Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 27 subscribers
  • Views 904 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem with firewall-accelaration and ping

Luc_GLLM

Same problem of this post:

https://community.sophos.com/xg-firewall/f/discussions/120151/unexplainable-problem---unable-to-ping-some-hosts

Disabling firewall-acceleration all work well.

Has anyone had the same problems? Were you able to investigate better?



This thread was automatically locked due to age.
Parents
  • 0

    Do you have migrated SD-WAN Rules or is this a fresh installation? 

  • 0 in reply to LuCar Toni

    It's not a fresh install but I don't have any sd-wan rules. In practice this firewall was in a different location, now I took it to the main office and I wanted to replace the current pfsense with the xg. I cleaned it from all the rules and redone the configuration from scratch but I come across these strange errors, from some computers I can ping outwards without problems while from other computers only the first packet comes out then the others all expire .
    If I disable firewall-accelerated then the problems are over.
    Previously the version was 17, but I had already migrated to 18 and everything worked in the previous location.
    I do not understand why...

  • 0 in reply to Luc_GLLM

    Can you reimage this appliance with a V18 image? 

    https://support.sophos.com/support/s/article/KB-000036812?language=en_US

    Only if you have time for this and the new configuration is not that big.

    Because i can think, there is an problem with the config migration and something is wrong with the fastpath technology on this appliance. 

  • 0 in reply to LuCar Toni

    it could be a good idea, this is a virtual appliance and I'm afraid that doing the re-image will change my serial and then my NFR license will no longer work.

  • 0 in reply to Luc_GLLM

    You can reuse your SN as often as you like but not at the same time - So if you reimage your appliance, delete the old at this time, it will not be any issue to reuse your SN. 

    Just be careful by power down the old appliance and power up this later. 

    XG will generate on registration a token and device ID, which will be booked on Sophos licensing servers. Only the new appliance can communicate to our backend server. The old will be removed and cannot communicate anymore. 

Reply
  • 0 in reply to Luc_GLLM

    You can reuse your SN as often as you like but not at the same time - So if you reimage your appliance, delete the old at this time, it will not be any issue to reuse your SN. 

    Just be careful by power down the old appliance and power up this later. 

    XG will generate on registration a token and device ID, which will be booked on Sophos licensing servers. Only the new appliance can communicate to our backend server. The old will be removed and cannot communicate anymore. 

Children