my APX320X keep rebooting, after start it is getting IP from DHCP (separate DHCP server controller ) After that I'm able to ping the AP IP for 20 seconds, Led status is blinking red
after that it goes unreachable and this scenario continue, Led status all 3 leds turn on for a few seconds
Tried to reset the AP (Hold 8 sec) and factory reset (20 sec) but same scenario, the AP keeps resetting.
In between AP and UTM, there is switch only, rule allows full internet access.
Product: SG 320 v9.706-9
I have a ticket open more than 1 month, they sent me a second hardware with the same fault.
Now I need the AP, but I have no answer from technical help desk in the last 7 days.
Hey Gioceroni, Welcome to Sophos Community.
Did you try taking a tcpdump on the UTM for the access point's IP address to see whether AP initiates any requests to internet before it goes down? Please share the support case ID via PM and I'll Follow-up further internally.
Yes we had a TCPdump done as you will see in the support Case 04188787
We captured traffic for the time the AP was online, then it restarted.
Hey Gioceroni, Apologies for the delay caused in this case.I have notified the concerned team to update you on this case and take things further. Please feel free to drop me a PM for any queries related to this case.
Thank you DeveshM!
I hope they will soon solve the problem.I will keep you updated.
I probably found some error/bug, and a solution.
The solution is to connect the AP to a home Internet router with no filters to Internet. The AP then registers correcly to Internet.
In our settings we have Sophos firewall with an allow all rule. Somehow there is something that makes the AP to reset and not register, we should investigate how this strange bug behaves 1) in the AP 2) what is the anomaly on the firewall that bothers the AP.
In any case, after the first Sophos Central registration, the Allow all policy on the firewall allows the Sophos APX320X to work normally.
Just a FYI, I have seen this before (long time reseller / var) -- if the UTM has Wireless Protection enabled, it can cause this by intercepting the provisioning traffic of the AP. If Wireless Protection is enabled, give that a look.
CTO, Convergent Information Security Solutions, LLC
Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
The access point connects to the IP address 126.96.36.199 on port 2712. Traffic is sent to the default gateway of the access point. If there is no response from the Sophos Firewall, the access point reboots, and the process starts over again.
Hi,Please take a packet capture on the firewall (tcpdump -nei any host 188.8.131.52) and see if the packets reach the firewall or not. You can also take a drop-packet-capture (drppkt host 184.108.40.206) and check if firewall dropped any packets or not.Also, Is this AP connected directly (or via a switch) to the Firewall? or is there any L3 device in between?
APX 320X is currently supported only through Sophos Central. There is a known issue if there is a Sophos firewall between the access point and Central with wireless functionality enabled. This is documented here:https://support.sophos.com/support/s/article/KB-000039886?language=en_US
Do let me know if this helps.