This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos HA Configuration - After reboot one node says "Sophos Protection" on Display...no second in HA visible

Hello,

i'm fighting with my two SG430 nodes. I've shut down the slave and afterwards the master per web console. Then i booted the slave first (Does it matter?) and then the master second.

Now the old slave is master and working.  Apparently the second node "hangs" as i only see "Sophos protection" on the display. Also when pushing the four buttons does not change the display. The only led powered on is "Int". The other stay "grey" but where shortly blinking while the device was powered on.

In my Log i see the following information:

2020:10:14-14:05:28 node2 ha_mode[29271]: calling check
2020:10:14-14:05:28 node2 ha_mode[29271]: check: waiting for last ha_mode done
2020:10:14-14:05:28 node2 ha_mode[29271]: check_ha() role=MASTER, status=ACTIVE
2020:10:14-14:05:28 node2 ha_mode[29271]: check done (started at 14:00:14)
2020:10:14-14:05:33 node2 repctl[5291]: [i] recheck(1057): got ALRM: replication recheck triggered Setup_replication_done = 1
2020:10:14-14:05:33 node2 repctl[5291]: [i] recheck(1057): got ALRM: replication recheck triggered Setup_replication_done = 1
2020:10:14-14:10:48 node2 repctl[5291]: [i] recheck(1057): got ALRM: replication recheck triggered Setup_replication_done = 1
2020:10:14-14:10:48 node2 repctl[5291]: [i] recheck(1057): got ALRM: replication recheck triggered Setup_replication_done = 1
2020:10:14-14:14:00 node2 ha_daemon[5240]: id="38A0" severity="info" sys="System" sub="ha" seq="M: 141 59.496" name="Reading cluster configuration"
2020:10:14-14:14:02 node2 ha_daemon[5240]: id="38A0" severity="info" sys="System" sub="ha" seq="M: 142 14.695" name="Monitoring interfaces for link beat: eth1 eth0"
2020:10:14-14:20:16 node2 repctl[5291]: [i] recheck(1057): got ALRM: replication recheck triggered Setup_replication_done = 1

Does anyone know this problem?



This thread was automatically locked due to age.
  • I would see if you get more info if you connect a monitor to the video connector of the device. Maybe there is a problem and it stops while booting?

    -

  • Hallo,

    I wouldn't have first brought up the node that was shutdown first.  What changes happened on the prior Master after the prior Slave was shutdown?

    If doing Alex' suggestion doesn't give you the solution, does rebooting the Slave?  If not, you'll want to get a ticket open with Sophos Support, but they'll likely tell you to disable HA and then re-enable it, thus doing a factory reset of the unit.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Thank you two. I will report soo back as i get to the machine.

  • Hello Rumak18,

    Thank you for contacting the Sophos Community!

    If you happen to open a  ticket with support please provide me with the Case ID, so I can follow-up.

    Unfortunately, the extract of the logs doesn't say much, when opening a case with support, please provide the high-availability.log and time-stamp of the issue. 

    Regards,


     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • Ok,

    after some trial and error to find out that sophos uses modern HDMI and NOT VGA  and that a Display Port cable is not a HDMI cable (-:

    i've finally managed to go connect my sophos to a monitor. Here i saw the follwoing error:

    fsck failed for at least one filesystem (not /)

    Please repair manually and rebboot.

    The root file system is already mounted read-write.

    Attention: Only CONTROL-D will reboot the system in this maintenance mode, shutdown or reboot will not work. [CONTROL-D didn't work at all by the way!!].

    Give root password for maintenance or type Control-D to continue:

    The next task was to find out, which button corresponds to my german character as the connected connected keyboard got the "ENGLISH" layout. So after this i get logged in to the shell finally.

    Here i typed:

    touch /forcefsck

    and rebooted the machine. Then it synced with my new master (Which was the slave before) and now everything looks fine although the machine is stil syncing (10 minutes or so).

    I also must add that when my slave got the master in the first place i configured in HA also the old slave to be the "prefered node". And then did the steps above.