Web category allways identified as: none

Hi,

I think your Web Proxy is not able to connect to the WING servers. Take SSH to XG and go to option 5.Device Management> 3. Advance Shell and execute,

cd /log

cat WINGc.log (post the logs)

Then, restart web proxy from sysem services> services> Web proxy- restart.

Thanks

Hi,

I think your Web Proxy is not able to connect to the WING servers. Take SSH to XG and go to option 5.Device Management> 3. Advance Shell and execute,

cd /log

cat WINGc.log (post the logs)

Then, restart web proxy from sysem services> services> Web proxy- restart.

Thanks

Hi,

here is the log

Dec 23 10:14:21.253024 [MSG] tlv_get_version: version -> len:'8' val:'0.0.1.56'                     
                                                                                                    
ratios: resp/req: '-nan' wreq/req: '-nan' uncat/req: '-nan'                                         
Local stats: req: '0' resp: '0' pend: '0'                                                           
WINGs stats: req: '0' resp: '0' wlr: '0' pend: '0'                                                  
Matches: cat: '0' uncat: '0' none: '0' redirect '0'                                                 
Warn: crnch: '0' rtbld: '0' cbd: '0' cdd: '0' ncd: '0 perr: '0' uerr: '0' nrgs: '0', Bswp '0'       
Load: ctx: '343404' crx: '97' stx: '1846' srx: '3913'  reqs: '0' rsps: '0' lat: '0' ('0'/'0') last_r
: '0'                                                                                               
Cache: n(%f:'0.00') cch_sz: '0' cch_resp: '0' nTlds: '278' nUrls:'0' nCats: '90' nAppcats: '22' nApp
s: '2858' cch_part: '0'                                                                             
udp: req: '0' resp: '0' late_reply:'0'                                                              
Conn: s_ip: '52.28.130.115' s_port: '443'                                                           
Conn: s_fd: '9' s_state: 'READY' Connection:'TCP'                                                   
Dec 23 12:05:00.469340 [MSG] Terminating fd '12'                                                    
Dec 23 12:05:00.469442 [MSG] event_processor() fd '12', something wrong in reader..                 
Dec 23 12:05:00.469479 [MSG] Terminating fd '10'                                                    
Dec 23 12:05:00.469520 [MSG] event_processor() fd '10', something wrong in reader..                 
Dec 23 12:05:00.469560 [MSG] Terminating fd '11'                                                    
Dec 23 12:05:00.469599 [MSG] event_processor() fd '11', something wrong in reader..                 
Dec 23 12:05:00.469707 [MSG] Terminating fd '13'                                                    
Dec 23 12:05:00.469751 [MSG] event_processor() fd '13', something wrong in reader..                 
Dec 23 12:05:02.791983 [MSG] accept_traveller() client 10 connected.                                
Dec 23 12:05:02.792082 [MSG] accept_traveller() client 10 accepted..                                
Dec 23 12:05:02.792127 [MSG] accept_traveller() client -1 connected.                                
Dec 23 12:05:02.792170 [MSG] parse_traveller() WINGc client: ver '1' 'awarrenhttp_cfg';             
Dec 23 12:05:02.802593 [MSG] prepare_catinfo() DEFAULT LENGTH '1723' MAXCAT '1024'                  
Dec 23 12:05:02.802676 [MSG] prepare_catinfo() CUSTOM LENGTH '48' MAXCAT '1029'                     
Dec 23 12:05:02.802713 [MSG] prepare_catinfo() APPCAT LENGTH '394' MAXCAT '25'                      
Dec 23 12:05:02.803228 [MSG] prepare_catinfo() APP LENGTH '586' MAXCAT '3075'                       
Dec 23 12:05:12.876599 [MSG] Terminating fd '10'                                                    
Dec 23 12:05:12.876711 [MSG] event_processor() fd '10', something wrong in reader..                 
Dec 23 12:05:15.330060 [MSG] accept_traveller() client 10 connected.                                
Dec 23 12:05:15.330157 [MSG] accept_traveller() client 10 accepted..                                
Dec 23 12:05:15.330196 [MSG] accept_traveller() client 11 connected.                                
Dec 23 12:05:15.330233 [MSG] accept_traveller() client 11 accepted..                                
Dec 23 12:05:15.330273 [MSG] accept_traveller() client -1 connected.                                
Dec 23 12:05:15.330316 [MSG] parse_traveller() WINGc client: ver '1' 'awarrenhttp_2';               
Dec 23 12:05:15.341044 [MSG] prepare_catinfo() DEFAULT LENGTH '1723' MAXCAT '1024'                  
Dec 23 12:05:15.341123 [MSG] prepare_catinfo() CUSTOM LENGTH '48' MAXCAT '1029'                     
Dec 23 12:05:15.341160 [MSG] prepare_catinfo() APPCAT LENGTH '394' MAXCAT '25'                      
Dec 23 12:05:15.341670 [MSG] prepare_catinfo() APP LENGTH '586' MAXCAT '3075'                       
Dec 23 12:05:15.341793 [MSG] parse_traveller() WINGc client: ver '1' 'awarrenhttp_0';               
Dec 23 12:05:15.352284 [MSG] prepare_catinfo() DEFAULT LENGTH '1723' MAXCAT '1024'                  
Dec 23 12:05:15.352365 [MSG] prepare_catinfo() CUSTOM LENGTH '48' MAXCAT '1029'                     
Dec 23 12:05:15.352402 [MSG] prepare_catinfo() APPCAT LENGTH '394' MAXCAT '25'                      
Dec 23 12:05:15.352979 [MSG] prepare_catinfo() APP LENGTH '586' MAXCAT '3075'                       
Dec 23 12:05:15.353129 [MSG] accept_traveller() client 12 connected.                                
Dec 23 12:05:15.353176 [MSG] accept_traveller() client 12 accepted..                                
Dec 23 12:05:15.353212 [MSG] accept_traveller() client 13 connected.                                
Dec 23 12:05:15.353250 [MSG] accept_traveller() client 13 accepted..                                
Dec 23 12:05:15.353287 [MSG] accept_traveller() client -1 connected.                                
Dec 23 12:05:15.353331 [MSG] parse_traveller() WINGc client: ver '1' 'awarrenhttp_1';               
Dec 23 12:05:15.363519 [MSG] prepare_catinfo() DEFAULT LENGTH '1723' MAXCAT '1024'                  
Dec 23 12:05:15.363595 [MSG] prepare_catinfo() CUSTOM LENGTH '48' MAXCAT '1029'                     
Dec 23 12:05:15.363630 [MSG] prepare_catinfo() APPCAT LENGTH '394' MAXCAT '25'                      
Dec 23 12:05:15.364177 [MSG] prepare_catinfo() APP LENGTH '586' MAXCAT '3075'                       
Dec 23 12:05:15.364304 [MSG] parse_traveller() WINGc client: ver '1' 'awarrenhttp_3';               
Dec 23 12:05:15.374707 [MSG] prepare_catinfo() DEFAULT LENGTH '1723' MAXCAT '1024'                  
Dec 23 12:05:15.374786 [MSG] prepare_catinfo() CUSTOM LENGTH '48' MAXCAT '1029'                     
Dec 23 12:05:15.374822 [MSG] prepare_catinfo() APPCAT LENGTH '394' MAXCAT '25'                      
Dec 23 12:05:15.375398 [MSG] prepare_catinfo() APP LENGTH '586' MAXCAT '3075'                       
SFVH_SO01_SFOS 16.01.2# 

Hi,

the strange thing is, that a manual lookup in the firewall dashboard will work.

Hi,

Go to advance shell and restart, Garner (loggin daemon) & WINGc (categorization daemon) service.

service WINGC:restart -ds nosync

service garner:restart -ds nosync

Any help with that ?

Hi,

sorry, didn't work. Still get "none" to every website.

Sachin,

restarting the service did not help. Also there is some error I think even on the service name. Have a look at what I see from the CLI:

SFVH_SO01_SFOS 16.05.0 RC-1# service WINGc:restart -ds nosync
200 OK
SFVH_SO01_SFOS 16.05.0 RC-1# service WINGc:status -ds nosync
200 RUNNING

It should be a BUG. Waiting for the JIRA and its release date.

Thanks

Hi, every one

i have the same problem with HW XG430.

Any update about this issu all happen yesterday.

Thanks.

An update:

Today an IPS update has been released: 3.13.17, but the web filter still did not work, so I reboot the XG and now categorization is working.

Waiting for other replies.

Thanks

My device's IPS is updated to : 3.13.17 ; date -24/12/2016. Restarted the XG-135 couple of times but still the categorization problem persists. 

Please suggest further.

Thanks,

Kumar

Sorry for all the trouble. There is an issue identified with the web categories. Please review this thread ASAP 

community.sophos.com/.../125754

Hi Luk, XG web categorization is done in real time by querying sophos servers

primary.wing.sophosxl.net and peak.wing.sophosxl.net (from WINGc.conf file)

Sophos being a global company, I assume there servers are doing some kind of anycast routing based on the location of the client. My impression is that the sophosxl.net database had a hiccup and has cleared for many of us by rebooting/ running WINGc restart command but some people are still facing categorization problem. I assume that the problem will go away for everyone at some point but SOPHOS has to come and explain how this happened and WHY NOBODY is saying anything.

IF anyone has a subscription license here, please open a support ticket as the way this has been handled is really outrageous.

Follow Luk's post above and in the admin menu on your XG, open console. Log in and choose option 5 and then option 3. Type

service WINGc:restart -ds nosync and you will get a response

200 OK

Check your web filter again, if it works... great, if not try again after some time. Sorry again for not having a definitive answer but if you have a subscription, please open a support ticket.