Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 41 subscribers
  • Views 29816 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Hardware Limitations?

TXGARobert

Is there a limit to the size of the hard drive I can install the XP Firewall on?  I am using an older Dell Dimension 92xx series tower with a 2T drive in it.  The drive shows correctly in the BIOS.

The installer starts throwing " out of range " errors almost immediately upon booting from the install CD.

I tried a 1T drive and it appeared to work, but it sat there at 10% and proceeded to fill my screen up with ..... for almost an hour.  Ended up with a screen full of ... and no idea what percent it made it to.

 So, I dug up an old 160GB drive and tried that.  I was finally able to get this one to install to completion. 

The drives I tried ( 2T, 1T ) first are known good.

Is this a limitation of the software?  The machine seems capable enough.  It least it has been running my UTM9 ( and still is, BTW ) with no problems for the past several years.



This thread was automatically locked due to age.
Parents
  • 0

    TXGARobert said:

    Is there a limit to the size of the hard drive I can install the XP Firewall on?  I am using an older Dell Dimension 92xx series tower with a 2T drive in it.  The drive shows correctly in the BIOS.

    The installer starts throwing " out of range " errors almost immediately upon booting from the install CD.

    Not sure there is a limitation on Hard Drive size but I am going out on a limb here that the Cyberoam products do not actually have hard drives built in, not that I can see anyway. They have enough flash storage that they can install and run dual firmwares. Having a hard drive included is technically "new" to this system so there may be limitations that Sophos have partially gotten around. This would definitely need an answer from a Sophos Staff member.

    TXGARobert said:

    I tried a 1T drive and it appeared to work, but it sat there at 10% and proceeded to fill my screen up with ..... for almost an hour.  Ended up with a screen full of ... and no idea what percent it made it to.

     So, I dug up an old 160GB drive and tried that.  I was finally able to get this one to install to completion. 

    It seems that the harddrive is configured with a massive Swap space and it does a full format of the space it uses and that's why it takes so long. The larger the drive, the longer the format. It's like right-clicking a USB stick and formatting it but de-selecting "Quick Format". It took half an hour to format my 500GB but I'm getting a different error once i'm installed on mine.

  • 0 in reply to Emile Belcourt
    At this point it doesn't really matter very much. The large size was just so I could keep a reasonable amount of the logs on the same device. IF I were to have installed this on the server at work, it would be on a Dell PE-R610 with a 500G raid. Was just wondering if it's is going to scan the disks every time it is restarted. Or if it would even work.

    For now, it's not even an option though since the new XG software will not import my current configuration. I have always ran a system at home so I could familiarize myself with the software we use at work, but so far frustration is all I am getting out of this new box.

    I read somewhere that there will be a UTM9.4 released in early 2016. One can only hope that they don't just kill it / render it inoperable after that.
Reply
  • 0 in reply to Emile Belcourt
    At this point it doesn't really matter very much. The large size was just so I could keep a reasonable amount of the logs on the same device. IF I were to have installed this on the server at work, it would be on a Dell PE-R610 with a 500G raid. Was just wondering if it's is going to scan the disks every time it is restarted. Or if it would even work.

    For now, it's not even an option though since the new XG software will not import my current configuration. I have always ran a system at home so I could familiarize myself with the software we use at work, but so far frustration is all I am getting out of this new box.

    I read somewhere that there will be a UTM9.4 released in early 2016. One can only hope that they don't just kill it / render it inoperable after that.
Children
  • 0 in reply to TXGARobert@Home

    I'm going to feel really bad about saying this: Logs on the XG Firewall right now are not written to disk...at all. They are kept in a RAM pool on a First In First Out basis wherein the oldest log is deleted when it's full. It is as follows:

    The logs are stored in a first in first out (FIFO) cache, with up to 1,100 logs per module being stored. When the cache for a module reaches this limit, the first 100 logs are deleted. The cache is also cleared when the firewall is rebooted.

    This is being looked at and wasn't noticed till too late. UTM is going to have "minor-major" releases periodically with 9.4 coming soon which won't be a major feature rich release but heard it maybe mainly for migration to XG prep. Development is still ongoing, thankfully.

  • 0 in reply to Emile Belcourt
    I do not understand how such a thing could happen. But it did, and maybe it will be fixed.

    In my environment ( K-12 ) we are expected to be able to reference a log file to show what "Little Johnny" was doing last month.

    I haven't gotten very far into checking the software, does it allow for the offloading of the logs to another device? And the 1,100 logs, do you mean 1,100 log entries? That's about 2 minutes worth of traffic here at school. Watching the HTTP Proxy live log on the UTM was just constant scrolling text.

    My UTM9 system has been FTPing the logs to a backup server nightly since, well, forever.
  • 0 in reply to TXGARobert@Home

    So to get around this problem, you have to use Sophos iView (which is free to use up to 100GB worth of logs then paid for after that on a perpetual license up to unlimited) which does write to disk and can be used for consolidation of logging.

    I hope it's pretty high on the look at list because that is a huge drop in capabilities for the Sophos UTM/FW series.

    So it's 1,100 log entries per module. So 1,100 firewall logs, 1,100 administration logs, 1,100 authentication logs and so on and so forth.

    If you are based in the UK and have to comply with the prevent legislation, you have to utilise Sophos iView until logging on the XG itself is capable of storing to disk.

  • 0 in reply to Emile Belcourt
    At this point our UTM 9.3x if working fine and I have seen nothing with the new system that would encourage me to make the switch. I think that switch will only occur when/if the UTM 9 reaches EOL sometime down the road, and even then only if it becomes a security liability.
  • 0 in reply to TXGARobert@Home
    All signs show that UTM 9 is going to be supported for a long time so you won't have to worry about a migration just yet :)
Unfiltered HTML