Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 7789 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

1/LAN stops working on XG230

AdamVanDusen

1 / LAN stops working.  We have had twice now where we lose all outside connections.  We have changed to a backup internet and can get to the web interface and use tools to ping anything on the outside through 2/WAN. We think we "fix" the issue by changing the port to DHCP or Static and rebooting.  We have gone from Static where we started to DHCP and it started working.  Stopped two days later, we changed back to static and rebooted.  Worked again.  That is where we currently are sitting.



This thread was automatically locked due to age.
  • 0

    Hi,

    I don't have any answers for you unfortunately but do you think it is similar behaviour as described in this thread?

    https://community.sophos.com/products/xg-firewall/f/network-and-routing/80918/single-wan-internet-link---watchdog-configuration-possible

    What version of XG are you running?

    Cheers,

  • 0 in reply to gavo_nz

    Adam,

    contact the Sophos Support and open a ticket. Let us know.

    Thanks

  • 0

    Hi Adam,

    I did not quite understand the question here. If the LAN port is fluctuating can you check into diagonostics> log viewer section? Do you find any failure logs for LAN interface here ?

    If that is not the problem, can you please elaborate it again?provide concise information.

    Thanks

  • 0

    HI AdamVanDusen, 

     

    As per your issue you loose internet connection after 2-3 days , seems consistent unless you reboot the appliance would need to conduct simple test 

    Test 1.

    First, check the arp table for WAN interface if the Gateway address is associated with a Mac Address . If it is complete then it is possible the ARP entry on the Router is deleted. If it shows "In-complete"  you may add a Static Arp Entry for the same and the MAC address would be your WAN gateway's MAC address.

    To diagnose this issue could you run a command in console/SSH 

    console >system diagnostics utilities arp ping interface PortB (Gateway address) 

    If you got the reply , you may check again if the internet connection is restored or not . 

    If the connection is restored then it is possible that the ISP gateway may have rebooted automatically and the ARP table on the router is wiped clean. Now at this stage the XG appliance already have an ARP entry and would not send again .

    You would need to follow two steps if necessary to maintain the ARP on the ISP gateway . 

    Connect a Common Layer 2 switch in between the WAN interface and ISP connection . If that does not work , Arp bind the MAC address with XG WAN address on the Gateway Router. 

    Hope this would resolve your issue. 

    Thanks and Regards

    Aditya Patel | Network and Security Engineer

     

     

  • 0 in reply to gavo_nz

    It is close but opposite.  His's WAN port stops working where our LAN port stops working.  We are on 15.01, we are going to upgrade but this is our busy season so we are wanting to wait until January.

  • 0 in reply to AdamVanDusen

    HI AdamVanDusen, 

    you may use the same Steps for you LAN as Well, since its your premise you may check the ARP table on the Switch . Also check if the LAN address entry is registered . If you using L3 device is LAN then ARP ping it , if a L2 device  Arp Ping to one of the systems from XG .

    Thanks 

    Aditya Patel