This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM 9.601 - RED issues!

Since upgrading all our customers to 9.601, a bigger part of them are complaining about RED's re/disconnection in a no-pattern way.

It started for all of them just the night we upgraded to 9.601, and they all are on different ISP's and located different places around the country.

Been with Sophos support for 2 hours today, and now they escalated it to higher grounds.

Will return with an update....

Suspicious entries in the log - but all connected REDs do this before connection:

2019:03:06-15:15:38 fw01-2 red_server[17509]: SELF: Cannot do SSL handshake on socket accept from 'xxx.xxx.xxx.xxx': SSL connect accept failed because of handshake problems

2019:03:06-15:15:46 fw01-2 red2ctl[12420]: Missing keepalive from reds3:0, disabling peer xxx.xxx.xxx.xxx

I know the last line is written before the tunnel disconnects, because there was no "PING/PONG" answer...

One customer has 2 x RD 50, one 1 100% stable and the other fluctuates in random intervals - we replaced this with a new RED 50, but the same thing occurs.



This thread was automatically locked due to age.
Parents
  • Hi all, 

     

    We have been experiencing this problem with 2 separate RED15s intermittently going bye-bye ever since 9.601. The temporary workarounds of setting the MTU to 1400, as well as removing and re-adding the RED in the clustered SG230 to force a clean restart have kept us up and running so far. 

    I have been monitoring this thread for close to six months in the hope that the problem would be cleared up in a subsequent update. Unfortunately, this does not seem to be the case so far. We have been keeping the SG230 at 9.601 to not risk any further damage or different issues. Judging by the reports here, that seems to be a wise decision, but I do not like keeping firmware this far behind, and am getting very concerned as to whether Sophos will be able to fix the problem at all. If anyone from Sophos is reading this: I am sure we would all appreciate an official update regarding the issue!

     

    Best, OliverW8

Reply
  • Hi all, 

     

    We have been experiencing this problem with 2 separate RED15s intermittently going bye-bye ever since 9.601. The temporary workarounds of setting the MTU to 1400, as well as removing and re-adding the RED in the clustered SG230 to force a clean restart have kept us up and running so far. 

    I have been monitoring this thread for close to six months in the hope that the problem would be cleared up in a subsequent update. Unfortunately, this does not seem to be the case so far. We have been keeping the SG230 at 9.601 to not risk any further damage or different issues. Judging by the reports here, that seems to be a wise decision, but I do not like keeping firmware this far behind, and am getting very concerned as to whether Sophos will be able to fix the problem at all. If anyone from Sophos is reading this: I am sure we would all appreciate an official update regarding the issue!

     

    Best, OliverW8

Children
No Data