in reply to FormerMember

    Hello Harsh

    The firewall in question is an offline air gapped cluster.

    As such. no UTM features are turned on so both DOS protection and anti spoofing are not configured or turned on.

    The session starts OK, we can select the required application on the remote server OK, and just as we open a bandwidth intensive gui, like a browser the session crashes and is blown away.

    But two points, the remote server is on a directly connected network to the firewall via a L2 switch.

    There is no other traffic on the path between the fw and the remote server.

    When i say bandwidth intensive, I mean opening a firewall gui or even a terminal window and do an ls -ltr.

    So we are not talking hundreds of megs of traffic.

    Thanks

    James

Unfiltered HTML