• HA failing after Sophos upgrade to V.20

    eFrancis
    eFrancis
    After firmware upgrade from v.19 to v.20, HA failed to work and currently we are running on one FW.
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • HA Configuration Correct port must be monitored LAN port 1

    DevK
    DevK
    Whenever my LAN port switch restart my both the HA firewall restart why it happen
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Can we configure PPPOE Internet connection on active passive HA firewall

    DevK
    DevK
    According to this article we can configure PPPOE on active passive but it is not working docs.sophos.com/.../index.html
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Firewall HA, Active -Active Setup

    Bhanu Prakash
    Bhanu Prakash
    A firewall is configured in HA, Active-Active mode, can it cater double the size of users it is designed for? Ex. XGS3100 (2nos) configured in HA, Active-Active load balancing mode. Can it Cater 1000 concurrent users?
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • How simulate crashes on HA to validate?

    servbot
    servbot
    Hi Folks I've noticed several similar issues with HA Sophos Firewall on some end customers. We use Active-Passive HA. When primary firewall crashes for some unknown reason (I'll check more information to understand at community.sophos.com/.../finding…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Missing Firewalls on Central + Stopped Services

    Nanoman
    Nanoman
    Hi! tonight the HA-Cluster disconnected from Central (not together: the AUX 1h later) and on the Firewall the following services are shown as "stopped": - fwcm-updaterd - fwcm-heartbeatd - fwcm-eventd - fwcm-api-execut By the way, only one of the two…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Forgotten Admin Password of auxilliary device (devices on HA)

    Sofos network
    Sofos network
    Hi all, xg330 on HA I had my HA mounted almost a year ago and I remember well that I wrote down the admin passwords for the primary and secondary device for my HA pair. Today, I just wanted to access the secondary to check a few points, but I discovered…
    • Answered
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • HA interactive: "Peer administration IP" and "Interface IP address" must be in the same network

    LHerzog
    LHerzog
    I try to setup interactive HA on XGS 126 SFOS v20 I used to setup devices this way, now I must use the same IP range for HA and management? The HA Link should be /30 network with only the HA IP - why must the management IP be in the HA network? …
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • VM with HA goes to failsafe mode on Synology Rackstation but works on HP Proliant with Unraid.

    Tanny
    Tanny
    I am trying to get HA up between two Sophos Firewall VM's. Both VMs are run using QEMU on the servers. The first VM is running on a HP Proliant Gen8 with Unraid . (I have been running a Sophos Firewall on this machine for several years) The second…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS 2100 cluster reboots itself

    EdgeFour
    EdgeFour
    Hello, in the last weeks our XGS2100 Firewall cluster rebooted itself a few times - and there's no real pattern. Without warning I receive this email: Dear Administrator, You are receiving this auto-generated message from Sophos Notification System…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • HA-Konfiguration mit eigener Zone

    Jonas Stadler
    Jonas Stadler
    Hallo Zusammen, ich habe vor kurzem bemerkt, dass die DMZ-Zone für das HA "SSH" aktiviert hat. Das Problem ist jedoch, dass diese Zone auch für "echte" DMZ´s in Verwendung ist. Gibt es eine Möglichkeit, das HA mit einer manuell erstellten Zone neu…
    • 10 months ago
    • Sophos Firewall
    • German Forum
  • Sophos XGS SSH into Slave Node

    Luis Prunn
    Luis Prunn
    Hello together, I was wondering whether it is still possible to ssh into the slave node of a Sophos XGS cluster in active-passive?
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • SD-WAN Connection Group and High Availability failover

    JakeSophos
    JakeSophos
    Hello, I am looking to confirm if the below is feasible. We have a HO and BO. The BO hosts a number of production servers and so there is an SD-WAN Connection Group that connects the two firewalls and allows certain services to certain VLAN networks…
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG Firewall in HA - How many computer accounts should you see in Active Directory

    Marcel Micallef
    Marcel Micallef
    Hi All, We have 2 Sophos XG Firewalls setup in HA and using NTLM / Kerberos authentication. We notice that in Active directory there is only one firewall computer account showing and was wondering if that is ok or if there should be 2 accounts …
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Can't access auxiliary firewall web admin via SSH tunnel

    Richard Westebbe
    Richard Westebbe
    Hi, I tried to access the auxiliary devices of several our customers via an ssh tunnel using "ssh -D 7777 admin@firewall.customer.xyz" and than using localhost:7777 as socks proxy in Firefox. There I use the peer administration IP on port 4444 to access…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Logs to analyze syncronization configuration in HA mode

    Ramiro Alba Alba Filho
    Ramiro Alba Alba Filho
    I need to know which of these files ( ctsyncd.log, applog.log, msync.log ) or another log shows me the communication between Sophos A and Sophos B (Active and Passive Ha Mode) about changes from active to passive firewall. How do I identify this in the…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Dedicated Management Port (not MGMT) + Peer Administration link

    Christian_
    Christian_
    Hi there, we are just implementing a management vlan in our network. Therefore I added the mgmt-vlan on one of our 2 main-connections to the coreswitch. Management of switches and servers is working properly. Last step would be to manage our XGS active…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • SSD Update HA cluster Procedure

    Nanoman
    Nanoman
    Hello everyone, I need to upgrade the SSDs in a customer's HA cluster, and it is not clear to me how to proceed. From the guide: "High availability In an HA cluster, you must upgrade the SSD firmware on each appliance individually as follows:…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • XGS HA Slave neu starten

    achwes
    achwes
    Wie kann ich in einem HA die Slave-Firewall neu starten? Danke
    • 11 months ago
    • Sophos Firewall
    • German Forum
  • XGS SSD Firmware - others also having issues HA nodes not coming up?

    LHerzog
    LHerzog
    I started the SSD firmware update KB-000045380 on XGS136 HA A/P Cluster. First I applied the update to the AUX node 2. It was successful and the machine re-entered the cluster and A/P cluster was all green in the end. I switched the PRI HA node from…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • HA pairing issues

    Jimmy10
    Jimmy10
    Hi, I have a SFV4C6 (SFOS 19.5.3 MR-3-Build652) running standalone as a VM, and I need to HA pair it. I am unable to find an SFV4C6 image to use, does this mean I am unable to HA this existing appliance?
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Peer administration on other port then MGMT

    FloRa
    FloRa
    We have XGS4500 active-passive cluster and i stubled across a pretty annoying issue. In the past (with XG450 and others) we always set the peer administration address to something that allowed us no monitor the auxilary device via our monitoring solution…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 136 in HA mode - backup internet line shows status Red. But its there.

    shiron brimin
    shiron brimin
    Mostly the title, but I have Sophos XG 136’s in HA mode. Have a backup internet line, on port 3 (main WAN is port 2). The status red/green icon shows red. But if I go into diagnostics, I can ping out on port 3. I can also confirm from outside of the network…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS v20 Home in HA connecting to Sophos Central only primary FW registered

    apijnappels
    apijnappels
    Hi all, my setup at home is the following. I have a proxmox host on which I have created an active/passive HA installation of SFOS v20. HA is connected and all green. When I try to register this installation to Sophos central, only the active peer is…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Problem mit Auxiliary nach Failover

    Arne Göttner
    Arne Göttner
    Hallo zusammen, frohes Neues Euch. Ich bin in dem Bereich Sophos noch neu und komme von pfSense. Ich habe mir die Sophos OVA heruntergeladen und in der VMWare importiert und soweit alles eingerichtet. Nach dem dann alle Regeln übernommen wurden, hab…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • German Forum
<>