Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1619 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos xg 8.5.2-mr-2 pattern fail to update

lenyick

Sophos xg 8.5.2-mr-2 pattern fail to update

SFVH_SO01_SFOS 18.5.2 MR-2-Build380# tail -f /log/u2d.log
DEBUG 2022-02-11 00:44:07Z [27527]: --port = 443
DEBUG 2022-02-11 00:44:07Z [27527]: Added new server : Host - u2d.sophos.com
, Port - 443
DEBUG 2022-02-11 00:44:07Z [27527]: --u2d_proto = 2.00
DEBUG 2022-02-11 00:44:07Z [27527]: Final query string is :
?&serialkey=xxxxxxxxxxxxxxx&deviceid=xxxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxxx&fwvers
ion=18.5.2.380&productcode=CN&appmodel=SF01V&appvendor=SO01&useragent=SF&oem=Sop
hos&pkg_sysupdate_version=2&u2d_proto=2.00
DEBUG 2022-02-11 00:44:08Z [27527]: Response code : 200
DEBUG 2022-02-11 00:44:08Z [27527]: Response body :

DEBUG 2022-02-11 00:44:08Z [27527]: Response length : 11

DEBUG 2022-02-11 01:01:16Z [32767]: --pkg_sysupdate_version = 2
DEBUG 2022-02-11 01:01:16Z [32767]: Added new server : Host - ap-northeast-1
.u2d.sophos.com., Port - 443
DEBUG 2022-02-11 01:01:16Z [32767]: Added new server : Host - eu-west-1.u2d.
sophos.com., Port - 443
DEBUG 2022-02-11 01:01:16Z [32767]: Added new server : Host - us-west-2.u2d.
sophos.com., Port - 443



This thread was automatically locked due to age.
  • 0

    Hi lenyick

    Stop and restart AV services from CONFIGURE --->System Services  > Services > Anti Virus; now do a manual update from the UI and let us know if that works. 

    https://docs.sophos.com/nsg/sophos-firewall/17.5/Help/en-us/webhelp/onlinehelp/nsg/sfos/concepts/PatternManage.html

    Verify the time settings on the XG appliance. Check DNS status CONFIGURE --->Network --->DNS--->Check "Test DNS Lookup" 

    Thanks

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Time settings is correct
    Dns status check (Lookup successful)
    stop and restart av download file tried manual update failed
    Tried click on update pattern now (message (pattern update started successfully)
    status (downloading) then shows as failed

  • 0 in reply to lenyick

    Hi lenyick ,

    Are you managing your firewall in HA or via SFM/CFM? If yes update management on or set over there? 

     

    Thanks and Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Not manage HA or SFM/CFM
    log into XG, don't understand why even download pattern fail to update
    I tried updating with the sfos_patterns_update.tar pattern updates like above failed
    extracted the sfos_patterns_update and tried updating with avira_4.00_1.0.418720_full.tar.gz.gpg
    savi_1.00_1.0.17554_full.tar.gz.gpg ips_18.0_v18_18.18.99.tar.gz.gpg all failed with invalid package

    202 2-02-13 16:37:27 Up2Date Failed Failed to download file avira_4.00_1.0.418729_full.tar.gz.gpg 18030

  • +1

    Hello there,

    Thank you for contacting the Sophos Community.

    Could you SSH into the XG and run the following nslookup from the Advanced Shell of the appliance:

    # nslookup d3tusa5dvomhzy.cloudfront.net

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0 in reply to emmosophos

    Thanks all for all the help.  

    Emmanuel  i did a nslookup of d3tusa5dvomhzy.cloudfront.net  then  click the update button and all pattern download and update successful 

    thank you.

  • 0

    We updated SFOS 18.0.3 to SFOS 18.5.2 in HA A/P.

    We appear to have an issue where the following services don't start automatically and must be started using 'service <name>:start -ds sync' from command line after the system boots.

    • red
    • sslvpn
    • access_server
    • fqdnd
    • dnsgrabber

    We also have the same issue as you above, restarting Anti-Virus service does not help.

    We have the following in our u2d.log file.

    DEBUG     2022-02-17 09:40:51Z [13596]: Received version : 2.0.008
DEBUG     2022-02-17 09:40:51Z [13596]: Received size : 1246101
DEBUG     2022-02-17 09:40:51Z [13596]: Received md5sum : 8162eb9d995784647ff19f6da8451235
DEBUG     2022-02-17 09:40:51Z [13596]: Received module : geoip
DEBUG     2022-02-17 09:40:51Z [13596]: Received cv : 1.00
DEBUG     2022-02-17 09:40:51Z [13596]: Received type : full
WARNING   2022-02-17 09:40:51Z [13596]: A new update is available for avira but we are ignoring it as download for a previous update is in progress.
WARNING   2022-02-17 09:40:51Z [13596]: A new update is available for savi but we are ignoring it as download for a previous update is in progress.
WARNING   2022-02-17 09:40:51Z [13596]: A new update is available for ips but we are ignoring it as download for a previous update is in progress.
WARNING   2022-02-17 09:40:51Z [13596]: A new update is available for apfw but we are ignoring it as download for a previous update is in progress.
WARNING   2022-02-17 09:40:51Z [13596]: A new update is available for redfw but we are ignoring it as download for a previous update is in progress.
WARNING   2022-02-17 09:40:51Z [13596]: A new update is available for geoip but we are ignoring it as download for a previous update is in progress.

    We have case ID 04927859 logged with Sophos Support.

    Awaiting to hear back from them now.

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?