This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Central Accesspoints offline due to *.prod.hydra.sophos.com FQDN Host issue since 18.5 MR4 and also in 19.0 MR1

There is an issue present is SFOS since 18.5 MR4 and still in SFOS 19.0.1 MR-1-Build365.

We have a firewall rule that allows the required traffic from our AP and APX devices to Sophos Central.

The Rule has *.prod.hydra.sophos.com as Wildcard FQDN as allowed destination (beside other FQDN of no matter here).

Since the upgrade this wildcard FQDN does no longer work. The APs will become offline in Sophos Central after some time after the upgrade.

The reason is, that the firewall rule does no longer match. The traffic is not picked by that rule, it runs through the rule set until the final block rule.

Workaround: create new FQDN for wifi-cloudstation-eu-central-1.prod.hydra.sophos.com in that rule.

It's so sad to see that Sophos Hardware does not work without issues on Sophos Firewall and that wildcard Sophos domains don't work either on a firewall that should support it.

This issue has been seen on all of our XG and XGS clusters.

This thread was automatically locked due to age.

Top Replies

Vishal_R over 2 years ago in reply to LHerzog +2 suggested

Hi LHerzog Thanks for the detailed information, Yes the issue is known to the Sophos Dev team and they are working on it. Reference ID is NC-100716 and I will keep this thread updated once we will get…

Parents

0 Vivek Jagad over 2 years ago

Hello LHerzog,

Thank you for reaching out to the community, well in the scenario I would suggest you can also add Sophos exceptions:
1.) Add an exception: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Web/Exceptions/WebExceptionAdd/index.html
2.) Domains and ports to allow under web > exceptions: https://docs.sophos.com/central/Customer/help/en-us/PeopleAndDevices/ProtectDevices/DomainsPorts/index.html

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Technical Support, Global Customer Experience

Log a Support Case | Sophos Service Guide
Best Practices – Support Case | Security Advisories
Compare Sophos next-gen Firewall | Fortune Favors the prepared
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 LHerzog over 2 years ago in reply to Vivek Jagad

that's no solution to the root cause of the issue.

wildcard fqdn should work.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 LHerzog over 2 years ago in reply to Vivek Jagad

that's no solution to the root cause of the issue.

wildcard fqdn should work.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Vivek Jagad over 2 years ago in reply to LHerzog

of course, I just gave you an alternate way !!

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Technical Support, Global Customer Experience

Log a Support Case | Sophos Service Guide
Best Practices – Support Case | Security Advisories
Compare Sophos next-gen Firewall | Fortune Favors the prepared
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
0 Vishal_R over 2 years ago in reply to LHerzog

Hi LHerzog Thanks for the detailed information, Yes the issue is known to the Sophos Dev team and they are working on it. Reference ID is NC-100716 and I will keep this thread updated once we will get fixed version information.

Regards,

Vishal Ranpariya
Technical Account Manager | Sophos Technical Support
Sophos Support Videos | Knowledge Base | @SophosSupport | Sign up for SMS Alerts |
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up +2 Vote Down

Cancel
0 LHerzog over 2 years ago in reply to Vishal_R

Hello Vishal_R good to read that it's on Sophos' screen. Can you provide a description of that NC please, because it is not in the known issue list - I already checked that.
Cancel
Vote Up 0 Vote Down

Cancel
0 Vishal_R over 2 years ago in reply to LHerzog

Hi LHerzog : NC-100716 - ipset sporadically not created for wildcard FQDN host, The context "known" which I used in the previous comment is that the Sophos team has received instances and working on it. Which is under investigation and fix version will be shared. The known issue list to which you are referring is the list of ID which has been marked as in known behavior or Known issues. For this NC ID details, you will not be able to see in that product known issue list and will see in the release note of that firmware in which fix will be taken.

Regards,

Vishal Ranpariya
Technical Account Manager | Sophos Technical Support
Sophos Support Videos | Knowledge Base | @SophosSupport | Sign up for SMS Alerts |
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up +2 Vote Down

Cancel
0 LHerzog over 2 years ago in reply to Vishal_R

Thanks Vishal_R. I'm not sure if ipset issue is correct here because as you can see from my long post from the link provided in the initial topic in this thread, the IPs are correctly resolved by the XG and that can be seen from the Webadmin. Anyway requests to that FQDN are not correctly assigned to the *FQDN ipset used put in the FW rule.
Cancel
Vote Up 0 Vote Down

Cancel
0 Vishal_R over 2 years ago in reply to LHerzog

Hi LHerzogIn SFOS ipset is a mechanism used for quick lookup for various different kinds of data (not just IP address) and that backend entry is not created which is failing to match the rule correctly for wildcard FQDN.

grep "ipset" /log/fqdnd.log

ipset v6.38: Element cannot be deleted from the set: it's not added
ipset v6.38: Element cannot be deleted from the set: it's not added
ipset v6.38: Element cannot be deleted from the set: it's not added

Regards,

Vishal Ranpariya
Technical Account Manager | Sophos Technical Support
Sophos Support Videos | Knowledge Base | @SophosSupport | Sign up for SMS Alerts |
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up 0 Vote Down

Cancel

0 LHerzog over 2 years ago in reply to Vishal_R

Have this only fon non-existing Microsoft FQDN.

ipset v6.38: Element cannot be deleted from the set: it's not added
ipset v6.38: Element cannot be deleted from the set: it's not added
ERROR     Sep 22 11:55:50Z [4155961856]: addOrUpdateFQDNCache:addOrUpdateFQDNCache: FQDN Host : 5.tlu.dl.delivery.mp.microsoft.com DNS query error; retry after retry_interval_on_error = 30 seconds...
ERROR     Sep 22 11:55:50Z [4155961856]: addOrUpdateFQDNCache:addOrUpdateFQDNCache: FQDN Host : 6.tlu.dl.delivery.mp.microsoft.com DNS query error; retry after retry_interval_on_error = 30 seconds...
ERROR     Sep 22 11:56:20Z [4155961856]: addOrUpdateFQDNCache:addOrUpdateFQDNCache: FQDN Host : 5.tlu.dl.delivery.mp.microsoft.com DNS query error; retry after retry_interval_on_error = 30 seconds...
ERROR     Sep 22 11:56:20Z [4155961856]: addOrUpdateFQDNCache:addOrUpdateFQDNCache: FQDN Host : 6.tlu.dl.delivery.mp.microsoft.com DNS query error; retry after retry_interval_on_error = 30 seconds...
ipset v6.38: Element cannot be deleted from the set: it's not added
ERROR     Sep 22 11:56:51Z [4155961856]: addOrUpdateFQDNCache:addOrUpdateFQDNCache: FQDN Host : 5.tlu.dl.delivery.mp.microsoft.com DNS query error; retry after retry_interval_on_error = 30 seconds...
ERROR     Sep 22 11:56:51Z [4155961856]: addOrUpdateFQDNCache:addOrUpdateFQDNCache: FQDN Host : 6.tlu.dl.delivery.mp.microsoft.com DNS query error; retry after retry_interval_on_error = 30 seconds...

BUT:

XGS136_XN01_SFOS 19.0.1 MR-1-Build365# grep "sophos" /log/fqdnd.log

ERROR Sep 21 13:56:17Z [4155961856]: fqdn_ttl_check:FQDN Host : wifi-cloudstation-eu-central-1.prod.hydra.sophos.com DNS response error, server=127.0.0.1" return value = -1

XGS136_XN01_SFOS 19.0.1 MR-1-Build365# nslookup wifi-cloudstation-eu-central-1.prod.hydra.sophos.com

Domain Name Server# 127.0.0.1
Domain Name # wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
Resolved Address 1# wifi-spinnaker-1416972346.eu-central-1.elb.amazonaws.com.
Resolved Address 1# 35.159.1.45
Resolved Address 2# 52.29.50.183
Resolved Address 3# 52.28.91.132
Total query time # 0.13 msec

Here a Log search of everything around that FQDN. You can se where I created that host and it resulted in a restart of dnsd.

192.168.57.100 is APX320 IP address.

XGS136_XN01_SFOS 19.0.1 MR-1-Build365# grep "wifi-cloudstation-eu-central-1.prod.hydra.sophos.com" /log/*.log -C 5
/log/csc.log-DEBUG     Sep 21 13:55:37Z  [worker:8424] sync_entity: res: opcode cont_length  0
/log/csc.log-DEBUG     Sep 21 13:55:37Z  [worker:8424] sync_entity: res: opcode status_code  200
/log/csc.log-DEBUG     Sep 21 13:55:37Z  [worker:8424] sync_entity: res: opcode status_str_len  2
/log/csc.log-MESSAGE   Sep 21 13:55:59Z  [worker:8426]: {"request":{"method":"nopcode","name":"poll_for_SSO","version":"1.2","type":"text","length":0}}
/log/csc.log-MESSAGE   Sep 21 13:55:59Z  [worker:8383]: {"request":{"method":"opcode","name":"getappkey","version":"1.6","type":"text","length":0}}
/log/csc.log:MESSAGE   Sep 21 13:55:59Z  [worker:7970]: {"request":{"method":"opcode","name":"apiInterface","version":"1.0","type":"json","length":445,"data":{"___serverport":4444,"___component":"GUI","netid":"wifi-cloudstation-eu-central-1.prod.hydra.sophos.com","hosttype":"11","updatehostgrp":"1","transactionid":"5241","mode":667,"hostname":"HST-EXT-wifi-cloudstation-eu-central-1.prod.hydra.sophos.com","currentlyloggedinuserid":3,"APIVersion":"1900.1","___serverprotocol":"HTTP","___username":"admin","___meta":{"sessionType":1},"___serverip":"127.0.0.1","currentlyloggedinuserip":"MY.ADMIN.IP.19"}}}
/log/csc.log-MESSAGE   Sep 21 13:55:59Z  [worker:8669]: {"request":{"method":"opcode","name":"readobject","version":"1.2","type":"json","length":26,"data":{"Entity":"parentproxyv4"}}}
/log/csc.log:MESSAGE   Sep 21 13:55:59Z  [worker:7968]: {"request":{"method":"opcode","name":"add_fqdn_host","version":"1.6","type":"json","length":591,"data":{ "ipfamily": "0", "transactionid": "5241", "Entity": "fqdnhost", "___cmrequest": 0, "Event": "ADD", "___cmenabled": 0, "___serverprotocol": "HTTP", "netid": "wifi-cloudstation-eu-central-1.prod.hydra.sophos.com", "___serverport": 4444, "mode": 667, "APIVersion": "1900.1", "updatehostgrp": "1", "currentlyloggedinuserip": "MY.ADMIN.IP.19", "___meta": { "sessionType": 1 }, "___component": "GUI", "___serverip": "127.0.0.1", "currentlyloggedinuserid": 3, "hostgroupid": "", "hosttype": "11", "___username": "admin", "hostname": "HST-EXT-wifi-cloudstation-eu-central-1.prod.hydra.sophos.com" }}}
/log/csc.log-MESSAGE   Sep 21 13:55:59Z  [dnsd:5545]: {"dnsd":{"method":"service","name":"dnsd:restart","version":"1.6","type":"text","length":0}}
/log/csc.log-MESSAGE   Sep 21 13:55:59Z  [dnsd:5545]: do_stop(): status = RUNNING
/log/csc.log-MESSAGE   Sep 21 13:55:59Z  [dnsd:5545]: do_waitpid: Service with pid 21092, wrapped-up successfully using signal 9.
/log/csc.log-########## Package: system::parentproxyv4
/log/csc.log-**********  parentproxyv4 Read Without ORM
--
/log/csc.log-Readobject Executing PREPSTMT Query=select cachepeer as extPeer,cachepeerport as extpeerport,username as userName,passwd as password,case when(cachepeer is not null and cachepeer != '' and cachepeer != '-11' and cachepeerport is not null and cachepeerport != '') then 'checkbox' else '' end as parentproxystatus from tblcacheconfiguration where ipfamily='0'MESSAGE   Sep 21 13:56:16Z  [worker:8701]: {"request":{"method":"opcode","name":"readobject","version":"1.2","type":"json","length":26,"data":{"Entity":"parentproxyv6"}}}
/log/csc.log-########## Package: system::parentproxyv6
/log/csc.log-**********  parentproxyv6 Read Without ORM
/log/csc.log-
/log/csc.log-Readobject Executing PREPSTMT Query=select cachepeer as extPeer,cachepeerport as extpeerport,username as userName,passwd as password,case when(cachepeer is not null and cachepeer != '' and cachepeer != '-11' and cachepeerport is not null and cachepeerport != '') then 'checkbox' else '' end as parentproxystatus from tblcacheconfiguration where ipfamily='1'WARNING   Sep 21 13:56:17Z  [sync_customerinfo:8694]: Action with NOFAIL Failed.
/log/csc.log:MESSAGE   Sep 21 13:56:23Z  [worker:8705]: {"request":{"method":"opcode","name":"apiInterface","version":"1.0","type":"json","length":1203,"data":{"select_cat":"adminname","___serverport":4444,"select":["HST-EXT-wifi-cloudstation-eu-central-1.prod.hydra.sophos.com","*.sophosupd.com","*.sophos.com","*.sophosupd.net","*.sophosxl.net","ocsp.globalsign.com","ocsp2.globalsign.com","crl.globalsign.com","crl.globalsign.net","ocsp.digicert.com","crl3.digicert.com","crl4.digicert.com","tf-edr-message-upload-eu-west-1-prod-bucket.s3.amazonaws.com","tf-edr-message-upload-us-east-2-prod-bucket.s3.amazonaws.com","prod.endpointintel.darkbytes.io","tf-edr-message-upload-us-west-2-prod-bucket.s3.amazonaws.com","kinesis.us-west-2.amazonaws.com","*.prod.hydra.sophos.com","dzr-mcs-amzn-eu-west-1-9af7.upe.p.hmr.sophos.com","dzr-mcs-amzn-us-west-2-fa88.upe.p.hmr.sophos.com","*.cloudfront.net","*.ctr.sophos.com","*.cloud.sophos.com"],"___component":"GUI","hostgroupname":"Sophos Central Domains","transactionid":"5244","mode":1153,"currentlyloggedinuserid":3,"APIVersion":"1900.1","hostgroupid":"Sophos Central Domains","__newname":"Sophos Central Domains","___serverprotocol":"HTTP","___username":"admin","grouptypename":"FQDN host group","hostgrouptype":"12","___meta":{"sessionType":1},"___serverip":"127.0.0.1","currentlyloggedinuserip":"MY.ADMIN.IP.19"}}}
/log/csc.log:MESSAGE   Sep 21 13:56:23Z  [worker:8704]: {"request":{"method":"opcode","name":"update_fqdn_host_group","version":"1.6","type":"json","length":1387,"data":{ "___serverprotocol": "HTTP", "description": "", "mode": 1153, "___cmrequest": 0, "Entity": "fqdnhostgroup", "___cmenabled": 0, "transactionid": "5244", "___serverport": 4444, "select": [ "HST-EXT-wifi-cloudstation-eu-central-1.prod.hydra.sophos.com", "*.sophosupd.com", "*.sophos.com", "*.sophosupd.net", "*.sophosxl.net", "ocsp.globalsign.com", "ocsp2.globalsign.com", "crl.globalsign.com", "crl.globalsign.net", "ocsp.digicert.com", "crl3.digicert.com", "crl4.digicert.com", "tf-edr-message-upload-eu-west-1-prod-bucket.s3.amazonaws.com", "tf-edr-message-upload-us-east-2-prod-bucket.s3.amazonaws.com", "prod.endpointintel.darkbytes.io", "tf-edr-message-upload-us-west-2-prod-bucket.s3.amazonaws.com", "kinesis.us-west-2.amazonaws.com", "*.prod.hydra.sophos.com", "dzr-mcs-amzn-eu-west-1-9af7.upe.p.hmr.sophos.com", "dzr-mcs-amzn-us-west-2-fa88.upe.p.hmr.sophos.com", "*.cloudfront.net", "*.ctr.sophos.com", "*.cloud.sophos.com" ], "select_cat": "adminname", "ipfamily": "0", "___component": "GUI", "hostgroupid": "Sophos Central Domains", "grouptypename": "FQDN host group", "Event": "UPDATE", "currentlyloggedinuserip": "MY.ADMIN.IP.19", "hostgrouptype": "12", "___username": "admin", "__newname": "Sophos Central Domains", "hostgroupname": "Sophos Central Domains", "___meta": { "sessionType": 1 }, "currentlyloggedinuserid": 3, "___serverip": "127.0.0.1", "APIVersion": "1900.1" }}}
/log/csc.log-MESSAGE   Sep 21 13:56:23Z  [worker:8703]: {"request":{"method":"nopcode","name":"notify_sslvpn_host_hostgroup","version":"1.6","type":"json","length":38,"data":{ "event": "update", "hostid": "640" }}}
/log/csc.log-
/log/csc.log- PAckage ::::object::fqdnhostgroupDEBUG     Sep 21 13:56:23Z  [worker:8705] sync_entity: req: opcode method  0
/log/csc.log-DEBUG     Sep 21 13:56:23Z  [worker:8705] sync_entity: req: opcode name  apiInterface
/log/csc.log-DEBUG     Sep 21 13:56:23Z  [worker:8705] sync_entity: req: opcode cont_length  1203
--
/log/fqdnd.log-ERROR     Sep 21 13:56:09Z [4155961856]: fqdn_ttl_check:FQDN Host : kinesis.us-west-2.amazonaws.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:11Z [4155961856]: fqdn_ttl_check:FQDN Host : tf-edr-message-upload-us-east-2-prod-bucket.s3.amazonaws.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:11Z [4155961856]: fqdn_ttl_check:FQDN Host : tf-edr-message-upload-us-west-2-prod-bucket.s3.amazonaws.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:14Z [4155961856]: fqdn_ttl_check:FQDN Host : fe2.update.microsoft.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:17Z [4155961856]: fqdn_ttl_check:FQDN Host : download.microsoft.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log:ERROR     Sep 21 13:56:17Z [4155961856]: fqdn_ttl_check:FQDN Host : wifi-cloudstation-eu-central-1.prod.hydra.sophos.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:17Z [4155961856]: fqdn_ttl_check:FQDN Host : tf-edr-message-upload-eu-west-1-prod-bucket.s3.amazonaws.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:18Z [4155961856]: fqdn_ttl_check:FQDN Host : 2.tlu.dl.delivery.mp.microsoft.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:23Z [4155961856]: fqdn_ttl_check:FQDN Host : emdl.ws.microsoft.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:24Z [4155961856]: fqdn_ttl_check:FQDN Host : crl.microsoft.com DNS response error,  server=127.0.0.1" return value = -1
/log/fqdnd.log-ERROR     Sep 21 13:56:26Z [4155961856]: fqdn_ttl_check:FQDN Host : www4.bing.com DNS response error,  server=127.0.0.1" return value = -1
--
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: process_insert_query_async: query execution timed-out
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656084661'
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 09 18:04:36Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1660082410'
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1660121291
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 10 08:48:12Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1660168817'
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1660243120
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 11 18:38:41Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: process_insert_query_async: query execution timed-out
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656084661'
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 12 17:25:01Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1660341614'
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1660398242
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 13 13:44:03Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656626733'
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 14 01:19:47Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1660600807'
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1660631739
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 16 06:35:39Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1660687209'
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1660697214
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 17 00:46:55Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Aug 18 14:15:13Z: OPPOSTGRES: process_insert_query_async: query execution timed-out
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656626733'
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 18 14:15:14Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1660946428'
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1660970525
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 20 04:42:09Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1661292006'
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1661318852
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 24 05:27:33Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1661464810'
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1661548609
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 26 21:16:50Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656084661'
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 27 14:51:43Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Aug 28 04:40:06Z: OPPOSTGRES: process_insert_query_async: query execution timed-out
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656084661'
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 28 04:40:07Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1661724018'
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1661765320
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Aug 29 09:28:41Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656084661'
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 30 09:30:10Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656626733'
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Aug 31 08:56:45Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1662069606'
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1662114458
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Sep 02 10:27:39Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1662242417'
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1662310272
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Sep 04 16:51:12Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656626733'
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Sep 08 06:44:34Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1656084661'
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Sep 08 11:59:18Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1662933608'
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1662963946
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Sep 12 06:25:47Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: process_insert_query_result: insert query failed: ERROR:  canceling statement due to user request
/log/garner.log-
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1663172193'
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Sep 15 01:15:17Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: process_insert_query_async: query execution timed-out
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: process_insert_query_async: last query canceled
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_webusgdatav9_1663172193'
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
/log/garner.log-Sep 17 02:08:38Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: msgid, value: 16001
--
/log/garner.log-
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1663452007'
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1663496444
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Sep 18 10:20:47Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1
--
/log/garner.log-
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: do_datainsert: data insert failed for table 'available_web_access_log_detailsv8_1663624807'
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: "5mintime", value: 1663655799
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: username, value:
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_ipaddr_t: column name: hostipv6, value: 192.168.57.100
/log/garner.log:Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: domain, value: wifi-cloudstation-eu-central-1.prod.hydra.sophos.com
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: content, value:
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: category, value: None
/log/garner.log:Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: url, value: https://wifi-cloudstation-eu-central-1.prod.hydra.sophos.com/
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: application, value: HTTPS
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: categorytype, value:
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: usergroup, value:
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_printparam_char_array: column name: eduusergroup, value:
/log/garner.log-Sep 20 06:36:39Z: OPPOSTGRES: pg_setparam_u_int32_t: column name: ruleid, value: 1

+1 LHerzog over 2 years ago in reply to LHerzog
Sophos has published this KB and that it will be fixed in 18.5 MR5 and 19.0 MR2

https://support.sophos.com/support/s/article/KB-000044526?language=en_US&c__displayLanguage=en_US

Turning on IP eviction could be a workaround. Once it is enabled, the re-learning of FQDN/wildcard FQDN will fix the issue.

In order to turn on the IP eviction, follow the steps described here:

From the standard console, check its current status with the following command:
console> show fqdn-host

If currently disabled, enable it with the following command:
console> set fqdn-host eviction enable

eviction [enable] [ disable] [interval] [ 60-86400] Duration in seconds after which IP addresses for subdomains of wildcard FQDNs are evicted. The available range is 60-86400.
Cancel
Vote Up +2 Vote Down

Cancel