Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 28 subscribers
  • Views 501 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Printing delayed - invalid traffic in log viewer

Dan Williams

Hi

we have two new XGS2100s in HA that have replaced an XG230

On the older XG230 under OS 18.0.5 we had problems with printing from a web server externally to our internal Star CloudPRNT enabled devices (over TCP443).

They are very sporadic and can take 10-15 mins to eventually print.

Having replaced the firewalls with new XGS on 19.5 we still have the problem.

If the customer connects the printer via any other router/firewall (not sophos) then it works straight away.

This is happening at multiple sites on multiple devices, with Sophos XGS the common issue.

I can see that there was a similar issue raised around a year ago on the forum but the fix was not obvious. (possibly resolved in 18.5.2??)

Delayed Printing / Invalid Traffic - Discussions - Sophos Firewall - Sophos Community

Are there any further updates or advice on how to resolve this??

thanks Dan



This thread was automatically locked due to age.
Parents
  • 0

    Hello  ,

    Good day and thanks for reaching out to Sophos Community, hope you are well

    are there any drop traffic from printer in Intrusion Prevention > DoS attacks? If yes can you add printer in DoS bypass rule

    If this would still persist kindly create a support ticket for this and please share to us via DM or by replying to this thread. 

    Many thanks for your time and patience and thank you for choosing Sophos

    Cheers,

  • 0 in reply to Raphael Alganes

    Hi.

    Log viewer for IPS/ATP/etc shows nothing at all to explain the dropped packets. No DoS etc recorded.

    I have an ACL that allows all traffic outbound from the printer IP with no filters/web policy/IPS...

    Exclusion set on the URL and IP of the printer server.

    TLS/SSL inspection switched off.

    I tried the following; Sophos Firewall: Bypass a specific firewall rule for application classification and ATP

    Everything else on the customers network working perfectly.

    Plug the printer in to a draytek and it works first time.

    I'll log a support ticket and see if they can see anything.

    thx

    Dan

  • 0 in reply to Dan Williams

    Hello thank you for your update, please do share with us the generated caseID via PM or by replying to this thread. 

    Many thanks for your time and patience and thank you for choosing Sophos

    Cheers,

  • 0 in reply to Raphael Alganes

    Hi. Case is 06409644 

    Support have pretty much disabled all filtering for a rule that matches that source IP of our printers out to the WAN/Internet.

    We have now tried to disabled the firewall acceleration but this doesnt seemed to have helped at all.

    The customer continues to connect printers to the internet via another manufacturers router/firewall to get around the issue but this is not ideal.

    Regards

    Dan

Reply
  • 0 in reply to Raphael Alganes

    Hi. Case is 06409644 

    Support have pretty much disabled all filtering for a rule that matches that source IP of our printers out to the WAN/Internet.

    We have now tried to disabled the firewall acceleration but this doesnt seemed to have helped at all.

    The customer continues to connect printers to the internet via another manufacturers router/firewall to get around the issue but this is not ideal.

    Regards

    Dan

Children