Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +3 person also asked this people also asked this
  • Locked Locked
  • Replies 83 replies
  • Answers 8 answers
  • Subscribers 52 subscribers
  • Views 17658 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall Connection Lost in Sophos Central

Ahmed Fahmy1

Dears

I facing problem to manage my firewall from Sophos central as error below

The firewall is not responding to the login request as fast as expected. Please wait a while and try again, or check that the firewall is not experiencing any internet connectivity issues.

Note : Wan Link is up & internet is good 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Vivek Jagad

    so all our firewalls reported the issue today again. Sophos is not getting it stable unfortunately.

  • 0 in reply to LHerzog

    Essentially it is a load issue in Central Frankfurt, which is reflected by the KB: https://support.sophos.com/support/s/article/KB-000044605?language=en_US

    Unfortunately it was closed again, but actually DEV is monitoring the situation to get this resolved. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    Engineering team is actively investigating. If anyone has experienced the issue from 10:45-12:00 UTC today related to the  Firewall not communicating to Central please post a reply to this thread or send me a DM. 

    Thank you kindly.

    Karlos
    Community Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.
  • 0 in reply to Karlos

    Hi Karlos, our customers did today:

    Let me know if you need support access ids - I'll update our case as well.

  • 0 in reply to Ale1007

    if you're in CEST, it does not apply to 10:45-12:00 UTC

  • 0 in reply to Karlos

    This should be in specific time-range (Log in CEST):

    Multiple 502 Bad Gateway and 504 Gateway TIme-Out Messages in /log/centralmanagement.log around this time.
    Does this help?

    2022-10-24 09:24:48Z INFO central-connect[9413]:232 main:: -  Poll for SSO Sessions failed.
2022-10-24 09:24:48Z ERROR Tools.pm[9413]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied
2022-10-24 09:25:22Z INFO central-connect[9644]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/C01001XXXXXXX/sshTunnel  Timezone: Europe/Berlin
2022-10-24 09:26:26Z WARN API.pm[9644]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 504 Gateway Time-out
Connection: close
Date: Mon, 24 Oct 2022 09:26:26 GMT
Server: awselb/2.0
Content-Length: 132
Content-Type: text/html
Client-Date: Mon, 24 Oct 2022 09:26:26 GMT
Client-Peer: 3.124.132.150:443
Client-Response-Num: 1
Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
Client-SSL-Socket-Class: IO::Socket::SSL
Title: 504 Gateway Time-out

<html>
<head><title>504 Gateway Time-out</title></head>
<body>
<center><h1>504 Gateway Time-out</h1></center>
</body>
</html>

2022-10-24 09:26:26Z INFO central-connect[9644]:232 main:: -  Poll for SSO Sessions failed.
2022-10-24 09:26:26Z ERROR Tools.pm[9644]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied
2022-10-24 09:27:00Z INFO central-connect[10188]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/C01001XXXXXXX/sshTunnel  Timezone: Europe/Berlin
2022-10-24 09:27:01Z WARN API.pm[10188]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 502 Bad Gateway
Connection: close
Date: Mon, 24 Oct 2022 09:27:01 GMT
Server: awselb/2.0
Content-Length: 122
Content-Type: text/html
Client-Date: Mon, 24 Oct 2022 09:27:01 GMT
Client-Peer: 3.124.132.150:443
Client-Response-Num: 1
Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
Client-SSL-Socket-Class: IO::Socket::SSL
Title: 502 Bad Gateway

<html>
<head><title>502 Bad Gateway</title></head>
<body>
<center><h1>502 Bad Gateway</h1></center>
</body>
</html>

2022-10-24 09:27:01Z INFO central-connect[10188]:232 main:: -  Poll for SSO Sessions failed.
2022-10-24 09:27:01Z ERROR Tools.pm[10188]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied
2022-10-24 09:27:36Z INFO central-connect[10422]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/C01001XXXXXXX/sshTunnel  Timezone: Europe/Berlin

    It's only test-lab, but if it helps getting this fixed, Access ID: c5d276b0-16f0-3120-9be8-b18e5708b7c8@eu2.apu.sophos.com

  • 0 in reply to soph-f

    Thank you , much appreciated! Will forward this to Engineering.

    Karlos
    Community Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.
  • 0 in reply to Karlos

    Hi,
    same issue again for about 30 minutes!

    BR Gerd

Unfiltered HTML