We're having a VERY strange situation on a remote office the last weeks.
One ASG220 HA setup disappeared for us, and no people on site.
After approx a week !!!, It re-appeared again....for 2 hours, and then gone again.
During the time it was up/reachable, I could surf into webadmin, and uptime, etc was NOT pointing to any issues. It had been up for approx 2 months since last update.
So, from there, we tried talking to the ISP who keep stating that the connection IS up and they can't see any problems.
And, now, here's the intresting/funny part;
According to the ISP (Today), they can see the Mac-Address OK with trafic going in and out. Mac-address "00-17-c5-68-7c-f9"
That serie; 00-17-c5,,etc,, is SonicWall ???
We are 100% sure that WE do not have a SonicWall, so,
either it would be the Astaro using some kind of faked mac-address which sounds very unlikely ??,,, or else, someone in the same building has hi-jacked the connection to the internet somewere else in the building but outside the office.
That sounds unlikely to though since it would require that "someone" to know ipaddress, mask, gate, etc to be able to bypass our Astaro and put in their SonicWall instead...
So,, (sorry for long message) the question really is;
Is it in ANY way possible for a ASG220/HA to be seen as a SonicWall box
with that mac-address ??
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
