Sophos DDNS service is not updating the IP

I'm also using no-ip. Just logged in to their website and see the last update was almost 12 hours ago. XG log tells there are updates every 5 minutes.

Not sure if this is coincidence, but around the time the last update took place according to noip website was also just after the time that we had some planned downtime where also the internet connection was briefly disconnected (while XG kept running).

HI

Yes we are experiencing the same problem. Using a XG106 on MR4. Restarted and waited a few minutes.  It does show the update was successful but it did not sync/propagate to other DNS servers.

Update .. I have did a new test on a nother Firewall (XG210), if you try to create a new DDNS hostname , the new hostname will be created but never will be bindend with your public IP address. I guess  the DDNS service is not working fine. More info has to be provided from Sophos support . waiting their feedback.

Best Regards,

Xebato

You need to create the new ddns hostname on the no-ip website first before you can use and succesfully update it....

The no-ip was only an example that DDNS service is working fine on the Firewall. However I would like to know if Sophos DDNS service is working fine . Can you please test the Sophos DDNS and share your result.

Best Regards,

Hi

I just tested FreeDNS and that is working fine.  Sophos DynDNS is not working

Hi Karel, Thanks for the confirmation, I believe the problem is related to the large maintenance that is currently running. I am not sure what are the other affected services.

Best Regard,

Hi Xebato,

I tried to replicate this issue in my LAB, but I was able to configure DDNS using Sophos service. 

Could you please replicate the issue and collect the following logs from your firewall. 

SSH into the XG firewall by following this KBA: Sophos XG Firewall: How to SSH to the firewall using PuTTY utility

• To connect using SSH, you may use any SSH client to connect to port 22 of the SFOS device.
• Select option 5 Device Management.
• Select option 3 Advanced Shell.

Run the following command to collect syslog: tail -f /log/syslog.log 

You also need to put the CSC service in debugging and collect csc logs. 

Run the following command to put the csc service in debug: csc custom debug

Note: Run the same command to remove the service from debugging. 

Run the following command to collect csc logs: tail -f /log/csc.log 

Send these logs to me via PM. 

Thanks,

Hello Harsh, Thanks for your answer.  I can also create a new hostname successfully but will never be bindend with the public IP. I will send you now the requested logs.

Best Regards,

Xebato

Just to show you are not the only one, I am experiencing the same issue on my System