We have some bigger issues with Version 18, where TCP traffic just silently gets reset. We have opened a Support Ticket a couple of weeks ago, and we had to add the specific firewall rule to the ATP exception list via CLI:
set ips ac_atp exception fwrules %FWRULENR%
Sophos then released a patch and we could remove the exception again.
Now the issue appears with a different application and we again couldn't find anything in the logs. We then just added the FW rule to the 'ips ac_atp exception' and see there, it works again.
What I would like to know, if other customers have the same experience with v18 and why are there no logs available to see this traffic being reset/blocked?
Why do we have to set a rule via CLI on the Firewall Rule and why does the GUI exception list not work?
In general we're very unhappy with the quality of the Sophos XG. It's crazy how much time and money we spend on troubleshooting issues after a minor or major upgrade. Either we have software bugs or an appliance would just not come up again after a reboot.
This thread was automatically locked due to age.
