Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • +4 person also asked this people also asked this
  • Locked Locked
  • Replies 12 replies
  • Answers 2 answers
  • Subscribers 13 subscribers
  • Views 43777 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

sophos clients win7 no internet this AM feb 5

givemecontrol

hey i have a few workstations today that spontaneously around 930am - 10am lost their ability to connect to the network. i also notice that the sophos endpoint icon has changed today from what it was last week. The affected terminals all seem to be win7 but i cant find any other similarities.

 

is this a known issue?

 

last update posted to the machine was 10.8.1 VE3.71.0 Update Successful



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Gowtham Mani

    Thank you for this temporary solution.

     

    Was on the phone for 2 hours with Sophos support, I asked multiple times if this was a known issue since we had this problem on 8 windows 7 clients, it did not affect the windows 10 clients.

    But the guy at support kept saying that this is not a known issue, I find it absurd that I have to find out myself that this is indeed a known issue. Of all things you expect the people at support to be aware of this.

     

    Some info: We also have problems with clients connected to SBS 2011, so maybe this is related, haven't heard my other customers with 2012 R2 or higher with this issue.

  • 0 in reply to Gowtham Mani

    I have been corresponding with sophos on a case # 7900486 since the 5th. We do have an XG firewall. I will try and update the ticket with the info in that KB.

     

    oh and that work around did not work. i disabled all runtime protection settings but either they are not making it to the client or the workaround did not work. the only thing that worked for me was disabling the services. that allows people to get back to work.

  • 0 in reply to givemecontrol

    Are you sure you selected save in the topr right corner after disabling the option in the sophos cloud?

    Also make sure that all Sophos services are back enabled in save mode, then reboot. For us this worked, we also have a Sophos XG firewall.

  • 0 in reply to TonV

    meh ive got a million other things to do. i will wait for a proper fix. one work around is the same as the other imho

  • 0 in reply to Gowtham Mani

    To recover machines that are already affected you will need to disconnect the network from them, log in as either a local user or into safe boot. Open Sophos UI and enter the Tamper protection Pin and turn off the Malicious Traffic Detection under Runtime Protection and reboot. Then login as normal and turn network back on. (making sure KB 131685 workaround is already done)

  • 0 in reply to Shamus Ford

    Yes, the KB posted by Gowtham has helped me.

    Removing them the network as you've said was the only way I could login to any of them to try and troubleshoot.

    So far with Malicious Traffic Detection disabled I haven't had this occur again.

    I've got an open case with support also.

Unfiltered HTML