Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 18661 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Intermittent connection issues?

Jeff Crist

I've got an XG installed, super simple config right now, just the basic LAN to WAN policy and no filters, intrusion detection, etc turned on just to rule things out.

A couple users on the network are complaining on intermittent connection issues.  The XG is running V15 firmware from about 5 or 6 months ago (I'm installing update to V16 tonight).

I'm just wondering if this type of issue in this simple of a setup has been seen before (only 9 users on the network, WAN speed is only 30mbps) and if it might be a bug in the firmware that has since been fixed (guess I'll soon find out?)

Also wondering, where I should start as far as what type of report I should be looking at and what I should be looking for to identify any issues?



This thread was automatically locked due to age.
Parents
  • 0

    Jeff,

    I realize you said you had a simple config setup NOW, but did you at any point in the past have transparent authentication setup?

    If you STILL have that turned on (remember, in v15, it is turned on via the console not the web gui), even if NO rules reference the user information, traffic can (will) still be blocked.  

    If so, there is a KNOWN ISSUE where every hour your traffic will be dropped for two minutes.

    I chased this issue this past summer before they came out with a known issue note for it.  Drove me **NUTS**. Let me see if I can find it... ah. Here it is...

    https://community.sophos.com/kb/en-us/125468

     

  • 0 in reply to ChavousCamp

    I've been having this same issue.  I implemented STAS, but I have not implemented rules per user.  This is my first Sophos device, coming from SonicWall.  We had Single Sign-On with the SW, but this STAS is a bit different.  

    I notice that on the STAS suite, I can see live users which is great, but they'll drop out after while, yet they still have network connectivity on their systems.  Then, exactly as you mention, we lose internet for a minute or so every hour.  Matches the 3600sec setting on the suite.  Thanks to your post, I can stop hunting down a ghost and focus on the right culprit. 

    I really don't understand why it's set to drop connection without a rule in place.  You state it's a "Known Issue", yet I'm running  SFOS 16.05 MR-8, and it has not been resolved.

    Should I follow the config steps in the article you posted to change the time to a full day?  Is that done through SSH to the firewall, as it doesn't really state where the commands are being run?

Reply
  • 0 in reply to ChavousCamp

    I've been having this same issue.  I implemented STAS, but I have not implemented rules per user.  This is my first Sophos device, coming from SonicWall.  We had Single Sign-On with the SW, but this STAS is a bit different.  

    I notice that on the STAS suite, I can see live users which is great, but they'll drop out after while, yet they still have network connectivity on their systems.  Then, exactly as you mention, we lose internet for a minute or so every hour.  Matches the 3600sec setting on the suite.  Thanks to your post, I can stop hunting down a ghost and focus on the right culprit. 

    I really don't understand why it's set to drop connection without a rule in place.  You state it's a "Known Issue", yet I'm running  SFOS 16.05 MR-8, and it has not been resolved.

    Should I follow the config steps in the article you posted to change the time to a full day?  Is that done through SSH to the firewall, as it doesn't really state where the commands are being run?

Children
No Data