Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Firewall: v19.5 GA: Feedback and experiences

Release Post:  Sophos Firewall v19.5 is Now Available 

Old v19.0 MR1 thread:  Sophos Firewall: v19.0 MR1: Feedback and experiences 

EAP Sub thread:  SFOS v19.5 Early Access Program (Read Only) 

EAP 19.5 Thread:  Sophos Firewall: v19.5 EAP1: Feedback and experiences 



This thread was automatically locked due to age.
Parents
  • Hi,

    Our Sophos Upgrade experience was terrible.

    We Upgrade a Sophos XG 125 to SFOS 19.5.0 GA-Build197 from SFOS 19.0.1 MR-1-Build365 and we lost access to the firewall and internet. We were forced to go onsite to recover.

    SFOS 19.5.0 broke all network interfaces configuration and Wireless

    No Internet access
    No VPN
    None of the WAN ports were working
    Made all Access points permanently inactive

    We had to revert to SFOS 19.0.1 MR-1-Build365, restore configuration from a backup and reconfigure Wireless Access points from scratch.

    Bad work from the Dev team.

    Very disappointed.

  • Hi Bill,

    It's unfortunate that you faced this problem. 

    Can you provide more info around it?

    a. After upgrade to v19.5 appliance come up in factory reset config? or you lost specific configuration only as mentioned above?

    b. After rollback to original firmware "SFOS 19.0.1 MR-1-Build365", it should have all configuration as is. why you had to perform backup restore.

    c. If you have opened a support case, can you provide case ID?

    d. In case not can you provide support access id. I will DM you for that.

  • Hi,

    a. It seems that 19.5 change some configuration, only ports 1 & 2 were active but not configured correctly. The 2 other wan ports were completely disabled (even the status LEDs were off)

    b. After rollback to 19.0.1 the XG 125 was very slow, and Wireless was not working so we restore a recent backup. Wireless didn’t work so we delete the access points and added and configure again.

    c. No time to do any of that.

    d. OK but please don't break anything.

    Sorry I don’t have more information. We had to recover our customer’s internet access asap.

  • Thanks for the update. 

    We will not make any changes in your setup, if needed you can raise support case and we can continue the investigation. 

    like looking at available logs or later using your backup of 19MR1 and upgrade 19.5 etc.

  • Hi Bill, 

    Would you be able to enable support access, so Engineering can take a look at your device to find out what happened with the upgrade? 

    Please PM me the support access ID if you can.

    Thanks! 

  • Hi Bill,

    Issue is due to missing of one DB entry. As you've restored a backup on v19.0.1, that entry is available. 

    Can you please upgrade firmware again, it should work as that entry available?

Reply Children
  • Hi, We can't risk another downtime.

    We'll upgrade only when you are certain that the problem is fixed.

    What DB entry was missing and why?

  • Hi Bill,

    There is one parent table entry is missed which referred in one of the child table which cause this issue.

    As you've restore backup in v19.0.1, all your entries gets corrected, hence we are not able to find root cause for this.

    But I am sure now you'll not face this issue again in upgradation, at-least this same issue.

    If you still have concern then you can raise support case.