I am new in this Sophos community. So, first of all, hello everybody and thank you for your future help in resolving my issue. I have tried to find similar issues but I could not find them.
After working during 9 months with a Sophos XGS 136W in the office with a small network (12 pc's connected via wired network and 2 wifi connections) without any issue, we had a power shortcut and, after rebooting the sophos, it was not possible to use the network again.
The Sophos was working as router (I remove the router supplied by Vodafone and I connected to the ISP using PPPoE), as firewall and as DHCP server.
After rebooting, I see always a RED indicator in the gateway. See this image:
Do you know the meaning of this Red LED in the "State" of the connection?
I have tried to restore to a previous backup copy (done when everything was working) but without success. Sophos has also all the latest firmwares updates.
If I remove the Sophos and I reconnect the router supplied by Vodafone, the network is working properly. So, it does not seem a problem related to the external connection.
Thank you very much for your help.
Hey Jordi Sans,This Interface Port2 is configured as PPPOE interface, so the command used is not applicable and will not work. It is only to be used using static interface. Try checking the following logs…
Hello Jordi Sans,Thank you for reaching out to the community, could you please share the screenshot of the Network > WAN Link manager > GW_VODAFONE > Failover rules..?
Thanks & Regards,
Vivek Jagad | Technical Account Manager 3 | Cyber Security EvolvedSophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
Hello Vivek Jagad,
Thank you for your message.
There is not any Failover rules... only the default one. Here the screenshot:
But there is only one gateway defined:
Thanks. Best regards
Thank you for the update, can you login to the via putty session with ssh admin credentials And then type 4 for the device console and type the following command:console> system diagnostics utilities arp ping interface Port2 184.108.40.206And see if you receive a unicast reply and then refresh the page on the GUI, see if the RED indication changes to Green...
let's see if I understood correctly:
I open Console selecting it here:
Then I insert admin credentials, but unfortunately it enters in Failsafe mode:
If I select 1. Device console, and see the failure-reason, I get this message:
Unable to apply NAT Rules. Do you know what does it mean?
In any case, Ping as you can see, it is not working:
Thank you very much! REgards
Hello Jordi Sans,You are using a EAP (early access program - beta) version of the firmware.Please re-image the appliance: https://support.sophos.com/support/s/article/KB-000036812?language=en_USYou can download the ISO of v18.5.3 MR-3 or v18.0.6 MR-6 from here: https://download.sophos.com/network/SophosFirewall/installers/index.html
V18.0 cannot be applied on a XGS Hardware. You should quickly install V18.5 MR3 for security reasons. Your Firmware is very old and you never actually updated the Firewall?
Hello Vivek and Lucar,
following your advice I have downloaded and installed v18.5.3 MR3 but still the same issue.
Gateway in red color.
But Port2 interface appears always as "Disconnected":
If I click on "Connect now" in this interface, I get this message:
But still appear as Disconnected:
If I try to ping using console, I get this message:
I think that it should be related the "Disconnected" of Port2 and this error message in the console.
What do you think? Any idea about how to proceed?
Thank you very much.
Hey Jordi Sans,This Interface Port2 is configured as PPPOE interface, so the command used is not applicable and will not work. It is only to be used using static interface. Try checking the following logs from the advance shell:> /log/syslog.log> /log/networkd.log> /log/dgd.logAlso check for the pppoe interface has the credentials correct.
Thank you very much for your message.
Finally, I could solve the issue... and it was a credentials problem. My ISP provider changed my user and password of the PPPoE connection!!!
The most annoying point is that I called to my ISP provider and I asked "Have you changed these parameters?". Their reply was "No, we never change it after setting them".
Then, I recalled to my ISP asking "Please, can you give me User and Password of my PPPoE connection?" "Yes, of course"... and they indicated me different values that the ones that I had!!!!!
In any case, this small issue has helped me to discover this community and to update the Sophos to the last firmware versions.
Thank you very much!
Hey Jordi Sans,Thank you and we are glad we can assist you and move forward with a resolution on the community, please click on verify button, this would help our community to grow !!