This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophot UTM 9.7 - moved the VM to another server, and now I cannot access the webadmin

Hello All,

I was running Sophos UTM 9.7 on an Esxi 6.5 server that crashed.  I moved the VM to another Esxi 6.7 server and imported the VM.  I'm assuming the problem is with the NIC hardware that it cannot find the orignal NICs, and that sort of broke things.

The Esxi management console show the VM to have two addresses: the original one assigned to the internal interface and one assigned through DHCP.

I am trying to access the Sophos UTM VM webadmin, but I cannot access it through either address.  I do have access to the the console through the VMWare Remote Console.

I can ping it the DHCP assigned address from my workstation, but when I access it using a browser I get an "ERR_CONNECTION_REFUSED" error.  I cannot ping the statically assigned original address.  From the Sophos UTM VM, I am able to ping both the DHCP assigned address and the original statically assigned address, but I cannot ping anything else on the network.

Any and all help with be greatly appreciated.



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to Sophos Community.

    Can you please check the packet flow on WebAdmin port in UTM console.

    ==> Run below command.

    utm:/root # tcpdump -nei any port <WebAdmin_Port>

    eg. utm:/root # tcpdump -nei any port 4444

    ==> Please check webadmin.log , httpd.log and confd-debug.log files while accessing Webadmin(https://<UTM_IP>:port).

    utm:/root # tail -f /var/log/webadmin.log httpd.log confd-debug.log

    ==> Confirm allowed networks for WebAdmin access.

    utm:/root # cc get webadmin allowed_networks

Reply
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to Sophos Community.

    Can you please check the packet flow on WebAdmin port in UTM console.

    ==> Run below command.

    utm:/root # tcpdump -nei any port <WebAdmin_Port>

    eg. utm:/root # tcpdump -nei any port 4444

    ==> Please check webadmin.log , httpd.log and confd-debug.log files while accessing Webadmin(https://<UTM_IP>:port).

    utm:/root # tail -f /var/log/webadmin.log httpd.log confd-debug.log

    ==> Confirm allowed networks for WebAdmin access.

    utm:/root # cc get webadmin allowed_networks

Children