Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 4681 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG 135 internet loss, every after 20 minutes

IT Miniug

I am using my Sophos XG135 as a DHCP server and configured in gateway mode, Running firmware version SFOS 18.5.2 MR-2-Build380. Internet connection is only active for a period of a bout 20 minutes and then it is lost but the WAN interface shows it is up and connected. Internet connection only returns after restarting the firewall or going to the WAN interface, save and update interface. I have to keep doing that every after a period of 20 minutes when i lose the internet connection, the connection from the ISP is very fine, when link is isolated from the Firewall, I don't lose connection to the internet at all. any one else experiencing the same or any solution to this issue?, it is really frustrating me.



This thread was automatically locked due to age.
  • 0

    Hi IT Miniug

    Please check the Log Viewer's Gateway logs in the affected XG when the WAN link fluctuates? I suspect the disconnection is caused to the WAN failure. 

    Place an unmanageable switch between the internet modem/Router and the XG and monitor the behavior. Alongside, please show us the configuration for the failover rule, go to, Interface | WAN link Manager | IPv4 Gateway | Failover rules.

    Take SSH access to the firewall and go to the Advance Console, execute the following command and show us the output.

    ethtool -i Port# (here, # is the port number on which WAN is configured)

    Show us the output.

    Please check DNS is getting resolved under Configure --->Network --->DNS

    Thanks and Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Hi Bharat, 

    when i place the unmanaged switch between the modem and the XG, nothing different, i experience the same, it still loses the internet connection. for what you requested to be shown, you can refer to the attached. currently its configured to one ISP so no Failover configured  

  • 0 in reply to IT Miniug

    Hello,

    do you have a second uplink to another ISP?

    I not, why do you define a failover rule?

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to PhilippRusch

    Hello Rusch;

    i have 1 ISP uplink

  • 0 in reply to IT Miniug

    Hi IT Miniug

    It seems an issue wherein an interface of an XG Firewall that uses an IXGBE driver only works if the connected device is set to Auto-negotiate. The XG 125 and XG 135 models currently observe this, which use the IXGBE driver for ports 1-4. However, port 5-8 uses IGB driver, which does not have an issue even if the connected device is set to manual or auto-negotiate.

    Note: The Sophos XG 125 and XG 135 have port 2 labeled as WAN. However, due to the issue with the IXGBE driver that it uses, port 2 can't be used as a WAN interface if the connected device is not set to auto-negotiate.

    Product and Environment

    • Sophos Firewall XG125
    • Sophos Firewall XG135

    Resolution

    Verify the interface driver

    To verify the driver being used by the interface, follow the steps below.

    1. Sign in to the Sophos XG Firewall console.
    2. Select option 5. Device Management 3. Advanced Shell.
    3. Run the command: ethtool -i <port number>
      Example:
      XG135w_XN03_SFOS 17.5.9 MR-9# ethtool -i Port2
      driver: ixgbe
      version: 5.2.1
      firmware-version: 0x80000878
      bus-info: 0000:0b:00.1
      supports-statistics: yes
      supports-test: yes
      supports-eeprom-access: yes
      supports-register-dump: yes
      supports-priv-flags: yes

    Workaround options

    1. Use one of the ports 5-8 of the XG Firewall to connect to the ISP modem.
    2. Set the XG Firewall port to Auto and the connected device to Auto.
    3. Set the XG Firewall port to manual (ex. 100Mbps) and the connected device to Auto.

    Thanks and Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • +1 in reply to Bharat J

    Hi Bharat;

    Tried out all the above but still it dropped.

    But I talked to the ISP too and described my situation and they told me they have ever encountered such when it comes to some Firewalls. What they did was lock the ARP to the MAC address of the interface I had configured on the Sophos and this worked out, link hasn't dropped since then. Though the issue is now I cant use the link on any other ethernet interface port since it is tied only to that MAC address.

  • +1 in reply to IT Miniug

    Hi IT Miniug,

    Sounds great ! your issue is resolved, as it was issue with MAC blinding with ISP.

    Thanks and Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML