Due to the global shortage of APX range, we bought an unused unit from Ebay for us to play around with.
The seller has reassured us the unit was never connected to anything prior, it was simply one too many broadcasters and selling.
We got the unit, connected to our network, where we have other APX units and it never appears in the wireless access point section as pending.
We've checked DHCP and see it gets an IP but from that point onwards, nothing, nothing in the system or firewall logs.
On the APX itself, the unit has a green flashing light for 30 - 60 seconds and then turns solid red.
I've tried reset button for 8s and 20s, same behaviour.
I noticed there is a console port but not tried it
I tried the Sophos Flash Tool but couldnt get that to work, never detects the APX.
We've deployed loads of these, all brand new, no problem but this one being unused just wont play ball.
My question is whether Sophos lock the APX into the customer's cloud or firewall solution at the point of sale and that is why its not working.
Hopefully someone can help
PS - Tried Sophos support and various technicans had no idea what to do or how to help.
tcpdump the AP on XG and see where it connects to.
Does it try to contact 188.8.131.52:2712 and / or 184.108.40.206:2713?
If it does not, it's either bricked or pre-configured.
Is the AP in the correct VLAN and is the Zone of the VLAN allowed in Wireless Controler on XG?
Also monitor the log
you should see something like: 2022-05-10 18:25:15Z [MASTER] new connection from IP
I hope APX cannot be re-imaged as trojan box.
Hi SGICT,Thank you for your query, during operations try referring the following guide for APX 530, like power consumption, LED Status...etchttps://www.sophos.com/en-us/medialibrary/PDFs/documentation/sophos-operating-instructions-apx-320-530-740-oina.pdfAnd on XGS/XG hardware under the packet capture utility, Monitor traffic using Packet Capture Utility : https://support.sophos.com/support/s/article/KB-000035761?language=en_USTry filtering the TCP Port 2712 or host IP: 220.127.116.11 This will definitely help narrow down the situation.Troubleshooting guide: https://support.sophos.com/support/s/article/KB-000036133?language=en_UShttps://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Wireless/HowToArticles/WirelessConfigureWirelessNetwork/index.html#assign-a-wireless-network-to-the-access-pointIf the APX is bricked, you can try flashing it again: https://support.sophos.com/support/s/article/KB-000039314?language=en_USCentral: https://support.sophos.com/support/s/article/KB-000039886?language=en_US
Thanks & Regards,_______________________________________________________________
Vivek Jagad | Technical Account Manager 3 | Cyber Security Evolved
Sophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
Thanks for the responses on this. Sadly I couldnt get anywhere with it, couldnt even detect it with the flash tool. Gave up and returned. Even Sophos Support couldnt help on it I was told by the seller. Oh well.
Hello SGICT, If the appliance is not responding and if it's in the warranty have you proposed your seller or sophos support for a RMA request ?
There might be a way to recover from console port (RJ45).
If you still have the APX, you might post a boot log for further help.