Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 6 subscribers
  • Views 21167 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Guest Wireless not working after update to UTM 9.3550-1

MattTwombly

Anyone having any issues with their Wifi AP's after the update? I cannot load any websites on my Guest Seperate Zone network.

SG230 with 2 AP30's. One SSID is set to WPA2 Personal and bridged to LAN. Other SSID is a guest network set to WPA2 Personal and Separate Zone. Bridged network works great! Guest network hasn't worked since I updated last week. When temporarily switching Guest to Bridged, everything works! Finally got around to some troubleshooting and today and I'm seeing a lot of strange behavior. First thing to pop up was in the Wireless Protection log:

2016:03:02-16:31:41 192.168.0.44 awelogger[10392]: id="4105" severity="info" sys="System" sub="WiFi" name="STA WPA failure" ssid="OCCPUBLIC" ssid_id="WLAN0.0" bssid="00:1a:8c:74:81:d0" sta="60:fe:c5:e1:06:10" reason_code="2"
2016:03:02-16:31:41 192.168.0.44 awelogger[10392]: id="4102" severity="info" sys="System" sub="WiFi" name="STA disconnected" ssid="OCCPUBLIC" ssid_id="WLAN0.0" bssid="00:1a:8c:74:81:d0" sta="60:fe:c5:e1:06:10"
2016:03:02-16:31:46 192.168.0.44 hostapd: wlan0: STA 60:fe:c5:e1:06:10 IEEE 802.11: deauthenticated due to local deauth request

As I started to research this error I found a couple postings about switching to WPA Personal from WPA2 Personal. After the switch it appeared for a moment I had Internet access. Then after a minute or two I had none. Firewall log indicates traffic is making it out without issue however the browser just sits there trying to load. This happens on multiple devices.

So I kept digging and found that if I change the MTU on the Guest Wireless interface from 1500 to 1300 certain pages will now load. However none of the speed test pages load(speedof.me, speedtest.net, speakeasy.net, etc.) Now I remember performance issues a couple releases back referencing changing the MTU. I believe it was fixed here: community.sophos.com/.../29835

So my questions now are...

1. Is anyone else seeing this behavior?

2. If you are does changing your MTU help?

Any and all input is greatly appreciated! Thanks!



This thread was automatically locked due to age.
  • 0

    Just used the old command /sbin/ethtool -K wlan0 tso off  from about this time last year and changed the MTU back to 1500 and it at least loads most pages.  However, it still struggles loading the speed test pages.  In the end it's still not working properly.  

  • 0

    Matt, several possibilities:

    • You have a special character in the SSID and an old bug is back.
    • You haven't rebooted your UTM since the automatic reboot after the Up2Date.
    • 'Fast transition' is enabled for the SSID.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    No special characters.

    I've reboot several times.

    Fast transition is off.  

  • 0

    Hi Matt,

    we are also experiencing this problems until i updated our 2 SG430 to the newest version 9.355-1. We also had the problems a few month ago with our Wifi. Last time it was fixed by switching the MTU until the update was released. Afterwards we switched the MTU back and it worked fine with the update... now it seems to be the same problem again.

    - Client´s can´t connect to the Wifi most of the time.

    - connected Client´s have a very slow connection.

    - the latency is very unstable from 2ms - 3000 ms - packet loss...

    - i did not tried yet to change the MTU, because i already opened a call at our dealer for this...

    I hope we can find a fast solution for this problem.

    Sunny greetings from Germany

    Daniel

  • 0 in reply to DanielHagel

    Glad I'm not the only one with this issue.  I just opened a case with Sophos we'll see what they have to say today.  

  • 0 in reply to MattTwombly

    Hi Matt,

    did you still get an solution for this? I just checked with our Wireless Networks.

    Our 2 seperate Zone Networks work fine. 1 bridged network works also fine. (just 3 clients). But if i enable our main bridged network the speed goes down to roughly 50 kbit/s and the latency jumps up to the sky...

    Of course, the bridged main wifi is the most important wifi for our users... :/

    Sunny greetings

    Daniel

  • 0 in reply to DanielHagel

    Still no solution here.  Waiting for a call from Sophos support.  

  • 0

    Is there anything in the Intrusion Prevention log? If you query the NIC connected to the AP with ifconfig from the commandline, do you see errors?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Nothing in Intrusion prevention log.  No errors, drops, or overruns in ifconfig for wlan0 which is my Wireless Guest network.  Still waiting to here from Sophos....

  • 0 in reply to MattTwombly

    I meant the Ethernet NIC, not the virtual wireless one.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML