Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • +2 person also asked this people also asked this
  • Replies 69 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 9544 views
  • Users 0 members are here
Options
Suggested

Sophos Firewall: v19.5 EAP1: Feedback and experiences

LuCar Toni

https://community.sophos.com/sophos-xg-firewall/sfos-v19-5-early-access-program/b/announcements/posts/sophos-firewall-v19-5-early-access

Old: https://community.sophos.com/sophos-xg-firewall/f/discussions/135593/sophos-firewall-v19-0-mr1-feedback-and-experiences



pn
[bearbeitet von: LuCar Toni um 3:45 PM (GMT -7) am 28 Sep 2022]
Parents
  • 0

    I have XG125 rev2 unit on which I have Home version of software to test latest versions of relases instead of XGS HA cluster... Yesterday Im try upgrade it from 19.0.1 MR1 to 19.5 EAP and when I upload fw in GUI(Im select upload and boot option) it upload it and never reboot device to new fw. Then Im in image list select EAP option and click boot. After reboot it show login screen and when I enter creditensials I get redirection to "">IP:PORT/.../index.jsp" which show blank screen.

    SSH access work normaly.

  • 0 in reply to DejanBukovec

    After aditional reboot it work but IPS signature do not update...

    u2d.log:

    DEBUG     2022-11-03 07:12:53Z [11974]: Response length : 443
    DEBUG     2022-11-03 07:12:53Z [11974]: Received name : ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    DEBUG     2022-11-03 07:12:53Z [11974]: Received location : xg-up2date-patterns.sophosupd.com/ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    DEBUG     2022-11-03 07:12:53Z [11974]: Received version : 18.19.83
    DEBUG     2022-11-03 07:12:53Z [11974]: Received size : 9573268
    DEBUG     2022-11-03 07:12:53Z [11974]: Received md5sum : 59d48b08ff5fc04886408c9e1f645a56
    DEBUG     2022-11-03 07:12:53Z [11974]: Received module : ips
    DEBUG     2022-11-03 07:12:53Z [11974]: Received cv : 20.0
    DEBUG     2022-11-03 07:12:53Z [11974]: Received type : full_ips_app
    2022-11-03 07:13:28Z pt_dload_checker: Starting download for file ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    2022-11-03 07:14:28Z pt_dload_checker: Download completed for file ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    2022-11-03 07:14:28Z pt_dload_checker: IPSSwitch: downloaded ips package
    2022-11-03 07:14:30Z pt_dload_checker: Download for file ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig passed integrity and gpg checks
    2022-11-03 07:14:31Z pt_dload_checker: Current ips patterns are at /content/ips_20.0/18.17.96
    2022-11-03 07:14:31Z pt_dload_checker: IPSSwitch: Installing the ips package
    2022-11-03 07:14:31Z pt_dload_checker: New updated patterns are now at /content/ips_20.0/18.19.83
    2022-11-03 07:15:29Z pt_dload_checker: Callback u2d_pt_installed failed for ips, version = 18.19.83.
    2022-11-03 07:15:29Z pt_dload_checker: Setting status 'fail' in DB and reverting link for ips to old version = 18.17.96.
    2022-11-03 07:15:29Z pt_dload_checker: IPSSwitch: u2d_pt_installed failed
    2022-11-03 07:15:29Z pt_dload_checker: ips patterns are again at /content/ips_20.0/18.17.96
    DEBUG     2022-11-03 07:16:10Z [14157]: --serial = REMOVED
    DEBUG     2022-11-03 07:16:10Z [14157]: --deviceid = REMOVED
    DEBUG     2022-11-03 07:16:10Z [14157]: --fwversion = 19.5.0.144
    DEBUG     2022-11-03 07:16:10Z [14157]: --productcode = CN
    DEBUG     2022-11-03 07:16:10Z [14157]: --model = SF01V
    DEBUG     2022-11-03 07:16:10Z [14157]: --vendor = SO01
    DEBUG     2022-11-03 07:16:10Z [14157]: --pkg_sysupdate_version = 3
    DEBUG     2022-11-03 07:16:10Z [14157]: --oem = Sophos
    DEBUG     2022-11-03 07:16:10Z [14157]: --server = u2d.sophos.com
    DEBUG     2022-11-03 07:16:10Z [14157]: --port = 443
    DEBUG     2022-11-03 07:16:10Z [14157]: Added new server : Host - u2d.sophos.com, Port - 443
    DEBUG     2022-11-03 07:16:10Z [14157]: --u2d_proto = 2.00
    DEBUG     2022-11-03 07:16:10Z [14157]: Final query string is :
    ?&serialkey=REMOVED&deviceid=REMOVED&fwversion=19.5.0.144&productcode=CN&appmodel=SF01V&appvendor=SO01&useragent=SF&oem=Sophos&pkg_sysupdate_version=3&u2d_proto=2.00
    DEBUG     2022-11-03 07:16:11Z [14157]: Response code : 200
    DEBUG     2022-11-03 07:16:11Z [14157]: Response body :
    <Up2Date/>

    DEBUG     2022-11-03 07:16:11Z [14157]: Response length : 11

Reply
  • 0 in reply to DejanBukovec

    After aditional reboot it work but IPS signature do not update...

    u2d.log:

    DEBUG     2022-11-03 07:12:53Z [11974]: Response length : 443
    DEBUG     2022-11-03 07:12:53Z [11974]: Received name : ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    DEBUG     2022-11-03 07:12:53Z [11974]: Received location : xg-up2date-patterns.sophosupd.com/ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    DEBUG     2022-11-03 07:12:53Z [11974]: Received version : 18.19.83
    DEBUG     2022-11-03 07:12:53Z [11974]: Received size : 9573268
    DEBUG     2022-11-03 07:12:53Z [11974]: Received md5sum : 59d48b08ff5fc04886408c9e1f645a56
    DEBUG     2022-11-03 07:12:53Z [11974]: Received module : ips
    DEBUG     2022-11-03 07:12:53Z [11974]: Received cv : 20.0
    DEBUG     2022-11-03 07:12:53Z [11974]: Received type : full_ips_app
    2022-11-03 07:13:28Z pt_dload_checker: Starting download for file ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    2022-11-03 07:14:28Z pt_dload_checker: Download completed for file ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig
    2022-11-03 07:14:28Z pt_dload_checker: IPSSwitch: downloaded ips package
    2022-11-03 07:14:30Z pt_dload_checker: Download for file ips_ipsapp_20.0_v19_5_18.19.83.tar.gz.sig passed integrity and gpg checks
    2022-11-03 07:14:31Z pt_dload_checker: Current ips patterns are at /content/ips_20.0/18.17.96
    2022-11-03 07:14:31Z pt_dload_checker: IPSSwitch: Installing the ips package
    2022-11-03 07:14:31Z pt_dload_checker: New updated patterns are now at /content/ips_20.0/18.19.83
    2022-11-03 07:15:29Z pt_dload_checker: Callback u2d_pt_installed failed for ips, version = 18.19.83.
    2022-11-03 07:15:29Z pt_dload_checker: Setting status 'fail' in DB and reverting link for ips to old version = 18.17.96.
    2022-11-03 07:15:29Z pt_dload_checker: IPSSwitch: u2d_pt_installed failed
    2022-11-03 07:15:29Z pt_dload_checker: ips patterns are again at /content/ips_20.0/18.17.96
    DEBUG     2022-11-03 07:16:10Z [14157]: --serial = REMOVED
    DEBUG     2022-11-03 07:16:10Z [14157]: --deviceid = REMOVED
    DEBUG     2022-11-03 07:16:10Z [14157]: --fwversion = 19.5.0.144
    DEBUG     2022-11-03 07:16:10Z [14157]: --productcode = CN
    DEBUG     2022-11-03 07:16:10Z [14157]: --model = SF01V
    DEBUG     2022-11-03 07:16:10Z [14157]: --vendor = SO01
    DEBUG     2022-11-03 07:16:10Z [14157]: --pkg_sysupdate_version = 3
    DEBUG     2022-11-03 07:16:10Z [14157]: --oem = Sophos
    DEBUG     2022-11-03 07:16:10Z [14157]: --server = u2d.sophos.com
    DEBUG     2022-11-03 07:16:10Z [14157]: --port = 443
    DEBUG     2022-11-03 07:16:10Z [14157]: Added new server : Host - u2d.sophos.com, Port - 443
    DEBUG     2022-11-03 07:16:10Z [14157]: --u2d_proto = 2.00
    DEBUG     2022-11-03 07:16:10Z [14157]: Final query string is :
    ?&serialkey=REMOVED&deviceid=REMOVED&fwversion=19.5.0.144&productcode=CN&appmodel=SF01V&appvendor=SO01&useragent=SF&oem=Sophos&pkg_sysupdate_version=3&u2d_proto=2.00
    DEBUG     2022-11-03 07:16:11Z [14157]: Response code : 200
    DEBUG     2022-11-03 07:16:11Z [14157]: Response body :
    <Up2Date/>

    DEBUG     2022-11-03 07:16:11Z [14157]: Response length : 11

Children
Unfiltered HTML