Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 15 replies
  • Answers 2 answers
  • Subscribers 45 subscribers
  • Views 12426 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Does Sophos XG 19 Home Edition support Intel i225v 2.5G chipset now?

ken Mills

HI there,

I seem to be finding competing information about this online.

I am looking to purchase hardware for a new router, using Sophos XG 19 Home Edition.

I'm looking at a device with 4 2.5Gg ports.  It has an Intel Celeron J4125 2,0 GHz-2,70 GHz CPU, 8GB RAM, 128 mSATA SSD, and most importantly 4 x Intel i225v network ports.

Is the i225v 2.5G chipset now supported in XG 19 Home Edition?

If not, what 2.5G chipset is supported? 

Thanks in advance for your time and advice!

Ken



This thread was automatically locked due to age.
  • 0 in reply to rfcat_vk

    All consumer grade nics that have kernel modules will work as I have stated before. Even Realtek ones. Reason these 2.5G nics are not supported is that kernel is several versions old and it just does not have necessary modules. Why are you giving out such false information to forums users?

  • 0 in reply to Rieski

    It is not false it is the previously stated Sophos position when asked to update the drivers to use these device. Your are correct infact some Realtek devices are supported and yes, last time I check the UTM does support these devices and others and has for many years.

    Ian

    Please review this KBA.

    https://community.sophos.com/sophos-xg-firewall/f/recommended-reads/137737/sophos-firewall-home://community.sophos.com/sophos-xg-firewall/f/recommended-reads/137737/sophos-firewall-home

    The current XG kernel is v4.14-277 from 2015, I am not sure about the UTM kernel, but it appears to be older.

    XG115W - v20.0.3 MR-3 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Sophos does support the many fanless PCs that were marketed towards home/business users such as the Qotom mini PCs with the Intel 211 chipsets. Then Sophos decided to stop supporting the newer NICs, citing that they are for "home use" which doesn't make sense since the firewall is free for....home users?

    All that is required is for Sophos to release a firmware update with a newer Linux kernel and then the newer NICs will be supported by virtue of the driver being contained in the kernel. I'm sure there is nothing "special" that Sophos has to do to support the newer NICs.

    Sophos is still using the older Linux kernel 4.12 (on the UTM) and all they would have to do is release a firmware with a newer Linux firmware. Linux is currently on the 5.12 kernel, so yeah, the linux kernel in Sophos firewalls is ridiculously outdated in comparison. Makes you wonder how much longer that can drag this out....

    The only way around this limitation is to virtualize the XG in  KVM, ESXi, Proxmox, etc. which is another point of failure and vulnerability/ attack vector.

    My theory is that since Sophos heavily invests in their own hardware obviously they don't want a $400 firewall device you can buy online to work with XG and outperform a $2,000 Sophos XGS device. It's just marketing decisions, really. But it's Sophos' choice whether to release a newer kernel or not. It just affects the home users really.

  • 0

    I have the same problem. After a weekend of testing and many failed attempts, I came to the conclusion that the problem was the lack of a driver for the chipset. In my case, in addition to not finding the network interfaces, I also have problems with the video, right after GRUB the screen freezes, however, it is possible to send keyboard commands normally. From what I could see, there are other people on the forum with the same problem and as these low-cost appliances are becoming popular and Sophos' proposal to maintain a firewall for home users, I hope that an update will be released soon that includes this chipset. At the moment, I'm installing proxmox to perform the configuration, but this is really not the solution I expected when I purchased the equipment.


    My equipament - https://pt.aliexpress.com/item/1005004302428997.html?spm=a2g0o.order_list.order_list_main.5.6791caa45FTb86&gatewayAdapt=glo2bra (N5105 8gb, 256M2)

  • 0

    For those wondering about network adapter support in Sophos Firewall, take a look at the Linux Kernel Driver Database (LKDDb). As of version 19.5 build 197 Sophos Firewall is running kernel 4.14.277 according to uname -a on the advanced shell. Browsing the CONFIG_NET_VENDOR_* tree on LKDDb will show when a particular network adapter first received kernel support. All you have to do is go to the specific vendor (e.g. CONFIG_NET_VENDOR_INTEL), note the device ID and then hit ctrl-f and search for it on the page.

    For Intel's i225 adapters (I225-LM, I225-V) support started with kernel 4.20.

    For another common 2.5 GbE adapter, Realtek's RTL8125, support started with kernel 5.3.

    So the two most common integrated 2.5 GbE adapters are out until Sophos Firewall gets a kernel upgrade. Here's hoping that version 20 gets a nice bump and a corresponding expansion in network adapter support.

Unfiltered HTML