Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 6 replies
  • Answers 3 answers
  • Subscribers 28 subscribers
  • Views 45454 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Factory reset of XG85

AttilaPapai

How can I factory reset the entire XG85 device? I misconfigured it and now I'm unable to access it. 
Pushing the Reset button on the back for a while did not help.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to sachingurung

    Hi,

    Thanks, I found this page too. It probably helps.

    But as I mentioned I'm unable to access the device as of now. These steps you linked requires me to log in to the device.

    Isn't there a hardware factory reset? Like pressing some of the buttons together for a while or so?

    Thanks!

  • 0 in reply to AttilaPapai

    Hi,

    If you forgot password to login please refer this link: https://community.sophos.com/kb/en-US/123732.

    Thanks

  • +1 in reply to AttilaPapai

    You can perform a full factory reset from the serial console, at the logon prompt instead of entering your password type "RESET" (it needs to be in all uppercase and without the quote marks) at the resulting menu select either 1 or 2, as you have a XG85 I don't believe you will see option 3. (for larger appliances option 3 is useful as it will also erase the iView reporting database)

    If you are unsure of how to set up the serial console connection please check out https://community.sophos.com/kb/en-us/123196.

    Please be aware that the appliance will reboot and when it comes up it will need to be configured as expected, however you will not need to register the appliance again.

  • 0 in reply to Leon.Friend

    Thanks Leon!

    The serial console is my last chance. Unfortunately I have no device with RS232 port. It's very old technology. I have to get a USB-Serial converter first.

    So after I registered my device I chose DHCP instead of Static IP in the LAN configuration. I believe that was the main reason to lost connection with the device. 
    I connected the XG to a router with DHCP enabled and I saw it got an IP address but I can't do anything with it: it does not respond to SSH connection nor the UI on port 4444 is accessible. Nmap reports no open ports at all. It's interesting how easy to lock me up from the device.

  • 0 in reply to AttilaPapai

    Did you move the network cable from port2 to port1, it actually sounds like you are trying to connect through the WAN interface which does not have any inbound connections enabled by default.

    If it is a policy issue you can enable access on all zones temporally by disabling the routing and firewall policies so that you can log in and correct the configuration (see the following KB article, don't forget to re-enable routing and the policies when you are done.) This would not require defaulting the appliance, but as an emergency access mechanism you do need to be able to access the appliance via SSH or the Serial Console.

    How to Access the Admin Console From Any Zone: https://community.sophos.com/kb/en-US/123542 

    Being that the XG85 is going to be the router in the network I would not recommend using DHCP for the LAN interface, normally you would have it's IP Address statically assigned. For staging purposes often what happens is you connect to the local network via the WAN interface (with DHCP) and place your laptop on the LAN side with a static address so you can configure it and not impact your existing network until you are ready to cut over.

    RS232 while an older technology is still current and highly reliable as such it is still used my many firewalls, routers, switches, switches as a recovery mechanism. If you are regularly working with hardware it can be useful to have a USB to Serial Adaptor on hand.