Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 3516 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wireless setup questions

myu_satech

Hello World! New Sophos user here!

Came from a Meraki and Unifi background and found Sophos WiFi/VLAN setup a bit different.

Have a Sophos XGS107W, a Sophos switch and 5 Sophos APX APs.

Got quite a few challenges. Reading documentation now, but would much appreciate if community members can share some insights.

1. SSID created on Sophos Central is pushed to local and works. That's great! But when signing into firewall's local admin interface, I cannot see the SSID deployed from Central

2. All APs show "Inactive" on local firewall admin interface

3. XGS107W's build-in WiFi and the SSID created during firewall setup is not available on Central

4. On Central, cannot assign XGS107w (its built-in AP) to the SSID --- this effectively turns XGS107W to XGS107 (without w).

5. The SSID created during the firewall setup only broadcasts from XGS107W

6. The SSID deployed from Central only broadcasts from APs

Thanks for the help!



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    The APs setup in CM are not available on the XG management GUI. You have a number of AP/Xs I would not use the W function in the XG and would manage them all from CM to ensure consistency across all SSIDs.

    The AP/Xs managed in CM do not appear in the XG daily reports or even show on the XG GUI summary screen which makes debugging difficult if one goes offline.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Oh, that's not what I expected.

    So, APX is not truly cloud managed. It's quite different from merkia or unifi.

    The W function of the firewall is supposed to work as a normal AP for the deployment.

    But why APs show as "Inactive"?

    Learning experience...

  • 0 in reply to myu_satech

    They show as inactive if you have connected them and not enabled them in CM.

    The W function will work as an AP during your setup.

    I will locate a AP setup KBA and update this post.

    My unifi APs are not cloud mangled but managed on my local PI-4.

    Ian

    See if this link helps.

    https://docs.sophos.com/nsg/sophos-firewall/18.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Wireless/HowToArticles/WirelessConfigureWirelessNetwork/

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Thanks. But I already enabled those APs in Central, assigned SSID to those APs, and the assigned SSID works.

  • 0 in reply to myu_satech

    They should not be appearing in the XG107W. There is a fix for some AP issues as part of v20 later this year, in the meantime you could create a support case for the issue to be investigated.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to myu_satech

    In fact you must not enable "Wireless" in your firewall if using Sophos Central Wireless to manage your APX-devices.

    This either /or not BOTH. So the "central managed" APX never "show up" at your firewall management for wireless devices. They are managed in the cloud. In addition, you will have to setup your VLANs manually, if you are using a "mapped to VLAN" setup

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0 in reply to myu_satech

    In fact you must not enable "Wireless" in your firewall if using Sophos Central Wireless to manage your APX-devices.

    This either /or not BOTH. So the "central managed" APX never "show up" at your firewall management for wireless devices. They are managed in the cloud. In addition, you will have to setup your VLANs manually, if you are using a "mapped to VLAN" setup

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Children
Unfiltered HTML