Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 4 replies
  • Subscribers 0 subscribers
  • Views 1044 views
  • Users 0 members are here
Options
Suggested

[9.165][CLOSED] Wifi: AP30 cannot connect to UTM with IPS active

RichBaldry
When I upgraded my UTM to 9.165, my AP30 stopped working very shortly after the system first rebooted. The light kept blinking, indicating that it was not able to connect to the UTM, and it appeared as unavailable in the WebAdmin. DHCP log showed that the AP was still talking on the network and being given an IP address. At the same time, I was unable to access the Internet through a wired connection to the UTM, and was also unable to ping the UTM's IP address, although I was still able to access WebAdmin.

After trying a bunch of stuff, the thing that finally made the difference was turning off IPS.

Turning it back on causes the AP to fail again.
  • 0
    Take a look in your ips log and post the rules that caused the issue, if there are any listed.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    I'll add my .02 to this; found that tuning the IPS and hitting apply would cause my AP10 to lose connectivity to the UTM ... it eventually came back up after a few minutes... so there does seem to be something going on.  Didn't see any IPS rules triggered, etc. during this event.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    If you enable or reconfigure IPS, it will (re)start, which takes a while on older and slower boxes. Untill IPS is up and running, no traffic will be processed. This includes traffic to APs which can lead to connectivity loss and therefore reboot of the AP.
    But after IPS is up and running the APs should reconnect to the UTM automatically.

    So does your AP come back after a while? Or is it still gone.
  • 0
    Hi Snowcrash, 

    The UTM is supposed to start a NEW IPS instance, and not route traffic through it until it's done starting, and then stop the old instance.
    So, there's not supposed to be any downtime, at least in theory.

    Anyways, perhaps the APs management IPs should be excluded from the IPS so they don't go offline?

    Barry
Unfiltered HTML