I have two internal networks. The user profile is however only accessible from one, although all interfaces are allowed. On the port is listening, but no answer comes. I have change the port to 4445. The error-pages from sophos also not shown.
Hi Stefan,
Take SSH to UTM and take tcpdump on port 4445 and capture two individual communication, working and non working. Post the logs here.
Thanks
Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
19:22:56.573387 IP 192.168.21.4.53587 > sophos.https: Flags [S], seq 3404356012, win 65535, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
19:22:56.573550 IP sophos.https > 192.168.21.4.53587: Flags [S.], seq 2370672762, ack 3404356013, win 29200, options [mss 1460,nop,nop,sackOK,nop,wscale 7], length 0
19:22:56.575273 IP 192.168.21.4.53587 > sophos.https: Flags [.], ack 1, win 1024, length 0
19:22:56.582164 IP 192.168.21.4.53587 > sophos.https: Flags [P.], seq 1:165, ack 1, win 1024, length 164
19:22:56.582251 IP sophos.https > 192.168.21.4.53587: Flags [.], ack 165, win 237, length 0
19:22:56.633335 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:22:56.633355 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1461:2921, ack 165, win 237, length 1460
19:22:56.633393 IP sophos.https > 192.168.21.4.53587: Flags [P.], seq 2921:2935, ack 165, win 237, length 14
19:22:56.635727 IP 192.168.21.4.53587 > sophos.https: Flags [.], ack 1, win 1024, options [nop,nop,sack 1 {2921:2935}], length 0
19:22:56.638837 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:22:56.638853 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1461:2921, ack 165, win 237, length 1460
19:22:56.842848 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:22:57.250857 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:22:58.066860 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:22:59.702852 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:23:02.978860 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:23:09.522854 IP sophos.https > 192.168.21.4.53587: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:25:12.989905 IP 192.168.20.200.53593 > sophos.https: Flags [S], seq 1874303092, win 65535, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
19:25:12.990025 IP sophos.https > 192.168.20.200.53593: Flags [S.], seq 2950597696, ack 1874303093, win 29200, options [mss 1460,nop,nop,sackOK,nop,wscale 7], length 0
19:25:12.990267 IP 192.168.20.200.53593 > sophos.https: Flags [.], ack 1, win 1024, length 0
19:25:12.997597 IP 192.168.20.200.53593 > sophos.https: Flags [P.], seq 1:165, ack 1, win 1024, length 164
19:25:12.997663 IP sophos.https > 192.168.20.200.53593: Flags [.], ack 165, win 237, length 0
19:25:13.049782 IP sophos.https > 192.168.20.200.53593: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:25:13.049799 IP sophos.https > 192.168.20.200.53593: Flags [.], seq 1461:2921, ack 165, win 237, length 1460
19:25:13.049826 IP sophos.https > 192.168.20.200.53593: Flags [P.], seq 2921:2935, ack 165, win 237, length 14
19:25:13.050208 IP 192.168.20.200.53593 > sophos.https: Flags [.], ack 1461, win 1024, length 0
19:25:13.050255 IP 192.168.20.200.53593 > sophos.https: Flags [.], ack 2921, win 1024, length 0
19:25:13.050257 IP 192.168.20.200.53593 > sophos.https: Flags [.], ack 2935, win 1023, length 0
19:25:13.246593 IP 192.168.20.200.53593 > sophos.https: Flags [F.], seq 165, ack 2935, win 1023, length 0
19:25:13.246981 IP sophos.https > 192.168.20.200.53593: Flags [F.], seq 2935, ack 166, win 237, length 0
19:25:13.247191 IP 192.168.20.200.53593 > sophos.https: Flags [.], ack 2936, win 1023, length 0
19:25:13.259012 IP 192.168.20.200.53594 > sophos.https: Flags [S], seq 2240513768, win 65535, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
19:25:13.259107 IP sophos.https > 192.168.20.200.53594: Flags [S.], seq 3825539971, ack 2240513769, win 29200, options [mss 1460,nop,nop,sackOK,nop,wscale 7], length 0
19:25:13.259316 IP 192.168.20.200.53594 > sophos.https: Flags [.], ack 1, win 1024, length 0
19:25:13.259662 IP 192.168.20.200.53594 > sophos.https: Flags [P.], seq 1:165, ack 1, win 1024, length 164
19:25:13.259728 IP sophos.https > 192.168.20.200.53594: Flags [.], ack 165, win 237, length 0
19:25:13.310862 IP sophos.https > 192.168.20.200.53594: Flags [.], seq 1:1461, ack 165, win 237, length 1460
19:25:13.310876 IP sophos.https > 192.168.20.200.53594: Flags [.], seq 1461:2921, ack 165, win 237, length 1460
19:25:13.310902 IP sophos.https > 192.168.20.200.53594: Flags [P.], seq 2921:2935, ack 165, win 237, length 14
19:25:13.311276 IP 192.168.20.200.53594 > sophos.https: Flags [.], ack 1461, win 1024, length 0
19:25:13.311324 IP 192.168.20.200.53594 > sophos.https: Flags [.], ack 2921, win 1024, length 0
19:25:13.311373 IP 192.168.20.200.53594 > sophos.https: Flags [.], ack 2935, win 1023, length 0
19:25:13.408018 IP 192.168.20.200.53594 > sophos.https: Flags [F.], seq 165, ack 2935, win 1023, length 0
19:25:13.408301 IP sophos.https > 192.168.20.200.53594: Flags [F.], seq 2935, ack 166, win 237, length 0
19:25:13.408523 IP 192.168.20.200.53594 > sophos.https: Flags [.], ack 2936, win 1023, length 0
AT the wlan access point i must change the mtu from 1500 to 1504.
HI Stefan,
Did the MTU change resolved it?
Thanks
Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Yes, after the MTU change, all ist good.
