Sophos Firmware has been updated for both primary and auxiliary firewalls. After the update process, the network is completely down. However, when I remove the dedicated link from the auxiliary firewall, the network works normally. Anyone please let me…

Hello everyone, i can't assign IP for Peer admini stration settings in HA, aslo i can't make any changes in the HA, every time make changes and press save this message appear. thank u

Hi We have Sophos XGS126 with firmware SFOS 19.5.2 MR-2-Build62 and every day we have the HA-Interface Link is down. I have checked cable, port but it's correct. Any help or ideas?.

Within an A-P cluster should the licence synced if the "licence-slave" is active for more than 90 days? Today, a customer asked me because of a "90 days license disabled" problem. The problem occurred after an update to current version ... but both…

Hi all, Is there a possibility to change the HA interface to another port without disabling HA ?

Hi, I have just received an RMA replacement for a secondary unit that died and was part of a HA pair. What are the steps that I need to replace this unit. I am struggling to log on to it with admin/admin, is this the wrong logon? I can see that…

Hello, I have an active-passive cluster and am monitoring my two wan ports that are connected to separate ISPs. My problem is if one of my ISP links go down, the whole appliance fails over. Is that by design? It doesn't make sense because after fail…

Hi guys, i've a XGS2300 cluster, i'm trying to upgrade it from 19.5.0 to 19.5.1, but if i try to start the upgrade process it tells me that i can't upgrade. I've checked the static routing problem before upgrading... but everything seems ok. Does…

Want to disable HA on a 19.0.1 A/P Cluster and rebuild it. Not even the very first sep to disable HA is working smoothly. Can't believe this has never been asked - 0 search hits here and on google.. Where can I find helpful logs? live log says…

Dear community Today we had a problem with two XG 135 firewalls. The two firewalls where configured to run in a active-passive HA cluster. A little while back the passive unit went to a faulty state. We asked our customer try restarting the faulty…

Good morning, I have two clusters of XGS 2100 in HA (Active-Passive) running with the firmware version 19.5.0 GA-Build197. As per object, I am not able to set the preferred primary device on both the clusters. The error message is always the same: …

Hellow I am following this configuration for failover: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Routing/Gateways/RoutingConfigureGatewayBalancing/index.html I want to be sure if there is…

Hello: I currently have an XG 210 and I am about to setup another one (same model) for High Availabilty. I had a couple of questions: The current XG has a higher firmware version that the new XG. How do I upgrade the second onw to the same version…

After update to 19.5 the "invalid traffic" increases massive. It only shows when HA is up. When i shut down one node, the "invalid traffic" disappeared. I see this issue on two customers. Both had HA with 19.0MR1 and a update to 19.5GA. Dissolving…

I have two sopos XG firewall sync with high availability. Now I want to upgrade their firmware. Now do the two firewalls have to upgrade the firmware separately? Or if the primary device is upgraded, the secondary device will automatically upgrade.

Interested in what other people have done with network switch configurations when using Sophos HA. Documentation on their website covers the Sophos configuration, but doesn't really talk about what to do on the switch side of things, although it does…

Hello, I have what is hopefully a simple question. My org wants to set up a remote office with redundant firewalls and ISP's to keep connectivity if one firewall fails or one ISP goes down. A colleague of mine told me that at a previous company, they…

For the second time now we face an issue that we cannot login to XG with SSH. Either as admin or with the ssh keys we entered in WebAdmin. XG430 (SFOS 19.0.1 MR-1-Build365) This was first noticed when we upgraded from 18.5.4 to the current version…

We have a setup with 2 x XG230 configured with HA active / passive with PPPoE on PortA2. Primary Sophos PortA2 connects to ISP Primary router and Aux Sophos PortA2 connects to ISP Aux Router. Port A2 is set as monitored interface. ISP Primary router has…

Hi, I have two nodes with HA going, and on primary node, I disconnect Wan port cable and hope HA will failover to my 2nd node, but it does not. 1. when I disconnect Wan cable, I do see interface on node showing red, meaning it had detected Wan…

Let me brief the topology, we have two WAN uplinks connected to a active -passive HA. The issue is after initialization of HA one of the uplink status goes to RED.we are unable to use the 2nd ISP as a load balance

Designing the solution for redundant internet for a HA firewall. The architecture I have in mind is: Is this design complete or should I add additional items? --- John

Hi Community and Sophos Guys. As the title describes, I have to upgrade a Active / Passive Cluster SFOS V18.5.2 to V19.5 in a Production Environment. This Production Environment uses XGS2100 as hardware, and have a maximum of 24h hours for a downtime…

I recently upgraded and moved XG 3300 into a full fledge production mode and after upgrading it to 19.01 MR1 i am seeing issues related to stability of the cluster. The main issue is after the Auxiliary device joins the cluster it stays as Auxiliary for…

Did set up an Active Passive cluster today. Named my second FW TEAHOMEFW02. When I log-in to the primary device the following is shown However when I login from the auxiliary device it shows the same. This will make it more difficult to see on…