• VM with HA goes to failsafe mode on Synology Rackstation but works on HP Proliant with Unraid.

    Tanny
    Tanny
    I am trying to get HA up between two Sophos Firewall VM's. Both VMs are run using QEMU on the servers. The first VM is running on a HP Proliant Gen8 with Unraid . (I have been running a Sophos Firewall on this machine for several years) The second…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS 2100 cluster reboots itself

    EdgeFour
    EdgeFour
    Hello, in the last weeks our XGS2100 Firewall cluster rebooted itself a few times - and there's no real pattern. Without warning I receive this email: Dear Administrator, You are receiving this auto-generated message from Sophos Notification System…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS SSH into Slave Node

    Luis Prunn
    Luis Prunn
    Hello together, I was wondering whether it is still possible to ssh into the slave node of a Sophos XGS cluster in active-passive?
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • SD-WAN Connection Group and High Availability failover

    JakeSophos
    JakeSophos
    Hello, I am looking to confirm if the below is feasible. We have a HO and BO. The BO hosts a number of production servers and so there is an SD-WAN Connection Group that connects the two firewalls and allows certain services to certain VLAN networks…
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG Firewall in HA - How many computer accounts should you see in Active Directory

    Marcel Micallef
    Marcel Micallef
    Hi All, We have 2 Sophos XG Firewalls setup in HA and using NTLM / Kerberos authentication. We notice that in Active directory there is only one firewall computer account showing and was wondering if that is ok or if there should be 2 accounts …
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Can't access auxiliary firewall web admin via SSH tunnel

    Richard Westebbe
    Richard Westebbe
    Hi, I tried to access the auxiliary devices of several our customers via an ssh tunnel using "ssh -D 7777 admin@firewall.customer.xyz" and than using localhost:7777 as socks proxy in Firefox. There I use the peer administration IP on port 4444 to access…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Logs to analyze syncronization configuration in HA mode

    Ramiro Alba Alba Filho
    Ramiro Alba Alba Filho
    I need to know which of these files ( ctsyncd.log, applog.log, msync.log ) or another log shows me the communication between Sophos A and Sophos B (Active and Passive Ha Mode) about changes from active to passive firewall. How do I identify this in the…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Dedicated Management Port (not MGMT) + Peer Administration link

    Christian_
    Christian_
    Hi there, we are just implementing a management vlan in our network. Therefore I added the mgmt-vlan on one of our 2 main-connections to the coreswitch. Management of switches and servers is working properly. Last step would be to manage our XGS active…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • SSD Update HA cluster Procedure

    Nanoman
    Nanoman
    Hello everyone, I need to upgrade the SSDs in a customer's HA cluster, and it is not clear to me how to proceed. From the guide: "High availability In an HA cluster, you must upgrade the SSD firmware on each appliance individually as follows:…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • XGS SSD Firmware - others also having issues HA nodes not coming up?

    LHerzog
    LHerzog
    I started the SSD firmware update KB-000045380 on XGS136 HA A/P Cluster. First I applied the update to the AUX node 2. It was successful and the machine re-entered the cluster and A/P cluster was all green in the end. I switched the PRI HA node from…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • HA pairing issues

    Jimmy10
    Jimmy10
    Hi, I have a SFV4C6 (SFOS 19.5.3 MR-3-Build652) running standalone as a VM, and I need to HA pair it. I am unable to find an SFV4C6 image to use, does this mean I am unable to HA this existing appliance?
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Peer administration on other port then MGMT

    FloRa
    FloRa
    We have XGS4500 active-passive cluster and i stubled across a pretty annoying issue. In the past (with XG450 and others) we always set the peer administration address to something that allowed us no monitor the auxilary device via our monitoring solution…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 136 in HA mode - backup internet line shows status Red. But its there.

    shiron brimin
    shiron brimin
    Mostly the title, but I have Sophos XG 136’s in HA mode. Have a backup internet line, on port 3 (main WAN is port 2). The status red/green icon shows red. But if I go into diagnostics, I can ping out on port 3. I can also confirm from outside of the network…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS v20 Home in HA connecting to Sophos Central only primary FW registered

    apijnappels
    apijnappels
    Hi all, my setup at home is the following. I have a proxmox host on which I have created an active/passive HA installation of SFOS v20. HA is connected and all green. When I try to register this installation to Sophos central, only the active peer is…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Update from 19.5.3 to 20.0 broke HA

    Ingo Buyny
    Ingo Buyny
    Hello, Two XGS3300 in an working Active/Passive Cluster, not working after the update to 20.0. I deleted the Cluster and tried to re-establish it but it fails all the time. I tried several times with Quick HA or Interactive Mode. Tried with VLAN…
    • Answered
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • LACP from ISP to Active/Passive

    Lakkappa Aras
    Lakkappa Aras
    Dear All, Could you help me to configure this architecture in XG 86 Firewall.
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XGS FW HA Mode (active-passive) turned of SIP ALG

    Speedfish
    Speedfish
    Hello, I just got a quick question about the replication behavior of HA mode. We just turned off the SIP ALG module on the active XGS FW. So now I wonder if the same module is turned off on the passive XGS? Side question can I connect with ssh to the…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Missing Heartbeat - HA nodes showing different computers

    LHerzog
    LHerzog
    Just wondering, I have an 19.5.3 HA cluster Node 1 shows 5 computers with missing heartbeat. 2 are over 100 days old. Now after switching HA nodes manually (Node 2 manually rebooted first) Node 2 shows only 3 computers, all are older than 100…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Firmaware Upgrade in HA mode

    Vaibhav Patil
    Vaibhav Patil
    Hi everyone, Currently we have Sophos xg 230 in our network and it is HA. Our Primary fw is (Active) and Secondary is Auxillary (passive). So I want to update firmware of Sophos XG 230 which is already in HA mode, So what should I do or what will…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • XG310v3 HA Active/Standby site-to-site VPN connections, 19.5.3. Unable to edit, delete or change status.

    Esa Salminen
    Esa Salminen
    Figured as since I cannot find anyone else experiencing this issue, wanted to highlight this here if it helps someone else or if Sophos want to investigate themselves. FW type, config and version in subject. TLDR: Disable HA if you experience issues with…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XG in HA Active-Active requirements

    l0rdraiden
    l0rdraiden
    Just to confirm HA requirements - Sophos Firewall DHCP and PPPoE: When the interfaces are dynamically configured using DHCP or PPPoE, the following applies: Active-active mode: Not supported. Active-passive mode: Supported, but session failover…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Cancelar renovação de licença / Cancel license renewal

    Cristhiano Maffei Gomes1
    Cristhiano Maffei Gomes1
    Boa tarde / Good afternoon Preciso de uma maneira de cancelar a aplicação de uma nova licença/subscrição no firewall Sophos XG em HA, pois devido a manutenção dos servidores de licenciamento meu firewall não mantém acesso via GUI e CLI. I need a…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos HA works for the first failover test, but not subsequent tests

    Craig Glaser
    Craig Glaser
    I'm trying to lab out a Sophos XG HA under a three server VMware cluster. DRS and HA are disabled on the VMWare cluster. XG Firewall A is on VMware Server 1 XG Firewall B is on VMware Server 3 VMWare server 2 is not relevant to this issue. Both…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Greylist synchronization

    Jos Verhallen
    Jos Verhallen
    Hello, Yesterday we have upgraded a Sophos XGs cluster to firmware 19.5.3 MR3-build652 and we noticed that one of the 2 nodes was greylisting e-mails coming from addresses that have e-mailed this organization in the past. Once we failed the nodes over…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS HA-Link Port Swap

    Gerd Rehders1
    Gerd Rehders1
    Hi, I have to change the HA link port for a customer. The reason is that it is to be upgraded to fibre I have no physical access to the HA cluster! Is there a good way to do this, or is it (as I fear) necessary to dissolve the HA cluster and create a…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>