Guest User!

You are not Sophos Staff.

Thread Info
  • Locked Locked
  • Replies 18 replies
  • Subscribers 2 subscribers
  • Views 44807 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Precaution on Update 9.351 (FTP)

HiRN

Hi folks,


I don't want to blame Sophos, this is just a precaution for people updating from the FTP to version 9.351. I have some massive problems but I do not know where they come from.

First, Interfaces take up to five minutes until the are pingable and allow traffic (timeouts), same problem with some IPsec tunnels, going up, pinging the remote site hosts is possible, then going to timeouts.

And further an AP50 doesn't get an connection to the UTM anymore.

HA cluster (active passive) problem. First I thoight its broken completely, since I now know, interfaces take a long time to get up, so this is maybe the reason for some strange HA cluster behaviour.

This behaviour is on two HA clusters (which I disabled for now) on VMware 6.0 Update 1a and wasn't there with 9.350.

So when you update, be aware you could have problems. Trying to get a clue on this.



This thread was automatically locked due to age.
  • in reply to BrucekConvergent
    Is this only an issue with the Soft Release? Version 9.351-3 is currently waiting in the GUI on our UTM's.

  • If am not sure about the AP issue, but this thread might help for anyone needing to update to 9.351 in an HA environment or those that currently have a broken HA cluster due to a failed update attempt to 9.351.

    Best Regards - HTG
    Frustrated Sophos Partner seeing all the things
    that brought me to Sophos slowly slip away.
    RIP astaro.org

  • ignitor: If you are referring to the HA issue that is part of this thread rather then the AP issue raised by the OP see below.

    For HA environments the issue still exists with the up2date 9.351 on the GUI but see my previous post for a link to a thread with a solution.

    Best Regards - HTG
    Frustrated Sophos Partner seeing all the things
    that brought me to Sophos slowly slip away.
    RIP astaro.org

  • in reply to htguru
    I must have miss-understood then. I thought there was an issue with HA in the 9.351. We're currently on 9.350.
  • in reply to DrewbleIT
    Current release. Support is looking into it. The update went fine, just HA broke some hours after a successful update is the issue.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • in reply to BrucekConvergent
    Is the HA problem introduced with 9.351 or the other way asked is 9.317 HA save? I don't need the the 9.351 features and I feel I would go better with 9.317 - any comments?
  • I have been running UTM 9 and had great success running 9.350-12 on my VirtualBox machine until I tried to install the latest Up2Date version 9.351-3 which caused my system to crash and become completely unusable. I was, however, able to login to WebAdmin, but my entire config was gone except for the daily backups I run. I tried to restore a backup, but that release seemed to be destroyed. I restored my snapshot of 9.350-12 and ran the Up2Date 9.351-3 again but had the exact same results 2 additional times. I even did a clean install of the entire VBox and restored successive backups to get back to 9.350-12 and have no issues on this firmware. I have been waiting for any info but now I see I am not alone.
  • in reply to Hallowach2

    I updated a customer HA production cluster from 9.313 to 9.317 without any problems.
    Suggested them to wait for 9.35x while this issue is resolved (if there is an issue at all).

Unfiltered HTML