This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

interface up but link error

 SG310 9.605-1

We have two internet connections (different ISPs) coming into our UTM and one is now displaying as State UP but Link ERROR.  It cant be a DNS issue as the other one works fine.  If i switch a user out through the interface with the error the get a warning in the log of  :

2019:08:08-14:18:59 gw1 httpproxy[5942]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="CONNECT" srcip="10.1.0.22" dstip="40.97.128.18" user="j.harvie" group="" ad_domain="DH" statuscode="500" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="354" request="0xd292ce00" url="6ca9eec373c394722571e1d7d0ff8855.fp.measure.office.com/" referer="" error="No route to host" authtime="123" dnstime="74003" aptptime="75" cattime="20607" avscantime="0" fullreqtime="17142549" device="1" auth="2" ua="" exceptions="" category="105" reputation="trusted" categoryname="Business" country="United States" application="office" app-id="1156"

The ISP deny anything at their end but I am at a bit of a loss at what else I can try/test!!

Any suggestions?



This thread was automatically locked due to age.
Parents
  • Hi Lee,

    we had a similar problem and the solution for us was to change the DNS settings in our AD DNS servers. For whatever reason a link error on the UTM wan interface is shown when there are problems connecting to the DNS server.

    Normally you have in your internal DNS servers your internet gateway entered as a forwarder. Unfortunately it looks like that with one of the last Sophos updates this could lead to some kind of DNS "loop behaviour" if you have entered request routes at the DNS service in the UTM.

    We deleted the forwarder entry in our Windows server DNS settings and checked the box "use root hints" and from that moment on the link error disappeared.

    Cross fingers that helps you.

    Rainer

Reply
  • Hi Lee,

    we had a similar problem and the solution for us was to change the DNS settings in our AD DNS servers. For whatever reason a link error on the UTM wan interface is shown when there are problems connecting to the DNS server.

    Normally you have in your internal DNS servers your internet gateway entered as a forwarder. Unfortunately it looks like that with one of the last Sophos updates this could lead to some kind of DNS "loop behaviour" if you have entered request routes at the DNS service in the UTM.

    We deleted the forwarder entry in our Windows server DNS settings and checked the box "use root hints" and from that moment on the link error disappeared.

    Cross fingers that helps you.

    Rainer

Children
  • Hallo Reiner and welcome to the UTM Community!

    I see you've been around for a couple years, but this is your first post.  Solving someone else's problem is a great way to introduce yourself.

    Lee, you might want to take a look at DNS best practice.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA