Crashplan - Unable to connect

I was able to get Crashplan 4.8.2 Home working on Server 2012 R2 Foundation and Server 2012 R2 Essentials and Server 2012 R2 Standard using an XG 125, and an XG 105 converted from an SG 105.

The XG 105 is unlicensed at the time of this resolution so it works with or without a license.

If you create a firewall rule which allows connections to the FQDN Hosts and also disable the Application_Classification it should work.

Protect -> Applications -> Application Filter -> Add
Name: CrashPlan Micro App Bypass -> Save
Edit CrashPlan Micro App Bypass -> Add
Select all Application Filter Criteria
Select Individual Application
Search “Crash Plan”
Select Crash Plan and Select Allow and select All the Time and select Save

Protect -> Firewall -> New User/Network Rule
Name: CrashPlan_App
Source: LAN
Source Network: specific LAN Internal Address that wants to contact Crash Plan
Destination Zone: WAN Services: HTTPS
Destination: CrashPlanFQDNGroup
FQDN Host Group: CrashPlanFQDNGroup
Select Host:
1. arp.msp.crashplan.com
2. central.crashplan.com
3. adf-sea.crashplan.com
4. cyb-sea.crashplan.com
5. epe-sea.crashplan.com
Match Known Users: False
Rewrite Source Address (Masquerading)
Use Outbound Address: MASQ
Application Control: CrashPlan Micro App Bypass
NOTE: This rule is not required to run Crashplan – just to sign in – may be required after a server restart or application restart – not tested.

Hi everyone

There was a recent finding for the issue, a fix is being worked on I'm sure.

Access your XG Console through the admin drop down top right of your device
Press Enter on the SSH pop up
Enter admin password
Press 4 for System Console
Type in
System application_classification microapp-discovery show

If this says ON

Then
System application_classification microapp-discovery off

Then enter the above 5 FQDN hosts + a new one CrashPlan.com

You can disable the Application rule in the firewall rule if you turn Microapp discovery off in the console

Protect -> Firewall -> New User/Network Rule
Name: CrashPlan_App
Source: LAN
Source Network: specific LAN Internal Address that wants to contact Crash Plan
Destination Zone: WAN Services: HTTPS
Destination: CrashPlanFQDNGroup
FQDN Host Group: CrashPlanFQDNGroup
Select Host:
1. arp.msp.crashplan.com
2. central.crashplan.com
3. adf-sea.crashplan.com
4. cyb-sea.crashplan.com
5. epe-sea.crashplan.com
6. Crashplan.com
Match Known Users: False
Rewrite Source Address (Masquerading)
Use Outbound Address: MASQ
Application Control: None

Hi everyone

There was a recent finding for the issue, a fix is being worked on I'm sure.

Access your XG Console through the admin drop down top right of your device
Press Enter on the SSH pop up
Enter admin password
Press 4 for System Console
Type in
System application_classification microapp-discovery show

If this says ON

Then
System application_classification microapp-discovery off

Then enter the above 5 FQDN hosts + a new one CrashPlan.com

You can disable the Application rule in the firewall rule if you turn Microapp discovery off in the console

Protect -> Firewall -> New User/Network Rule
Name: CrashPlan_App
Source: LAN
Source Network: specific LAN Internal Address that wants to contact Crash Plan
Destination Zone: WAN Services: HTTPS
Destination: CrashPlanFQDNGroup
FQDN Host Group: CrashPlanFQDNGroup
Select Host:
1. arp.msp.crashplan.com
2. central.crashplan.com
3. adf-sea.crashplan.com
4. cyb-sea.crashplan.com
5. epe-sea.crashplan.com
6. Crashplan.com
Match Known Users: False
Rewrite Source Address (Masquerading)
Use Outbound Address: MASQ
Application Control: None