Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Subscribers 28 subscribers
  • Views 1981 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

firewall-accelaration enable

Mariana Varanda

Hi, everyone

I just have an issue with my Firewall XG115 v18 MR-4... It rebooted in operation time, with no evidences why...

I contact the support sophos and they said to disable the firewall-accelaration feature. If I understand, this is tha fastpath and it seems to be a bug that should have been fixed  in v18. I want to understand what happens when disable this feature and why it cause the auto reboot.

Thank you!



This thread was automatically locked due to age.
Parents Reply Children
  • FormerMember
    +1 FormerMember in reply to Mariana Varanda

    Hi ,

    I haven't seen any new reports regarding firewall acceleration causing random reboots. However, I would suggest you temporary turn off this feature and provide your feedback. 

    Note: If disabling Firewall Acceleration, does temporarily resolve the problem, this still needs to be investigated. 

    I'd also suggest you set up a console connection to capture the next restart event if it ever happens. 

    Console Logging

    ===============

               Note: Though the article explicitly mentioned XG, it’s the same details for UTM

               Note: Be sure that the computer in question does not go into Standby or Hibernate while logging

    • Using PuTTY, go to 'Session' - 'Logging'
    • Here, select "All session output', and set the file name to a folder and name for later retrieval.
    • Configure the Serial connection to use the proper COM port on your PC and a Speed of 38400.
    • Start the session, and log in to ensure it is all proper.
    • Once logged in, you can leave it there or log out and leave the session at the password prompt. Either way, leave the session active and allow it to capture the output from the next restart.
    • Once that restart occurs, you can end the Serial connection and upload the PuTTY log file on your support case. 

    Run the following command to put the csc service in debug: 

    • csc custom debug 

    Thanks,

  • 0 in reply to FormerMember

    Hi! , thanks for the suggestion!

    I turned off the Firewall-acceleration feature and I'm monitoring closely but the sophos support said that the random reboot will not happen anymore with the feature turned off.

    Anyway, thank you very much!

  • 0 in reply to Mariana Varanda

    I'm glad to have found this blog post, as we are running a HA configured XG430 HA tandem with the exact same behavior. Massive ping drops, spontaneous  reboots and a system that might crawl to a complete stop over a period of time. We've logged a case with Sophos and on the basis of your info we too have disabled the firewall acceleration feature. We've been running like this for 2 weeks and the majority of issues have gone. We still have an occasional 1 ping loss ever so often when pinging across the different VLAN's.

    Pinging the main IP address on the fysical management address seems uninterrupted.Might this indicate the fact that the default gateways of all the other VLAN's that reside behind the same pysical LAN port and are managed by the firewall rules, are affected.