Hi
I have recently installed a Sophos RED 15 at one of our branch offices. For the most part, everything appears to be working as expected. Below is my configuration:
Standard/Unified, RED IP 192.168.0.1 (same range/subnet as branch office LAN)
I create a zone called RED_BranchOffice and assigned pretty much everything to it. Then I create both an inbound and outbound firewall rule as follows:
Source Zone = RED_BranchOffice | Source Network = BranchOffice LAN
Destination Zones = LAN, WAN | Destination Network = Any
Everything else is default.
Here is the problem:
For most of the day the connection is fine, all staff at the branch office logon to a terminal server here at HQ and their IP phones connect to the internet through the RED. However 2/3 times a day everything is cut off, the RDP sessions end and the phones go down for about 5 seconds.
I have looked in all of the standard logs available through log viewer and there is nothing going on at these times. I called 1st line support who looked around in the console logs and we could clearly see that this RED was dropping 10x more packets than the other RED. However she couldn't see anything wrong and just left it.
Before installing the RED, this branch office has been connected for a month through a standard IPsec from their Draytek Vigor 2930 router. Why is this only happening with the RED?
Which commands do I need to enter on the console to look at the logs myself?
Thanks in advance!
This thread was automatically locked due to age.
