Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

HA Configuration Correct port must be monitored LAN port 1

Whenever my LAN port switch restart my both the HA firewall restart why it  happen 

Added TAGs
[edited by: emmosophos at 10:02 PM (GMT -7) on 5 Apr 2024]
  • Hi Dev,

    You can find the HA log files in the /log directory through the advanced shell. To access log files through SSH, do as follows:

    1. Log in to the CLI console of the primary device using administrator credentials.
    2. Select option 5. Device Management.
    3. Select option 3. Advanced Shell.
    4. Type: cd /log
    5. Press Enter.
    6. To show the list of logs, type: ls
    7. To view a log, type: cat LOGFILENAME

    The below table describes the four relevant log files for HA.

    Log file Description
    msync.log HA synchronization service.
    ctsyncd.log Conntrack synchronization service.
    applog.log HA configuration and status updates.
    csc.log Central service, which manages all services.


    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • I initially understood the problem differently too...
    If a monitored interface goes “down”, the firewall goes into “FAILED” status and stops processing traffic.
    Unfortunately, this also happens at the same time with the slave if both (master and slave) have a "monitored link down".
    ...unlike the SG firewall which keeps the last "working" node active


    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Reply Children
No Data