Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 9 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 1612 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect only connects one time - Strongswan service needs to be killed and restarted to connect again

Stefan Prokopf

Hi,

i got an issue with a Windows 11 client. The Sophos Connect client using an existing IPsecVPN connection doesnt connect anymore.

On investigation i figured out, that the client connects one time after reboot - if i disconnect the session and try to connect again, the connection fails. At the Firewall i just can see an log entry with "Timeout" then. The logfile at the client tells "sophos connect befehl konnte nicht an ipsec dienst gesendet werden" (could not send command to ipsec service.

I reinstalled the Sophos Connect Service, deleted the SophosConnect Folder at programmx86, rebootet the machine and installed the client again. This didnt resolve the issue. During deinstallation, the service Strongswan coulnd be stopped.

The process charon-svc.exe needs to be killed in order to be able to stop the strongswan service.

Instead of reboot this also makes able to connect once again - after disconnect, stop strongswan service and during that try of stoping the service the process charon-svc needs to be killed. After restart of the strongswan service the connection can be established once.

Any Idea what needed to be cleaned addtional to get the Connect client again to work properly?

Thanks,

Stefan



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Stefan Prokopf

    Suspecting an issue with the System ends. Try to connect the same user with another PC for a test.

    Can you share the feedback by updating Windows 11?

    Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    The question is - can I do any cleanup more than just deinstall and delete programmx86\Sophos Folder?

    There must be something remain bad at the system, i couldnt cleanup...

    Again: This issue just occurs after one connection did work. Then i disconnect the IPSec VPN at this client and then the connection fails. A reboot or as described above killing the service allows again to connect once. This procedure can repeated.

    The issue is the same if I use different users. I just got that issue at this specific PC. Connections at another PC with same user(s) work fine. Also at this PC the connection worke fine for month. It seems that something must happend that broke this "Strongswan" service - as i can not stop the service when the issue appears, that i cant establish a second connection after reboot.

Unfiltered HTML