Factory reset of XG85

Hi,

Refer this: https://community.sophos.com/kb/en-us/123143.

I would suggest you to save and download backup after every changes, helps you get into the track a lot easier.

Thanks

Hi,

Thanks, I found this page too. It probably helps.

But as I mentioned I'm unable to access the device as of now. These steps you linked requires me to log in to the device.

Isn't there a hardware factory reset? Like pressing some of the buttons together for a while or so?

Thanks!

Hi,

If you forgot password to login please refer this link: https://community.sophos.com/kb/en-US/123732.

Thanks

You can perform a full factory reset from the serial console, at the logon prompt instead of entering your password type "RESET" (it needs to be in all uppercase and without the quote marks) at the resulting menu select either 1 or 2, as you have a XG85 I don't believe you will see option 3. (for larger appliances option 3 is useful as it will also erase the iView reporting database)

If you are unsure of how to set up the serial console connection please check out https://community.sophos.com/kb/en-us/123196.

Please be aware that the appliance will reboot and when it comes up it will need to be configured as expected, however you will not need to register the appliance again.

You can perform a full factory reset from the serial console, at the logon prompt instead of entering your password type "RESET" (it needs to be in all uppercase and without the quote marks) at the resulting menu select either 1 or 2, as you have a XG85 I don't believe you will see option 3. (for larger appliances option 3 is useful as it will also erase the iView reporting database)

If you are unsure of how to set up the serial console connection please check out https://community.sophos.com/kb/en-us/123196.

Please be aware that the appliance will reboot and when it comes up it will need to be configured as expected, however you will not need to register the appliance again.

Thanks Leon!

The serial console is my last chance. Unfortunately I have no device with RS232 port. It's very old technology. I have to get a USB-Serial converter first.

So after I registered my device I chose DHCP instead of Static IP in the LAN configuration. I believe that was the main reason to lost connection with the device. 
I connected the XG to a router with DHCP enabled and I saw it got an IP address but I can't do anything with it: it does not respond to SSH connection nor the UI on port 4444 is accessible. Nmap reports no open ports at all. It's interesting how easy to lock me up from the device.

Did you move the network cable from port2 to port1, it actually sounds like you are trying to connect through the WAN interface which does not have any inbound connections enabled by default.

If it is a policy issue you can enable access on all zones temporally by disabling the routing and firewall policies so that you can log in and correct the configuration (see the following KB article, don't forget to re-enable routing and the policies when you are done.) This would not require defaulting the appliance, but as an emergency access mechanism you do need to be able to access the appliance via SSH or the Serial Console.

How to Access the Admin Console From Any Zone: https://community.sophos.com/kb/en-US/123542 

Being that the XG85 is going to be the router in the network I would not recommend using DHCP for the LAN interface, normally you would have it's IP Address statically assigned. For staging purposes often what happens is you connect to the local network via the WAN interface (with DHCP) and place your laptop on the LAN side with a static address so you can configure it and not impact your existing network until you are ready to cut over.

RS232 while an older technology is still current and highly reliable as such it is still used my many firewalls, routers, switches, switches as a recovery mechanism. If you are regularly working with hardware it can be useful to have a USB to Serial Adaptor on hand.