Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 5462 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XGS4500 (SFOS 20.0.2 MR-2-Build378) after Firmware update from 20GA to MR2 stays dead

Speedfish

Hello Sophos Community,

we just updated two XGS4500 (in HA) to 20 MR2 and now the SSLVPN stays dead:

After checking the admin interfance I logged into the shell:

I used the command: service sslvpn:restart -ds nosync

503 Service Failed


We don't use SSLVPN (for now) but still we would like to know what we can do to get this service up again and running.

Thanks for your help



This thread was automatically locked due to age.
Parents
  • 0

    Hello,

    Thank you for contacting Sophos Community.

    Could you please share us the sslvpn.log while starting the service?

    You can collect using below:

    tail -f /log/sslvpn.log

    Mayur Makvana
    Technical Account Manager | Global Customer Experience
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Mayur Makvana

    2024-08-10 10:07:59Z [19479] TCPv6_SERVER link remote: [AF_UNSPEC]
    2024-08-10 10:07:59Z [19479] MULTI: multi_init called, r=256 v=256
    2024-08-10 10:07:59Z [19479] IPv4 pool size is too small (1), must be at least 2
    2024-08-10 10:07:59Z [19479] Exiting due to fatal error
    2024-08-10 10:07:59Z [19479] Closing TUN/TAP interface
    2024-08-10 10:07:59Z [19479] /sbin/ip addr del dev tun6 10.242.2.249/30

    So I assume its due to an inactive sslvpn configuration right?
    If I delete it or disable the service then it should fine I guess

Reply
  • 0 in reply to Mayur Makvana

    2024-08-10 10:07:59Z [19479] TCPv6_SERVER link remote: [AF_UNSPEC]
    2024-08-10 10:07:59Z [19479] MULTI: multi_init called, r=256 v=256
    2024-08-10 10:07:59Z [19479] IPv4 pool size is too small (1), must be at least 2
    2024-08-10 10:07:59Z [19479] Exiting due to fatal error
    2024-08-10 10:07:59Z [19479] Closing TUN/TAP interface
    2024-08-10 10:07:59Z [19479] /sbin/ip addr del dev tun6 10.242.2.249/30

    So I assume its due to an inactive sslvpn configuration right?
    If I delete it or disable the service then it should fine I guess

Children
Unfiltered HTML