Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 29 subscribers
  • Views 6839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Not happy to report VPN went down again on MR-8

Scott_D_L

Well I had high hopes for MR-8.  Looks like we are still having an issue with my VPN's SA's   All SA's  showed red early this morning with the exception of a GRE tunnel.   (so 8 SA red, 1 Green).  This VPN connection's other side is a cisco device.   We've not had a single issue in the 4 days since applying MR-8 , so I was feeling hopeful. Anyone else seeing the same thing?   

I just submitted a support ticket.

 

-Scott



This thread was automatically locked due to age.
Parents
  • 0

    I will add,  that we've got another site that has been running MR-8 for the same amount of time and has not had an issue as of yet. 

    I just found out that the other side of the VPN (Cisco) that had the failure this morning is set to initiate and Respond (Sophos at remote office is set to do the same thing), so perhaps that is part of the issue.   

     

    The site that is working on MR-8 without issues so far is set to Respond only(on the cisco side at HQ).  So perhaps setting the cisco side to "Respond" will resolve it at the problem site.  I think in the Cisco world you can set both ends to initiate and respond,  maybe that can't be done with different equipment on both sides perhaps.

     

    -Scott

  • 0 in reply to Scott_D_L

    The more I think about these issues, the more I think it is a routing problem.  That have been lasting for 14 months in a row.  Question like this, do you happen to have many subnets behind those firewalls ?  I think XG is screwed up when routing with VPN more than anything else.  In our cases, some subnets falls down altogether with the VPN.  And all of this time, I can monitor it from home with a Teamviewer session.  When the VPN goes back, so are fallen subnets.  I wonder if the boss at Sophos would himself be able to work with falling VPNs 16 month in a row ...

Reply
  • 0 in reply to Scott_D_L

    The more I think about these issues, the more I think it is a routing problem.  That have been lasting for 14 months in a row.  Question like this, do you happen to have many subnets behind those firewalls ?  I think XG is screwed up when routing with VPN more than anything else.  In our cases, some subnets falls down altogether with the VPN.  And all of this time, I can monitor it from home with a Teamviewer session.  When the VPN goes back, so are fallen subnets.  I wonder if the boss at Sophos would himself be able to work with falling VPNs 16 month in a row ...

Children
No Data