This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

random loss of internet connectivity after latest patch

I updated my utm to 9.113-1 about a week ago. Ever since the update, I have been losing internet connectivity 1-2 times a day. After I do a reboot of the FW everything works fine until it happens again.

Any ideas of how to address?

Thanks

This thread was automatically locked due to age.

0 teched_01 over 11 years ago

Have you reviewed the logs?

What is the hardware? (ASG/UTM model & rev or motherboard/NICs if software, or virtual settings)

Logs and hardware should confirm or eliminate the following possibility:
e1000 Hardware unit hang?
- 0 Gary21 over 11 years ago in reply to teched_01
  
  Logs:
  kernel: only a couple of lines. only one of interest
  "nf_conntrack: automatic helper assignment is deprecated and it will be removed soon. Use the iptables CT target to attach helpers instead."
  "hwinfo: vm86 mode not supported on 64 bit kernel"
  
  selfmon:
  check Failed increment dhcpd_running counter 1 - 3
  
  web filtering: I see a bunch of these that I do not recall.
  id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="818" message="server 'cffs18.astaro.com' access time: 210ms"
  id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="818" message="server 'cffs22.astaro.com' access time: 216ms"
  
  id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_handle_cmd" file="scr_scanner.c" line="551" message="cffs28.astaro.com: write: No route to host"
  
  Hardware:
  
  This is a box I custom built. It has been very stable until this last patch:
  - custom built box with UTM Free
  Shuttle DS61 V1.1 LGA1155 Intel H61 DDR3 USB 3.0 90W Slim PC Barebone System - Black DS61 V1.1
  
  Intel Core i3-3225 Dual-Core Processor 3.3 GHz 3 MB Cache LGA 1155 - BX80637i33225
  
  Crucial Single 8GB DDR3 1600 MT/s (PC3-12800) Notebook Module, CT102464BF160B
  
  Crucial M500 120GB SATA 2.5-Inch 7mm (with 9.5mm adapter) Internal Solid State Drive CT120M500SSD1
  
  Thanks
0 teched_01 over 11 years ago

Apparent RealTek NICs (and not Intel) should rule out e1000 driver related problems.

"No route to host" for cffs ping checks.  Is that common and consistent for the times the system is without connectivity?

Any establishable pattern:  Every n hours, every n hours after reboot?

Check for link, accessibility of upstream device(s), routing table entries: disabling/enabling the WAN interface when "down" and physically cycling the link (cable pull and plug), upstream device verification/access mechanisms vary, WebAdmin->Support->Advanced (or CLI).
0 Gary21 over 11 years ago

No patterns - it would happen at any point. I have just started to pull my logs into splunk to be able to better analyze. After the latest update, the system has been more stable and I have not observed the issue in a couple of days, so I will assume the issue was resolved as part of the patch. Thanks
0 Gary21 over 11 years ago

The loss of connectivity still appears to be an issue, as it recurred some time the afternoon. I will try the ping next time to see what it says. Any idea for which log to look at or what kind of string? Thanks
0 BAlfson over 11 years ago

What model is the NIC attached to the Internet? What connection do you have to your ISP - PPPoE?

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
0 Gary21 over 11 years ago

LAN: 2x Realtek 8111E Gigabit Ethernet Controllers

I have time warner cable
0 BAlfson over 11 years ago

I was afraid of that. Realteks are known to cause problems. See #7 in Rulz.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA