Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 8 subscribers
  • Views 3605 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

APX320 and APX530 using undocumented port 2713 to Heartbeat IP 52.5.76.173

LHerzog

Hello,

I'm following https://support.sophos.com/support/s/article/KB-000036137?language=en_US to register new APs in Central.

This was not working until we allowed  Port tcp:2713 to Heartbeat IP. This is undocumented in that KB article.

I cannot even find a Sophos KB about that Port 2713, only some posts in forums. Some have information that there was a bug that APs connected to central on a wrong port and had to be replaced.

Please bring some light into this.

Also NTP was not working until we allowed NTP outgoing to any (!).

openwrt.pool.ntp.org unresolvable... and so is prod.hydra.sophos.com and others from that KB. You should eventually add information that it may be wildcards: *.prod.hydra.sophos.com



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to emmosophos

    Hello LHerzog,

    I confirmed and they mentioned that yes if they’re Central Managed AP, port 2713  isn’t mandatory to be open to register to Central, only when the AP registers and is managed via the XG/SG.

    They mentioned if the issue still persists to open a case to get this investigated further.

    Regards,

Children