Sophos APX320X keeps restarting, cannot register in Sophos Central

Hello,

my APX320X keep rebooting, after start it is getting IP from DHCP (separate DHCP server controller )

After that I'm able to ping the AP IP for 20 seconds, Led status is blinking red

after that it goes unreachable and this scenario continue, Led status all 3 leds turn on for a few seconds

Tried to reset the AP (Hold 8 sec) and factory reset (20 sec) but same scenario, the AP keeps resetting.

In between AP and UTM, there is switch only, rule allows full internet access.

Product: SG 320 v9.706-9

I have a ticket open more than 1 month, they sent me a second hardware with the same fault.

Now I need the AP, but I have no answer from technical help desk in the last 7 days.

Kind regards

Parents
  • I probably found some error/bug, and a solution.

    The solution is to connect the AP to a home Internet router with no filters to Internet. The AP then registers correcly to Internet.

    In our settings we have Sophos firewall with an allow all rule. Somehow there is something that makes the AP to reset and not register, we should investigate how this strange bug behaves 1) in the AP 2) what is the anomaly on the firewall that bothers the AP.

    In any  case, after the first Sophos Central registration, the Allow all policy on the firewall allows the Sophos APX320X to work normally.

    Regards

Reply
  • I probably found some error/bug, and a solution.

    The solution is to connect the AP to a home Internet router with no filters to Internet. The AP then registers correcly to Internet.

    In our settings we have Sophos firewall with an allow all rule. Somehow there is something that makes the AP to reset and not register, we should investigate how this strange bug behaves 1) in the AP 2) what is the anomaly on the firewall that bothers the AP.

    In any  case, after the first Sophos Central registration, the Allow all policy on the firewall allows the Sophos APX320X to work normally.

    Regards

Children
  • Just a FYI, I have seen this before (long time reseller / var) -- if the UTM has Wireless Protection enabled, it can cause this by intercepting the provisioning traffic of the AP.  If Wireless Protection is enabled, give that a look.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.