Sophos Platinum Partner
Sophos Certified Architect
(Ceritfied UTM Architect / Certified XG Architect)
And you have for this interface setted up a masquerading rule? See Network Protection -> NAT -> Masquerading (YOURNETWORK -> UPLINK OR WAN INTERFACE)
How do you look for the logfiles? Webadmin logviewer? Try SSH because there is no latency.
Sophos Platinum Partner
Sophos Certified Architect
(Ceritfied UTM Architect / Certified XG Architect)
Instead of grepping at the command line, I usually start the relevant Live Logs and watch for activity. In all but the Firewall log, the relevant line(s) can be copied out of the Live Log. For the Firewall log, find the corresponding line in the full Firewall log file.
Cheers - Bob
sorry, but i have no idea whats the problem is. You wrote you have disabled https scan. Are you sure that your webfilter configuration is correct? i dont hope that the requests comes with false "profiles" to the firewall, and you have turned off https scan for the wrong profile? (in addition you left the https scan in base policy/base profile?).
What happened if you create a second SSID? Same issue?
Do you have another Sophos Access Point Model to test the issue on them?
If not, you can reflash your Access point
www.sophos.com/.../118843.aspx
Do you have tried different clients (eg. notebook,smartphone,..)?
i had a long time ago the problem, when i was connected to a different SSID on the same UTM, getted from the DHCP Server a lease and then changed to the guest ssid. The UTM had a lot of troubles to handle the requests from the guest-ssid because there was another active lease with same mac on the other SSID (DHCP Serve was also from utm) (i believe it was an bug which has been fixxed :>)
Sophos Platinum Partner
Sophos Certified Architect
(Ceritfied UTM Architect / Certified XG Architect)
sorry, but i have no idea whats the problem is. You wrote you have disabled https scan. Are you sure that your webfilter configuration is correct? i dont hope that the requests comes with false "profiles" to the firewall, and you have turned off https scan for the wrong profile? (in addition you left the https scan in base policy/base profile?).
What happened if you create a second SSID? Same issue?
Do you have another Sophos Access Point Model to test the issue on them?
If not, you can reflash your Access point
www.sophos.com/.../118843.aspx
Do you have tried different clients (eg. notebook,smartphone,..)?
i had a long time ago the problem, when i was connected to a different SSID on the same UTM, getted from the DHCP Server a lease and then changed to the guest ssid. The UTM had a lot of troubles to handle the requests from the guest-ssid because there was another active lease with same mac on the other SSID (DHCP Serve was also from utm) (i believe it was an bug which has been fixxed :>)
Sophos Platinum Partner
Sophos Certified Architect
(Ceritfied UTM Architect / Certified XG Architect)