Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 15 replies
  • Answers 2 answers
  • Subscribers 41 subscribers
  • Views 27004 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Adding AP-100 to XG firewall

adhodgson

Hi,

I have an AP-100 unit which I want to add to the XG firewall after doing the initial setup.  I had to reset to factory defaults as I didn't complete one of the options in the setup wizard, and subsequently had no outbound rules on the firewall.

Anyway, I can see the AP registering in DHCP, and the wireless log has a lot of entries in it regarding not allowing the AP to connect until it is approved.  I can see the AP in the wireless AP groups, but can't select it there.

When I go to the Access Points option to approve it, the table of unapproved devices just had a piece of text underneath the table headings suggesting that entries are loading, but nothing ever happens.

Anyone seen this before?  Looks like I can't go back to UTM at this stage because the firmware of the AP has updated, so I want to try and get this sorted on XG if I can.

Thanks,

Andrew.



This thread was automatically locked due to age.
  • 0

    Andrew,

    can you share some screenshot?

    Thanks

  • 0 in reply to adhodgson

    I also get lots of these in the log:


    2016-03-21 19:01:47

    Wireless Protection

    -

    -

    [A400254501E30BC] device not authorized yet, dropping.

    18002

     

    Thanks for the offer of help, I have a support case opened with Sophos.  I couldn't rever this AP back to the UTM either, so something has gone wrong somewhere.  Internet access is now working through the device on the wired connection.

    Andrew.

  • 0 in reply to adhodgson

    Andrew,

    if the AP does not work even on UTM, you have to reset the AP using the Sophos Utility. Anyway the support will follow you and help to find out where is the problem. [;)]

  • 0 in reply to lferrara

    Hi,

     

    I contacted Sophos about this, but was slightly disappointed that we didn't seem to be getting anywhere after a couple of days, this with me having to open up SSH to the world (I thought there was a remote tunnel they used).  I was worried that the AP was bricked in some way, and that I would need to get a replacement, and wanted to get that sorted fairly quickly.  In the end the AP wasn't bricked, I had to roll back to UTM9 and everything worked.  Here is what I tried:

     

    - I reinstalled the system from scratch. When the system initially comes up, before downloading the firmware updates as part of the pattern download, if I plug the AP100 into the system it detects it as an AP100 and it says it is not supported. If I go to the access point screen, I can see it saying there are no unregistered access points which looks normal.

     

    - Att the point when the firmware downloads from Sophos, and the access point is found, the pending access point screen goes back to the loading screen again, and never displays any access points.

     

    - I then tried doing another install, but not connecting the access point until the pattern download completes. Again it is a similar story, with the access point screen showing normally after the pattern download completes, until I plug in my AP100, at which point the loading screen appears again.

     

    Does anyone else here use an AP100?  I don't see why it shouldn't work, but at the moment it was driving me crazy, and after several days of having to use an alternative solution I had to revert back.

     

    I am still happy to move to this product and willing to try some other stuff out, just need to have a working system for a week or so as I have other projects that I needed to complete.

     

    Thanks.

    Andrew.

     

  • 0 in reply to adhodgson

    Andrew,

    did you try to flash the AP?

  • 0 in reply to lferrara

    Luk, there is still no flash utility available for new generation AP devices (15, 55, 100).

  • 0 in reply to vilic

    Thank you Vilic.

    I was quite sure the tool worked even for new AP generation.[:S]

  • 0 in reply to lferrara

    Hi,

    I had a confirmation from Sophos today that there is a bug in the software causing this behaviour.  It is apparently being targeted in the next release.  Luckily I was able to revert back to the UTM, I had to delete the AP and re-register it again, and do a couple of reboots, but we got it back without any reflashing.

    Also, the tool for reflashing on the Sophos site doesn't work with the AP100 at least.

    Thanks,

    Andrew.

Unfiltered HTML