Need Information: What is needed for Remote Access to a XG with factory default settings and no internet?

There are plenty ways to do it. 

For example a mobile phone, connected to a device which is connected to the XG is a valid way to provide access. 

Maybe the reason for your support request would be good to know. If the appliance "seems" to be factory reset ( for example HA AUX is booting without config), there are still Log files and other information stored on the hard disk.

Those Log files are important to know, what is going on. 

If you see reboots or kernel panic, a PC connected to the serial/comm port would be nice to protocol, what is the reason for the kernel panic. 

Hi,

i update MR14 to MR14-1 and it´s restored to factory settings after the reboot.
The SMTP Policies Rules has a MIME Filter enabled and this faild the upgrade process.

Even if the File Protection is disabled and saved.

Third Level has currently no idea and wants to have a remote session to this XG ..

You can see the migration failed in the migration.log? 

Backup of your MR14 should be ok to reproduce this upgrade. 

You can see the migration failed in the migration.log? 

Backup of your MR14 should be ok to reproduce this upgrade. 

Yes

Old version is 17.321 and currentversion is 17.322
Database is upgrading to dbv17.322
Check migration for version dbv17.322
Applying migration for version dbv17.322
1249 2020-09-30 19:08:50.043 GMTERROR: update or delete on table "tblfiletype_mimeheader" violates foreign key constraint "tblsmtpprofile_whitelisttype_filetypedetail_fkey" on table "tblsmtpprofile_whitelisttype"
1249 2020-09-30 19:08:50.043 GMTDETAIL: Key (detailid)=(2) is still referenced from table "tblsmtpprofile_whitelisttype".
1249 2020-09-30 19:08:50.043 GMTSTATEMENT: DELETE FROM tblfiletype_mimeheader WHERE mimeheader IN ('text/x-msdos-batch', 'text/x-shellscript') AND filetypeid=(SELECT id FROM tblfiletypecat WHERE name=translateDefaultConfig('tblfiletypecat','name','Executable Files') LIMIT 1);
psql:/_conf/DB/dbv17.322/corporate.sql:27: ERROR: update or delete on table "tblfiletype_mimeheader" violates foreign key constraint "tblsmtpprofile_whitelisttype_filetypedetail_fkey" on table "tblsmtpprofile_whitelisttype"
DETAIL: Key (detailid)=(2) is still referenced from table "tblsmtpprofile_whitelisttype".
/bin/psql -1 -p 5432 -U nobody -q -d corporate -f /_conf//DB/dbv17.322/corporate.sql Failed
UPDATE 1
Stopping database

Ill try and see if i can hook the XG to a cheap LANCOM Router 

Could you please post your Case ID to emmosophos or , so they can follow up this request. 

If you disable the configuration, that config file could still be present in the configuration database, so it could still block the database to migrate. 

Such cases needs to be picked up and resolved on a firmware level. 

I have a case open and Patel has the Case ID already (03099020,i think so).

One Problem is the support from India, Sophos has shut down German Support at all.
You don´t get anyone from Sophos Germany (Support, Sales, ...)

It´s already at level 3 and they don´t have an idea.

How do i pick/change this at firmware level.

I already tried to install the Hardware Appliance Image into Virtual Box, but only the smaller XG105,115 are running in virtual box.
If i try this with Hyper-V and the virtual Image i can only load the config with 10 NIC´s enabled.
But after the firsts reboot , the restored config shuts down the NIC´s ...

Provide the Backup file with password and on which appliance this runs. This needs to be fixed in the firmware of XG itself, not on a appliance. 

All this is already at Sopshos Support.
I told them its an SG210r1 but they are testing againg XG 230.
I told them they are wrong, but they insist a XG 230 would be fine for testing.

Very frustrating.

They insist that i need to upload a firmware into slot 1 and boot from this slot...
My distributor in Marburg says, this will not work at all.

Sophos send me a Video in a very strange AVI format, to prove that a XG 230 can restore my backup.
But this AVI/RASC Format is unknow to most codecs. I can´t view this.

Must be some cheap Indian hacked codec...

XG230 is perfectly fine to import your backup. Especially it does not matter, which hardware you use.

You can import a SG SFOS Backup into a XG Hardware. There is no reason, why not. So the issue is your configuration database. This should be reproducible with a XG230. 

So you are saying, this is not reproducible? Because you are talking about the restore process, which as explained, works fine. 

yes, sophos can´t reproduce this behavior with a XG 230.

I can´t restore this backup into a virtual SFOS (17.5.14). log says that a SG210 backup can´t be restore into SFOS ...

See https://support.sophos.com/support/s/article/KB-000036245?language=en_US for more information. 

What happen, if you reimage your appliance with the current installation and restore the backup? This should actually resolve your problem. There is some old data in your config database, conflicting with the migration. 

The matrix seems to be incorect, as i can´t restore a SG210r1 Backup into a virtual SFOS.

SG210r1 has 6 physical NIC´s without Flexi Port. And some VM´s i tried had 6 NIC. And i can´t create a Hyper-V with more than 8 v NIC s. I needed to ad Legacy NIC´s to the VM, but this give more problems. 

I tried that more than once, most of the time the debug log in SFOS claims, that a SG210 can´t be restore ...

What do you meen with reimage?

The Matrix shows "NO" for backup from 1U/2U Appliances to a virtual Appliance. 

If you use a ISO stick and simply reinstall the XG firewall. This will reset the configuration database. Importing your Backup should resolve this issue going forward. 

Another approach would be, to let Sophos Support edit the configuration database and start to investigate, why there are configuration settings in your database, which cannot be migrated. Seems to be a (very?) old setting, which is not be usable anymore.