Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 29 subscribers
  • Views 2666 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG and UniFi WLAN Controller > DHCP Timeout

Florian Krammer

Hi guys,

the following installation:

Gateway/DHCP: Sophos XG86 v.18.2

UniFi Cloudkey Gen2 v 5.14.23

3x UniFi AP AC FlexHD (Current firmware)

Clients: iPhones, iPads, MacBooks

 

The following problem:

The APs provide a Mesh WLAN and there are always problems with the AP change, that the clients obviously don't get an IP address. This means that the connection to the AP only works if the client reports: No internet connection or if you look at the details, he doesn't get an IP. In the Sophos log it constantly reports errors from the AP to the cloudkey with invalid traffic:

 

Here the error on the unifi controller:

 

The WLAN is not separated and runs in the LAN of the XG and also uses the DHCP server.

It would be great if someone had an idea or an approach to what this could be due.

Thanks a lot and best regards



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    try increasing the DHCP address renew time and report back your results.

    Also the errors indicate there is no firewall rule matching that and there are no active connections.

    Further review the logviewer -> system report to see how often the IP addresses are refreshed?

    Ian

  • 0 in reply to rfcat_vk

    Hello Ian, thank you for your feedback.

    The DHCP server is running on default: default lease time 1440, maximum lease time 2880.

    The devices are on the Sophos LAN, I have a LAN to LAN rule:
    Source: LAN, Any Host
    Destination: LAN, Any Host
    What: Any Service Accept 

    I cannot find any entries for IP address assignment in the Log viewer. I only see entries for DDNS ...

    Best regards Flo

Reply
  • 0 in reply to rfcat_vk

    Hello Ian, thank you for your feedback.

    The DHCP server is running on default: default lease time 1440, maximum lease time 2880.

    The devices are on the Sophos LAN, I have a LAN to LAN rule:
    Source: LAN, Any Host
    Destination: LAN, Any Host
    What: Any Service Accept 

    I cannot find any entries for IP address assignment in the Log viewer. I only see entries for DDNS ...

    Best regards Flo

Children