Hi there,
I'm running a software based (installed on a X86 platform) XG firewall (SFOS 15.01.0 MR-3).
Very occasionally (maybe once every couple of months) I have an odd issue where I lose connectivity to my upstream WAN/Internet provider. The interface connected to the WAN reports "connected" but status "down". In this state the firewall is unable to ping the WAN/Internet provider gateway address (or anything beyond). The inside interface remains running and I can connect to the firewall from the internal network. Rebooting the CPE to the WAN provider doesn't restore connectivity, rebooting the firewall does. The WAN/Internet interface is set to get its address from the provider via DHCP, but the IP address it gets is static (doesn't change).
I have a couple of questions about this (and I apologise in advance if this is covered in the documentation, but I wasn't able to specifically find it if it is).
- How do you administratively bring an interface down/up on the firewall? I would like to test if this restores connectivity (not convinced it will given a reboot of the CPE physically disconnects and reconnects the interface)
- The firewall sends an email when it loses connectivity to the WAN/Internet. Is it possible to also have the firewall either shutdown/restart the WAN network interface, or simply reboot when it detects this condition? I had a look at WAN gateway failover but it doesn't appear that this is possible (only switching to an alternate gateway, which I don't have).
I had a look in the logs but couldn't see any messages that would (in my mind) give me a clue as to what's going on.
Any thoughts anyone has on this would be appreciated.
Cheers,
This thread was automatically locked due to age.
