Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 99 replies
  • Answers 2 answers
  • Subscribers 76 subscribers
  • Views 38052 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Firewall: v19.0 GA: Feedback and experiences

LuCar Toni

https://community.sophos.com/sophos-xg-firewall/b/blog/posts/sophos-firewall-os-v19-is-now-available

Release Notes: docs.sophos.com/.../index.html

"Old" V18.5 MR3 Thread: https://community.sophos.com/sophos-xg-firewall/b/blog/posts/sophos-firewall-v18-5-mr3-is-now-available

The V19.0 EAP Community: https://community.sophos.com/sophos-xg-firewall/sfos-v19-early-access-program/

About the Upgrade Issues: 

See Known Issue List in Release Note

s: 



This thread was automatically locked due to age.
Parents
  • 0

    Upgraded our XGS5500 Cluster this weekend to v19ga. Now we've got some serious problems with our IPSec Site to Site connections. Those connections are setup as tunnel connections with xfrm interfaces. We use BGP over those interfaces. The problem is that connectivity between our branch routers (XG125) and the main router for those tunnels is down every 30-50 minutes. VPN Tunnel is still up but the xfrm interfaces cant reach eachother. The only thing that is working is disableing the hole ipsec tunnel and reenabling it. Only then the xfrm interfaces can reach eachother for some time. I allready opened a support ticket but maybe some around here has had the same issue and a quick fix for me.

  • 0 in reply to Freddy1986

    Have you checked the ipsec guide? DPD should only enabled on vpn initiator and phase 1 and phase 2 re-key shouldn't happen at same time. Maybe this is your problem?

Reply Children
Unfiltered HTML