Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 7667 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SGN 5.60 sync issues

JuJo

We upgraded our SGN servers from 5.50.8.13 to 5.6.0.192 about 4 weeks ago. We upgraded some clients to the new version but most are still 5.5. We have seen a serious delay in syncing since the upgrade. Some new installs (whether 5.5 or 5.6 install) sit there and never encrypt nor do they register an owner.  Our old machines may take up to 8 hours to get rid of all their packets (some never get rid of all their packets). We see improvements in the sync time after business hours and on weekends some of the time. We have tried to troubleshoot all possible options - server resources, network traffic, client install script, IIS Settings, FW, DNS, DB, VMs, client OS. Nothing stands out as an issue. Has anyone else noticed a degradation in syncing since upgrading? We have had a ticket open with support for 3 weeks and have yet to get a call back from the escalation engineer.

:14883


This thread was automatically locked due to age.
Parents
  • 0

    Here's how we resolved our issue: I modified IIS – Application pool – SGNSRV-Pool – Advanced Settings - changed max worker processes from 1 to 6 and changed Regular Time Interval (minutes) from 1740 to 60 (so it recycles every hour). Then restarted IIS. 

    We installed SysInternals TCPView (free and awesome) on our SGN servers to watch the connections. We noticed a ton of established client connections on port 443 with 0 bytes/packets sent. This gives the appearance of client connections being made and never released. Seems like the connections just get stale and never release on the IIS side. I don't know if it's a Sophos thing or IIS but this seems to have resolved our issue.

    :15907
Reply
  • 0

    Here's how we resolved our issue: I modified IIS – Application pool – SGNSRV-Pool – Advanced Settings - changed max worker processes from 1 to 6 and changed Regular Time Interval (minutes) from 1740 to 60 (so it recycles every hour). Then restarted IIS. 

    We installed SysInternals TCPView (free and awesome) on our SGN servers to watch the connections. We noticed a ton of established client connections on port 443 with 0 bytes/packets sent. This gives the appearance of client connections being made and never released. Seems like the connections just get stale and never release on the IIS side. I don't know if it's a Sophos thing or IIS but this seems to have resolved our issue.

    :15907
Children
No Data
Unfiltered HTML