This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Help With weird Wireless problem on AP50

Hi All

Looking for some ideas on whats wrong with my setup.

I have used the AP50 for a long time now with a Private WLAN bridged to AP LAN all working fine

Yesterday I created (added) a Public WLAN (for guest internet access) to a separate zone (wlan0)
I've added a DHCP server to Public WLAN
Masqueraded Public WLAN to WAN
Added a firewall rule to allow all from Public WLAN to any ip
Added Public WLAN to allowed networks in DNS
I've turned off (for debugging) IPS,Filtering,Visibility

When I connect my laptop to the Public WLAN SSID it connects and gets an ip address from the dhcp server. I can do an nslookup to google.com and ping google.com.
I cannot browse the web although facebook half loads the page
In a the browser google.com,slashdot.org,bbc.co.uk,ebay.co.uk won't load

Teamviewer host does connect OK
Dropbox has error "Cannot establish a secure connection"
Imap mail client connects OK (I monitor the imap server) but does not download any "messages"

I'm kinda at a loss at the moment, any ideas ?


This thread was automatically locked due to age.
Parents
  • Do you have https scan on proxy on?
    for testing only, disable webproxy and set up a WIRELESS -> ANY -> INTERNET packet filter.
    you should see in packetfilter log the requests.

    Sophos Platinum Partner 
    Sophos Certified Architect
    (Ceritfied UTM Architect / Certified XG Architect)

  • Hi, i allow myself to answer you suggestion: we have https scan in our proxy. i deactivated the proxy completely and viewed the packetfilter log. still no luck. the issue still remains. but the packetfilter log show no drops or anything else. everything show green as we know how normaly it looks like.....
  • And you have for this interface setted up a masquerading rule? See Network Protection -> NAT -> Masquerading (YOURNETWORK -> UPLINK OR WAN INTERFACE)

    How do you look for the logfiles? Webadmin logviewer? Try SSH because there is no latency.


    Sophos Platinum Partner 
    Sophos Certified Architect
    (Ceritfied UTM Architect / Certified XG Architect)

  • Instead of grepping at the command line, I usually start the relevant Live Logs and watch for activity.  In all but the Firewall log, the relevant line(s) can be copied out of the Live Log.  For the Firewall log, find the corresponding line in the full Firewall log file.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Yes, i set up a masquerading rule. Just for a try i changed it to nat with no luck. the issue still persists. i can see the packets flowing in firewall live log (webadmin) with no problems....

  • sorry, but i have no idea whats the problem is. You wrote you have disabled https scan. Are you sure that your webfilter configuration is correct? i dont hope that the requests comes with false "profiles" to the firewall, and you have turned off https scan for the wrong profile? (in addition you left the https scan in base policy/base profile?). 

    What happened if you create a second SSID? Same issue?

    Do you have another Sophos Access Point Model to test the issue on them?
    If not, you can reflash your Access point 
    www.sophos.com/.../118843.aspx

    Do you have tried different clients (eg. notebook,smartphone,..)?

    i had a long time ago the problem, when i was connected to a different SSID on the same UTM, getted from the DHCP Server a lease and then changed to the guest ssid. The UTM had a lot of troubles to handle the requests from the guest-ssid because there was another active lease with same mac on the other SSID (DHCP Serve was also from utm) (i believe it was an bug which has been fixxed :>)


    Sophos Platinum Partner 
    Sophos Certified Architect
    (Ceritfied UTM Architect / Certified XG Architect)

Reply
  • sorry, but i have no idea whats the problem is. You wrote you have disabled https scan. Are you sure that your webfilter configuration is correct? i dont hope that the requests comes with false "profiles" to the firewall, and you have turned off https scan for the wrong profile? (in addition you left the https scan in base policy/base profile?). 

    What happened if you create a second SSID? Same issue?

    Do you have another Sophos Access Point Model to test the issue on them?
    If not, you can reflash your Access point 
    www.sophos.com/.../118843.aspx

    Do you have tried different clients (eg. notebook,smartphone,..)?

    i had a long time ago the problem, when i was connected to a different SSID on the same UTM, getted from the DHCP Server a lease and then changed to the guest ssid. The UTM had a lot of troubles to handle the requests from the guest-ssid because there was another active lease with same mac on the other SSID (DHCP Serve was also from utm) (i believe it was an bug which has been fixxed :>)


    Sophos Platinum Partner 
    Sophos Certified Architect
    (Ceritfied UTM Architect / Certified XG Architect)

Children
No Data