Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 11 replies
  • Answers 2 answers
  • Subscribers 31 subscribers
  • Views 16973 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Add AP15 to XG-Firewall does not work

MaxKast

Hi, i have a problem.

I use SFVH (SFOS 15.01.0 MR-2) with home licence on a shuttle barebone. Bevor i use UTM with home license and 2 AP15 - this runs fine.

Now i changed to the XG and the AP15 are gone.

In the dashboard i could see 2 pending Wireless APs. After clicking i  landed in the section "Protection > Wireless Protection > Access Points". There i could see in the section "Pending Access Points" the text "Loading..." and nothing happens.

I don't use "Bridge to VLAN", but "Bridge to AP LAN". The frequency band is 2.4GHz.

The DHCP of the XG give booth APs a correct IP.

Booth APs are ping-able.

I made a new "Access Point Group" and could add both APs as new items.

Now i need to accept the APs. But it is not possible, because of the running "Loading...".

I need help please!

How could i use my AP15 with XG?

greetings Max



This thread was automatically locked due to age.
  • 0

    Max,

    contact the Sophos Support. It is a know bug.

    Thanks.

  • 0 in reply to lferrara

    Luk,

    it is not possible to open a ticket for home users.

    So i need to find a solution to fix the problem without the technical support from Sophos.

    I need help, please!

    Greetings Max

  • 0 in reply to MaxKast

    Max,

    as I know in order to fix the issue, the support will edit the DB and get the AP available inside the Web GUI. I agree with you that they should release a proper fix or post a thread where they explain how to fix the issue using CLI.

    Here there are Admins that try Sophos XG before deploying it to production and with version 15, at the moment, this product needs big improvements.
    I saw the AP issue on other threads. In my case, my Av Engines are not updating since 7th of May and there is not a fix. I have to format the XG, which is not very professional (even if I am using it at home). Why do I need to format a device if it is not my fault?

    Unbelievable!

  • 0

    I'm in the same boat with a new XG install and an AP15. At this stage it is only testing, but it took me a couple of hours of testing before I came here and found other people with the same issue caused by a known bug. Maybe there needs to be a central place with this kind of information available?

    I want to like the XG, it seems to have good future potential, but the more I use it, the less I am in love with it. I've heard that Release 2 is supposed to bring a lot of fixes and updates, and I hope it does, because at this stage I wouldn't recommend an XG to any of our clients.

    We are a Sophos Partner so we have access to support, but we really shouldn't have to go through support just to get an AP (which was working fine on UTM 9.4) up and running.

  • 0 in reply to hucmat

    i don't have confident introduce XG to clients.

  • 0 in reply to DennisKho

    Today i install the new SFOS 15.01.0 MR-3 firmware.

    The bug with the pending access points is still there. 

    That sucks.

    SOPHOS - How should we test the new firewall, when we can't integrate the access points?

    It's a shame, that our group of free testers are getting no support from Sophos.

  • 0 in reply to lferrara

    That is interesting.  I have two AP15s working on an XG (virtual SFOS).  They were slow to sync up initially, but work fine without doing anything to them.

  • 0 in reply to ScottBrown

    Today i tried an AP55, but it's the same problem - pending all the time.

    So waiting on the next update...

    greetings

  • 0

    I have XG MR-2 (virtual) and AP10 connected, and everything works well. It is configured on trunk port, and bound to a specific VLAN.

    Wifi network is configured as 'Separate Zone'. I tried to configure as 'Bridge to VLAN' but didn't worked as expected.

    I had some trouble to allow the communication initially, but it was a problem how to get initial configuration on that port, configuring tagged / untagged VLAN communication.

  • 0

    Hi all,

    I managed to solve my issue with the AP15 not showing up on XG.  I'm posting this here in the hopes it may help someone in the future.

    I upgraded my XG from MR2 to MR3 hoping this would solve the issue, but it did nothing to help. I logged a support call with Sophos and they diagnosed the AP as having a corrupt firmware and would replace it. Ok that is fine, but I thought that doesn't sound right. The AP was working fine on UTM 9.3 and then suddenly not on SFOS 15. I moved the AP back to UTM 9.3 and it worked as before. I figured I'd have a look in the backend of the SFOS software and see if anything obvious shows up. After a quick look around, I managed to find what I thought might be the issue. Turns out it was and now my AP15 is working as expected.

    Here are the steps I used.  Beware as you can cause all kinds of damage by using the wrong commands in the advanced shell feature of the firewall.  In these instructions 15.01.0 MR-3# is the shell prompt.

    1. SSH into the the XG firewall

    2. Select 5. Device Management

    3. Select 3. Advanced Shell  (This will drop you to a linux shell in the /tmp directory)

    4. 15.01.0 MR-3#  cd  awed  (change to the awed directory)

    5. 15.01.0 MR-3# ls  (show the directory contents)

    6. In this directory you should see 2 files matching the Serial Number of of your APs. The 2 files will have an .ap and a .apcfg extension.

    7. 15.01.0 MR-3# rm <APSerialNumber>.ap*   (This will remove the configuration for the access point)

    8. Within the XG appliance  admin interface you should now see the AP as a pending access point.

    9. 15.01.0 MR-3# exit 

    Hopefully this helps somebody out and can save a lot of frustration.

    Cheers,

    Matt.