Quantcast
Channel: Sophos User Bulletin Board
Viewing all 14361 articles
Browse latest View live

Email encryption

January 10, 2014, 5:44 am
$
0
0
Is there a thread concerning email encryption? I can't get the firewall to recognize the plugin using win7 and any version of the plugin with latest beta?

There are some other issues with mail DLP not working also

Victor
Search

Application Control & Skip transparent mode source/host?

January 10, 2014, 6:17 am
$
0
0
ASG 9.004-33

Does application control take priority above skip transparent mode source/hosts?

Currently have a static ip computer set up as skipping transparent mode to bypass the general web filtering however if any website/application is blocked under application control it's still unable to be accessed.

If so I'm assuming there's no "easy" way of fixing that without turning standard mode on and using a proxy?

With this the website isn't being "blocked" the normal way with the Sophos blocked message as well - it's timing out. Is it possible to have the application control website actually blocked instead of it timing out for non-skipped hosts to allow the possibility of unblocking the url via the authentication login?

IPSEC S2S VPN behind external firewall

January 10, 2014, 10:27 am
$
0
0
Currently running our 30+ IP-SEC VPN’s to 3rd party vendor networks using a Symantec 5420 Gateway Security appliance running v3.0.1 code which has not been supported for seven years now.

Have an exist Astaro/Sophos software UTM running on a Symantec 5460 box used connect to partner via MPLS fiber connection. Just updated the Astaro ASG v8.3 (Symantec5460 box) to Sophos UTM v9.1. Want to migrate all VPN tunnels to Sophos v9.1.

On Sophos UTM, created the first new VPN to a new vendor running a Cisco ASA 55xx box. He can initiate a VPN connection by pinging my host however we can bring up the tunnel on our side when we ping his host.

Could not initiate a IP-SEC tunnel with to their remote peer. Phase 1 was failing because the Sophos UTM is behind our external Internet firewall.


Traffic flow to remote site
------------------------------------
MyHosts --> [192.168.1.12_SophosUTM_10.2.3.12] --> DMZ-10.2.3.0 --> [10.2.3.1_EcessaFW_64.1.2.2] --> Internet --> [12.15.15.10_3rdPartyASA] --> 3rdPartyHosts.

Initiate connection to 3rd Party
---------------------------------------
VPN LocalPeers: 64.1.2.2
VPN RemotePeer: 12.15.15.10
VPN LeftID: 10.2.3.12 <-- Sophos automatically sets this parameter

Need to hardcode the Left side VPN ID with our Internet IP address so Phase 1 can complete sucessfully. Not really an option to have our vendors tweak their side of the tunnel.

*** Can a Cisco ASA set their Remote-ID (with our Sophos external IP) in their configs? Does any one have a sample config to share? Have not had much luck searching the Internet. ***

Most of our VPN tunnels are initiated from our site. Have been waiting four years for Astaro and now Sophos to fully support IP-SEC VPN with 3rd party VPN gateways.

First started using Astaro 8 years ago after receiving an email from Astaro promoting Astaro UTM as a replacement for the Symantec Gateway Security appliance. Downloaded and used Astaro ‘Home’ on my home network. Wanted to incorporate Astaro into our hospital environment.

Within this last year, the we have also switched from Symantec Endpoint Protection to Sophos, purchased your desktop encryption product and also your Sophos email appliance running as a VM. If cannot get this to work, will be force to find another vendor which will probably be Dell SonicWall UTM. We also have a Novell Border Manager server which we would like to replace.

Thanks,

Bob G.

Sophos ES1100 attachement filtering

January 10, 2014, 1:23 pm
$
0
0
I have 2 ES1100 in service. once in a while I will get a complaint from a user that an attachment was removed. EX: "Potentially dangerous attachments were identified and removed from this message." Is there a way to have sophos report the names of the attachments that it has blocked? I know how to find the email and release it, but I am unsure how to edit/change the attachment blocking. Any info is greatly appreciated.

Cheers,
Rob

Locked out after enabling OTP for a new user

January 10, 2014, 2:10 pm
$
0
0
I've been playing with the new OTP feature trying to get it to work for the WebAdmin login.

I created a new user, and assigned them a OTP token.

I unchecked the option to require OTP for all users, and added the new user to the list. I checked the 'WebAdmin' box.

At that point I logged out and can no longer login with any WebAdmin account.

I also can no longer login as root.

I went through the procedure to reset the loginuser and root passwords, which appeared to complete successfully, but I can still not login as root with the newly reset password.

Have I somehow enabled OTP for all users? Even root? Is there a way to disable it without a factory reset?

Cheers!
Scott

How do I give VPN users access to the "other end" of an L2TP site-to-site connection?

January 10, 2014, 5:39 pm
$
0
0
I hope forum readers will be able to help me configure access for users who VPN in to the UTM 110 via SSL and/or PPTP get access to the "other end" of a running L2TP site-to-site VPN.

Here's what the networks look like:
Internal: 192.168.1.1/24
Remote network connected via L2TP: 192.168.100.0/24
SSL VPN pool: 10.241.1.0/24
PPTP VPN pool: 10.241.2.0/24

All three networks at "this end" are configured in the tunnel and show green in WebAdmin. Local users (on 192.168.1.0/24) can access resources on the remote end (192.168.100.0/24).

But users who VPN into the UTM and receive an SSL or PPTP pool address cannot access the remote end of the site-to-site tunnel.

For example, RDP to the 192.168.100.0/24 network fails for VPN users. Automatic firewall rules are in place that allow any protocol from all local networks to the remote end of the tunnel.

Any hints appreciated.

Various questions regarding VPN

January 10, 2014, 11:12 pm
$
0
0
Hi all,

There are several questions which I have regarding the VPN deployment.

1. I am considering to have 425 or 525 on central site which needs to provide IPSEC services for various branches. Some of them because of limitations do not have coverage with normal MPLS/Leased Lines so we are going for 3G/4G modem options. Can Sophos UTM appliances create VPNs as long as the HQ is on a permanent static address and remote office is on dynamic ?
2. We are in the need of running dynamic routing protocols, such as OSPF. I would like to run the OSPF protocol to exchange routing between VPN peers instead of creating the access rules for each subnet (we are talking for over 20 networks on main site and 2-3 networks on each location).
3. Can we force the traffic from other locations to be routed in full through our HQ offices (including the internet).

Regards,

P.

Renaming x509 Certificates

January 11, 2014, 12:31 am
$
0
0
Is it possible to rename the x509 Certificates without deleting them? It gets rather annoying having userx (Regenerated)(Regenerated)(Regenerated) after making several changes to the CA.
Search

POP3 Error

January 11, 2014, 2:16 am
$
0
0
Hello since today morning I get with my UTM a pop3 error "Unknown cssd response: 500 Internal Server Error". Is there a problem in the backend? OR what does that mean?

Birthday

January 11, 2014, 11:29 am
$
0
0
Can anyone without braindamage tell me why the hell i have to give my birthday to registrate here.
I am a professional ICT and my birthday it to no concern, for what i am searching on this forum.
If the result is not that i am going to receive a cake on my birthday, i am already not a big fan of this forum.

Great Welcome?!?!?!?!?!?!?!?!?!?!?

I thought sophos was a professional company................................

After said this: lets discuss some ADULT bussiness.....

Update: I can not use Welcome as a tag word, another great feature of this forum........What other tag can i use on a post like this : Sh*t Welcome......

Sophos UTM 9: Web Server Protection, Apache error

January 11, 2014, 11:52 am
$
0
0
After installing UTM 9, i activated webserver protection.
Build a real server.
Build 200 Virtual servers.
Crash. Everything "in error"
disabled everything.
find on the internet that because of a bug you can ony have 62 virtual hosts.....
one by one I enabled my rules.
took me hours.
after every enable i had to check the log to wait for the gracefull restart of the apache.
after 45 rules: (28)No space left on device: AH01185: worker slotmem_create failed

disable the last one will restart the apache perfect, but whatever disabled rule I enable, it crashes again.
it is doing a restart after every change I make:
[mpm_worker:notice] AH00297: SIGUSR1 received. Doing graceful restart
and then:
[proxy_balancer:emerg] (28)No space left on device: AH01185: worker slotmem_create failed
[:emerg] AH00020: Configuration Failed, exiting
after disable last rule:
[security2:notice] ModSecurity for Apache/2.5.12 (ModSecurity: Open Source Web Application Firewall) configured.

there is nothing to find on google about the combi of modsecurity in combination with AH01185
the machine has 4GB and is using 29% , cpu is always around 3%

Somebody any idea?

P.S. Moderator can you move the topice to the correct place please., I placed it by accident in the general Dis.

Bypass Web Filter for certain IPs?

January 11, 2014, 9:03 pm
$
0
0
I'm new to Sophos UTM, I'm on the latest (as of today) home edition. I've switched over from Untangle.

I've setup web filtering but I'd like to have a handful of clients completely bypass this. I've configured the clients with static IPs.

How can I best accomplish this? I've looked at several threads but I don't understand how best to go about it.

From what I've found it seems that users/clients that are granted the ability to bypass the filtering can do so from the block page, correct? Is there anyway to completely bypass the filters without getting a block page?

I'd appreciate any help.

Access control role to manage whitelist

January 12, 2014, 2:30 am
$
0
0
Release 9.107-33
I have create a role with Web security manager right and assigned to an AD user.
The user can login to the web interface.
Go to web protection - filtering- Exceptions
he can create new exeption lists or edit existing ones.
But whenever he clicks "SAVE" nothing is applied...
any ideas?

Thanks for your support.
Regards,
Filippo

Sophos Anti-virus for Mac OSX connects to perfectworld.com

January 12, 2014, 4:46 am
$
0
0
Sophos Anti-virus Autoupdate wants to connect to fortuna.perfectworld.com

I'm running Sophos Anti-virus 9.0.6 on Mac OS X 10.8.4.
I'm also running Little Snitch which is a third party OSX firewall solution.
I just got the above notification, please see the attachment. I've seen Sophos Auto-update try to connect to "tumblr.com" before as well on one occasion.

What's going on? Thanks.

Attached Images
File Type: jpg sophos.jpg (55.1 KB)

watchdog chip, how to install program?

January 12, 2014, 6:37 am
$
0
0
Dear users,
I looked through the faq and the forum but found no thread concerning my question.
If there is I appologize and ask the admins to move this thread to the right place.
Is it possiple to perform the instructions following on an installed astaro firewall/router?

Here follows the installation guide:

Lanner Platform Miscellaneous Utility
Watchdog/Bypass Program
================================================

Code structure:V1.0

Contents
========

- In This Release
- Building
- Installation
- Usage
- Q&A
- history
- License


In This Release
===============

This file describes the code structure of Lanner platform watchdog/bypass
program. This package provides program(DOS/Linux/FreeBSD) and driver
(Linux/FreeBSD) for Lanner platform-specific function.
Separated makefile available as well.(Makefile.dos, Makefile.linux,
Makefile.freebsd)

For DOS environment, Use DJGPP as compiler., use DJGPP and Makefile.dos.

For Linux, supports kernel versions 2.4.x and 2.6.x and Makefile.linux.

For FreeBSD, it is tested under FreeBSD 8.0.


This release provide 2 ways(Defined in Makefile) to access Lanner platform
devices:

1. DIRECT_IO_ACCESS=0(Default):

To access Lanner miscellaneous devices through lanner driver.
Lanner driver is available in bin sub-directory after make.
This driver is only supported as a loadable module at this time. Lanner is
not supplying patches against the kernel source to allow for static linking
of the driver.

Note: This mode is enabled by set DIRECT_IO_ACCESS=0 in Makefile.

2. DIRECT_IO_ACCESS=1:

To manipulate Lanner miscellaneous device by userland application direct
accessing. This mode JUST FOR providing quick way for user to realize
Lannner platform specific function. This mode supported on DOS and Linux.

Note: This mode is enabled by set DIRECT_IO_ACCESS=1 in Makefile.



Building
========

To build, 3 steps to accomplish it:

1. Identify current OS and select proper Makefile.
Copy Makefile.(os) to Makefile.

2. Select access mode(DIRECT_IO_ACCESS=[0|1] by edit Makefile.

3. Just type make to build, once completed, bin sub-directory contains.



Installation
============

To installation, depend on what's access mode you set:

If DIRECT_IO_ACCESS=1, no driver is need. Just execute executable program in
bin sub-directory to handle watchdog/bypass function.


If DIRECT_IO_ACCESS=0 , driver is needed.
For Linux:
Insert module and create node in /dev as below example:
#insmod wd_drv.[k]o
#mknod /dev/wd_drv c 241 0

For FreeBSD:
Insert module as below example:
#kldload -v ./wd_drv.ko




Usage
=====
Once build completed, application(and driver) is available in bin sub-directory.

The command usage will be printout when you execute wd_test without any argument.
Below list usage:

wd_tst --srbe [1|2](Set Pair 1/2 Runtime Bypass Enabled)
wd_tst --srbd [1|2](Set Pair 1/2 Runtime Bypass Disabled)
wd_tst --sobe [1|2](Set Pair 1/2 Off-mode Bypass Enabled)
wd_tst --sobd [1|2](Set Pair 1/2 Off-mode Bypass Disabled)
wd_tst --swtsb (Set Watchdog Timeout State to Bypass)
wd_tst --swtsr (Set Watchdog Timeout State to Reset)
wd_tst --swt *** (Set Watchdog Timer 1-255 seconds)
wd_tst[*] --start (Start Watchdog Timer)
wd_tst --stop (Stop Watchdog Timer)

Note[*]: wd_tst --start is not presented if DIRECT_IO_ACCESS=1, watchdog timer
will start automatically once "./wd_tst --swt ***" is executed.


Physical Pair mapping:
+---------------------------------------------------------+
| |
| +---------+ +-----+ +----------+ +----------+ |
| | console | | USB | | Pair1 | | Pair 2 | |
| +---------+ +-----+ +----------+ +----------+ |
| |
+---------------------------------------------------------+

Note for Linux user: insmod driver if necessary.

So I hope someone will know if I can use the watchdog chip of my pc.
thx a lot cptmerget
Search

Sophos UTM - Upstreamserver

January 12, 2014, 1:24 pm
$
0
0
Hallo. Ich bin neu hier im Forum und habe natürlich gleich die ersten Fragen ;-)

Ich habe aktuell TMG2010 SP2 in der Firma laufen. Nun wollte ich gerne auf Sophos UTM umsteigen. TMG wurde z. B. als Webproxy eingesetzt.

Ich hatte im TMG in den Einstellungen der Vernetzung -> Webverkettung -> als letzte Standardregel einen Upstreamserver eingetragen. Die Option "An angegebenen Upstreamserver weiterleiten" wurde als Regel ausgewählt.

Wie kann ich diese Option nun mit Sophos UTM umsetzen?

Liebe Grüße Martin

Astaro Performance Matrix

January 12, 2014, 7:04 pm
$
0
0
Xeon 2.4 Ghz, 8GB RAM on DELL R410

However, is there any way to improve performance in IPS? When enabled with few signatures, the performance dropped to around 150Mbps ...

Attached Images
File Type: jpg Captura de tela 2014-01-11 13.23.40.jpg (82.2 KB)

VPN Zugang - Zugriff nur auf einen PC möglich?

January 13, 2014, 2:16 am
$
0
0
Hallo!

Wir möchten einen VPN-Zugang für die Fernwartung einer externen Firma einrichten. VPN an sich funktioniert und wird von unseren Usern benutzt, jedoch würden wir gern für diesen einen AD-Synchronisierten Benutzer den Zugriff auf lediglich eine IP-Adresse / einen PC ermöglichen.

Problem ist jetzt, dass wir zwar testweise Firewall-Regeln für User > Any > Any auf Deny eingerichtet haben - diese greifen jedoch nicht, was vermutlich daran liegt, dass der Benutzer nach VPN-Anmeldung bereits im internen Netz ist und somit die Pakete nicht mehr durch die Firewall geprüft werden - Ist das richtig?

Wie lässt sich das realisieren bzw. was müssen wir beachten?

Wireless APs are in an endles reload cycle

January 13, 2014, 2:59 am
$
0
0
We have here the problem on a relativly new installation ...

All APs are in a reload cycle ...

We tried now to update to 9.107-33 and hopefully we watched the log - same result. After that we installed an internal WLAN fix, wich will be provided in v9.2 and solves some problems on our other sites.

After that step, the APs got new firmware and installed it successfully!

.... but the same result as in the log ...

We have here a UTM 220 Cluster with several new AP30 and AP50s.

A reload of the service or UTM doesn't help ... someone has an idea?



Code:
2014:01:13-11:48:59 UTM1-2 awed[13399]: [AP30 A4000E42A1B849E] disconnected. Close socket and kill process.
2014:01:13-11:49:26 UTM1-2 awed[14649]: [MASTER] new connection from 172.19.19.21:34554
2014:01:13-11:49:26 UTM1-2 awed[13963]: [AP30 A4000E42A1B849E] AP30 from 172.19.19.21:34554 identified as A4000E42A1B849E
2014:01:13-11:49:26 UTM1-2 awed[13963]: [AP30 A4000E42A1B849E] (Re-)loaded identity and/or configuration
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.310000] cfg80211: Regulatory domain changed to country: US
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.310000] cfg80211: (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp)
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.310000] cfg80211: (2402000 KHz - 2472000 KHz @ 40000 KHz), (300 mBi, 2700 mBm)
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.310000] cfg80211: (5170000 KHz - 5250000 KHz @ 40000 KHz), (300 mBi, 1700 mBm)
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.310000] cfg80211: (5250000 KHz - 5330000 KHz @ 40000 KHz), (300 mBi, 2000 mBm)
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.320000] cfg80211: (5490000 KHz - 5600000 KHz @ 40000 KHz), (300 mBi, 2000 mBm)
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.320000] cfg80211: (5650000 KHz - 5710000 KHz @ 40000 KHz), (300 mBi, 2000 mBm)
2014:01:01-00:00:33 172.19.19.21-2 kernel: [ 33.320000] cfg80211: (5735000 KHz - 5835000 KHz @ 40000 KHz), (300 mBi, 3000 mBm)
2014:01:13-11:49:27 172.19.19.21-2 sysinit: Channel 2 busy time 21/227ms, 9%
2014:01:13-11:49:27 172.19.19.21-2 sysinit: Channel 3 busy time 0/227ms, 0%
2014:01:13-11:49:28 172.19.19.21-2 sysinit: Channel 4 busy time 4/227ms, 1%
2014:01:13-11:49:28 172.19.19.21-2 sysinit: Channel 5 busy time 25/227ms, 11%
2014:01:13-11:49:29 UTM1-2 awed[14649]: [MASTER] updating confd object for AP A4000E42A1B849E with new channels (5 -> 1)
2014:01:13-11:49:29 172.19.19.21-2 sysinit: Channel 6 busy time 14/227ms, 6%
2014:01:13-11:49:29 172.19.19.21-2 sysinit: Channel 7 busy time 0/227ms, 0%
2014:01:13-11:49:29 172.19.19.21-2 sysinit: Channel 8 busy time 4/227ms, 1%
2014:01:13-11:49:30 172.19.19.21-2 sysinit: Channel 9 busy time 4/227ms, 1%
2014:01:13-11:49:30 172.19.19.21-2 sysinit: Channel 10 busy time 10/227ms, 4%
2014:01:13-11:49:30 172.19.19.21-2 sysinit: Channel 11 busy time 7/227ms, 3%
2014:01:13-11:49:31 172.19.19.21-2 sysinit: Select channel 11
2014:01:13-11:49:32 172.19.19.21-2 sysinit: 192.168.120.250 = 192.168.120.250
2014:01:13-11:49:33 172.19.19.21-2 kernel: [ 39.810000] device red0.101 entered promiscuous mode
2014:01:13-11:49:33 172.19.19.21-2 kernel: [ 39.810000] device red0 entered promiscuous mode
2014:01:13-11:49:33 172.19.19.21-2 kernel: [ 40.250000] br-red101: port 1(red0.101) entered forwarding state
2014:01:13-11:49:33 172.19.19.21-2 kernel: [ 40.250000] br-red101: port 1(red0.101) entered forwarding state
2014:01:13-11:49:33 172.19.19.21-2 netifd: Interface 'red101' is now up
2014:01:13-11:49:35 172.19.19.21-2 kernel: [ 42.250000] br-red101: port 1(red0.101) entered forwarding state
2014:01:13-11:49:36 172.19.19.21-2 kernel: [ 42.850000] device wlan0 entered promiscuous mode
2014:01:13-11:49:36 172.19.19.21-2 kernel: [ 43.360000] br-lan: port 2(wlan0) entered forwarding state
2014:01:13-11:49:36 172.19.19.21-2 kernel: [ 43.360000] br-lan: port 2(wlan0) entered forwarding state
2014:01:13-11:49:36 172.19.19.21-2 kernel: [ 43.380000] device wlan1 entered promiscuous mode
2014:01:13-11:49:36 172.19.19.21-2 kernel: [ 43.400000] br-red101: port 2(wlan1) entered forwarding state
2014:01:13-11:49:36 172.19.19.21-2 kernel: [ 43.400000] br-red101: port 2(wlan1) entered forwarding state
2014:01:13-11:49:38 172.19.19.21-2 kernel: [ 45.360000] br-lan: port 2(wlan0) entered forwarding state
2014:01:13-11:49:38 172.19.19.21-2 kernel: [ 45.400000] br-red101: port 2(wlan1) entered forwarding state
2014:01:13-11:49:45 UTM1-2 awed[14649]: [MASTER] updating confd object for AP A4000E42A1B849E with new channels (1 -> 11)
2014:01:13-11:50:28 172.19.19.21-2 sysinit: alrm_handler(): timeout, reason 1
2014:01:13-11:50:28 172.19.19.21-2 init: starting pid 1985, tty '': '/etc/init.d/rcS K shutdown'
2014:01:13-11:50:28 172.19.19.21-2 netifd: Interface 'loopback' is now down
2014:01:13-11:50:28 172.19.19.21-2 netifd: Interface 'red' is now down
2014:01:13-11:50:28 172.19.19.21-2 netifd: Interface 'red101' is now down
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.600000] br-red101: port 2(wlan1) entered disabled state
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.600000] br-red101: port 1(red0.101) entered disabled state
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.600000] device red0.101 left promiscuous mode
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.600000] device red0 left promiscuous mode
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.600000] br-red101: port 1(red0.101) entered disabled state
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.610000] device wlan1 left promiscuous mode
2014:01:13-11:50:28 172.19.19.21-2 kernel: [ 94.610000] br-red101: port 2(wlan1) entered disabled state
2014:01:13-11:50:28 172.19.19.21-2 kernel: klogd: exiting
2014:01:13-11:50:29 172.19.19.21-2 sysinit: killall: aweclient: no process killed
2014:01:13-11:50:29 172.19.19.21-2 sysinit: umount: tmpfs busy - remounted read-only
2014:01:13-11:50:29 172.19.19.21-2 sysinit: umount: tmpfs busy - remounted read-only
2014:01:13-11:50:29 172.19.19.21-2 init: The system is going down NOW!
2014:01:13-11:50:44 UTM1-2 awed[13963]: [AP30 A4000E42A1B849E] disconnected. Close socket and kill process.
2014:01:13-11:51:22 UTM1-2 awed[14649]: [MASTER] new connection from 172.19.19.21:34555
2014:01:13-11:51:22 UTM1-2 awed[14514]: [AP30 A4000E42A1B849E] AP30 from 172.19.19.21:34555 identified as A4000E42A1B849E
2014:01:13-11:51:22 UTM1-2 awed[14514]: [AP30 A4000E42A1B849E] (Re-)loaded identity and/or configuration
2014:01:01-00:00:43 172.19.19.21-2 kernel: [ 43.320000] cfg80211: Regulatory domain changed to country: US
2014:01:13-11:51:25 UTM1-2 awed[14649]: [MASTER] updating confd object for AP A4000E42A1B849E with new channels (11 -> 1)
2014:01:13-11:51:40 UTM1-2 awed[14649]: [MASTER] updating confd object for AP A4000E42A1B849E with new channels (1 -> 11)
2014:01:13-11:52:39 UTM1-2 awed[14514]: [AP30 A4000E42A1B849E] disconnected. Close socket and kill process.
2014:01:13-11:52:57 UTM1-2 awed[14649]: [MASTER] new connection from 172.19.19.21:34553
2014:01:13-11:52:57 UTM1-2 awed[15039]: [AP30 A4000E42A1B849E] AP30 from 172.19.19.21:34553 identified as A4000E42A1B849E
2014:01:13-11:52:57 UTM1-2 awed[15039]: [AP30 A4000E42A1B849E] (Re-)loaded identity and/or configuration
2014:01:01-00:00:23 172.19.19.21-2 kernel: [ 23.310000] cfg80211: Regulatory domain changed to country: US
2014:01:13-11:53:00 UTM1-2 awed[14649]: [MASTER] updating confd object for AP A4000E42A1B849E with new channels (11 -> 1)
2014:01:13-11:53:15 UTM1-2 awed[14649]: [MASTER] updating confd object for AP A4000E42A1B849E with new channels (1 -> 11)

IPS verlangsamt Internet extrem

January 13, 2014, 3:44 am
$
0
0
Hallo zusammen,

ich habe mich in den letzten 3 Wochen auch mal mit der UTM 9 von Sophos beschäftigt und muss sagen, sie gefällt mir sehr gut! :)

Eine Frage habe ich allerdings bezüglich der Geschwindigkeit wenn ich auf Internetseiten zugreife oder Dateien herunter laden möchte:

Ich habe inzwischen hier gelesen das, wenn man IPS einschaltet, der Internet Datenverkehr extrem verlangsamt wird. Bei mir ist es so das ein 32.000er Anschluß zu einem 13.000er degradiert wird, was natürlich nicht so toll ist. Bei einem 100.000er Anschluß ist es aber wohl das Gleiche.

Ich möchte IPS nicht abschalten, aber trotzdem etwas von meinem Anschluß haben, kann ich hier irgendetwas machen?

Viele Grüße

Norbert
Viewing all 14361 articles
Browse latest View live
Search