XG Firewall v18 MR-3: Feedback and experiences

After install:

Still not possible to get rid of theese? - 6 and 7 MONTHS old messages??

I was also hoping since Sophos Connect 2.0 is out that there will be no old SSL VPN client.

So fas so good in lab environment.

I hope not, we have 200 customers using "old sslvpn" planning migration is in process :-D

See: support.sophos.com/.../KB-000040174

I'm unable to upgrade MR3. this pops up when I try to upgrade:

Firmware downgrade also replaces the current configuration with the earlier one. An upgrade replaces it with the default configuration. For details, go to the online help.

As far as I can read, it's going to repalce current config with defaults. 

Tested with two different XG210 setups. Both of them in HA. Updated single XG86 without a broblem. All this mentioned setups are/were running 18.0.1 MR-1.

+1

Hi, good start.

installed and running okay.
Bug that was supposed to be fixed in this version.IMAP scanning has not been fixed, still the same issue that imap rejects the CA that is acceptable by smtp/s scanning.

ian

Ian, do you have a Jira ID I can reference so I can take a look at status?

Thank you Jarno for your feedback. This is the known issue (NC-60615) - already fixed in the next MR.

This *false alarm* alert message appears when XG is running in HA cluster; one uploads the next firmware (like you uploaded MR3); And later boots with the uploaded firmware. If one upload & boot together with the new firmware, this false alert won't appear.

While resolving this issue in NC-60615, we have also made the alert message more meaningful and easier to understand. The existing message is confusing.

For MR3 - we request you to ignore this alert and move further, it will migrate the configuration properly. We are also updating the known issue list with this behavior.

Thanks again for your feedback.