Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 18 replies
  • Subscribers 1 subscriber
  • Views 12770 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF totally broken after 9.204-20 update

thedukeness
Hi Guys,

I installed  9.204-20 tonight but have major problems with it.  None of my WAF sites respond and the live log for WAF logs nothing at all when I hit those sites.  Its as if nothing is configured anymore.  I see it start the service but then it logs nothing else.  

I was able to revert to my reserve node still running 9.203-3 by shutting down the upgraded node (I have a HA set up).  Does anyone know how to downgrade the upgraded node or have any ideas on fixing WAF?


This thread was automatically locked due to age.
  • 0 in reply to traxxus_01
    I had the same issue after applying the latest up2date.  I applied the workaround mentioned above and it fixed it.

    I wish Astaro would fix the patches or update the release notes to reflect they know about this issue, or even link to it on the up2date blog.
  • 0
    It doesn't show up in the knowledgebase either if you search for WAF  in the UTM section!
    It does show up if you select "all Articles" so they cant even categorise it correctly.

    It does not show up in "Advisories", fail, fail, fail.  Come on SOPHOS, you can do better than this.
  • 0 in reply to nathanlock
    Don't use Firewall Profiles in Virtual WebServer.

    Not nice, but workaround until patch.
  • 0 in reply to thedukeness
    Spoke too soon.  I still have issues with 9.204.  I took some web servers down for maintenance and WAF never offlined them.  So the connection to the virtual server was constantly flapping.  I tried the restart from the KB and now I get this error:

    colo:/home/login # /var/mdw/scripts/reverseproxy restart
    :: Restarting reverseproxy 
    AH00112: Warning: DocumentRoot [/var/www/REF_RevFroLive1Https] does not exist


    I get the same error also after upgrading to 9.204
    /var/mdw/scripts/reverseproxy restart
    AH00112: Warning: DocumentRoot [/var/www/REF_RevFrowww] does not exist
  • 0
    Once you turn it off and get it working, you can turn it all back on. It looks like it was just an issue with the updating.
  • 0
    Same problem here, workaround fixed my problem too, strange thing however is that I just couldn't get a new entry to work while the old entries all worked flawlessly.

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • 0 in reply to apijnappels
    Hi,

    the issue is fixed in v9.205 which was GA-released yesterday.

    @apijnappels: What do you mean exactly with 'new entry'?

    Best,
     Sabine
  • 0
    @Evianne, I haven't already updated to 205, planned to do it later this week.

    With new entry I mean that I had to make a new virtual and real server. Just this newly added server kept showing error when enabling it, but with the above workaround I got it "online".

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Unfiltered HTML