Hello together,
today I tried to add new APs to a freshly migrated firewall.
Unfortunately, the new Access Points do not show up under pending Access Points.
Firstly, I thought that the SD-WAN-routes did not allow the APs to come online since the firewall also appeared offline in Sophos Central.
After disabling the SD-WAN-routes the firewall appears online again, but the Access Points still don't seem to reach the internet for the initial registration.
Also adding a temporary Any-rule to the firewall and a SNAT-rule to allow all traffic from the APs to the internet didn't help me here.
I also tried installing the newest pattern updates, but the access points still remain undetected.
A DHCP-server is running on the firewall and the APs receive an IP-configuration where the firewall is the default gateway.
Also the appropriate zones (LAN and WIFI) are added to the wireless protection.
The device access is configured to allow Wireless Protection in LAN and WIFI.
The log viewer shows that the APs can now reach the internet without a problem, but the IP 1.2.3.4 over port 2712 TCP is not allowed (Cound not associate packet to any connection). Yet, the temporary firewall rule allows all LAN traffic to any zones over any services.
Note: The APs have the IPs 192.168.192.100 and .101
I hope, you can help me with this issue.
Thanks in advance.
Best regards,
Luis
Added TAGs
[edited by: emmosophos at 6:28 PM (GMT -7) on 8 Apr 2024]
