Sophos Central Firewall Manager is slow and unresponsive at times.

Trouble logging into Sophos Central Firewall Manager.

Applies to the following Sophos product(s) and version(s)

Sophos Central Firewall Manager

Unable to manage CFM managed devices.

Unable to push templates down.

CIS and development are investigating.

Please log a support case.

Manually manage the SFOS devices directly.

Make backups go to email address or FTP server.

This article will be updated when information becomes available

If you’ve spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article.

This is invaluable to us to ensure that we continually strive to give our customers the best information possible.

Related:

  • No Related Posts

Placement of ProxySG in Network

I need a solution

Hello All,

This is regarding installing 2x ProxySG appliances in the network.

I’m new to ProxySG appliances, was wondering which place would be best to place ProxySG appliances in the existing network architecture; should be installed between Edge/Internet Router and Perimeter Firewall or behind the Perimeter Firewall. Current purpose of the appliance is to perform content filtering for the users.

0

Related:

  • No Related Posts

How to configure the firewall to open the IIS FTP service on the server via Symantec Endpoint Protection unmanage

I need a solution

Dear Technical Support
I just got a WS 2012R2 server just setup to publish the FTP service via IIS roles. Server I have installed Symantec endpoint Protection 14 unmanage
Please navigate the firewall configuration on the Symantec Endpoint Protection Network. Unmanage opens ports which rules.
Although I opened the port 20/21 still not accessible. My break is the passive mode ftp mechanism and returns a higher random port greater than 1024
Please help create rules
Thanks

0

Related:

  • No Related Posts

Sophos Advisory: Update – Since Saturday December 8th, 2018 – newly registered XG firewall evaluations are not visible in Sophos Central Partner Portal Dashboard

As of December 8th, new evaluations of XG firewalls are not showing up in the Central Partner Dashboard. While the registration is successful, Partners are not able to see/find the firewall to perform other actions (such as firewall assignment or approvals).

Applies to the following Sophos product(s) and version(s)

XG Firewalls

The issue has been narrowed down, and the following has been identified:

  1. XG Firewall evaluations are registering successfully within Sophos Central Firewall Manager (SCFM)
  2. The issue is currently only seen in the Sophos Central Partner Dashboard. Any new registered XG evaluations will not appear under the Sophos Central – Firewalls section of the Partner Dashboard.

Development have identified the issue, and are currently working to release a fix as soon as possible.

There are no additional steps or actions that need to be taken – once this has been resolved, the newly registered XG firewalls will show up within the Central Partner Dashboard.

This article will be updated when information becomes available

If you’ve spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article.

This is invaluable to us to ensure that we continually strive to give our customers the best information possible.

Related:

  • No Related Posts

Firewall Logs

I need a solution

Hi All,

I noticed that the SEP firewall blocks some traffic without reporting it back to the SEPM. When I try to ivestigate what has been blocked, I don’t find anything in the SEPM monitoring section.

My question is, how do I find out what has been blocked by the firewall.

Can anyone shed somelight on this.

Kind Regards,

Rabee.

0

Related:

  • No Related Posts

SEP Cloud firewall started blocking File & Print sharing today

I need a solution

I have Symantec Endpoint Protection Cloud 22.16.2.22 clients with the default “Symantec recommended system policy” and “Symantec recommended security policy” applied to all users & devices.  The “Symantec recommended security policy” as shown in the portal continues to include Network Protection settings of “Firewall = on”, “File and Printer Sharing = on”, and “Remote Desktop Connection = on”, and this has been working successfully and as expected for months.

Today, literally while I’m Remote Desktop’d into one of the managed devices, the ability to use File and Printer Sharing to access shares being hosted from that device stopped working.  The Remote Desktop connection continued to work fine.  After figuring out it wasn’t a name resolution failure, a LAN trace confirmed that the connection attempt is now being refused by the SEP Cloud-protected machine.

The SEP Cloud client shows plenty of “Firewall rules updated” events with status “detected”, but these were happening back when access was still allowed, too.  There is no detail provided in these events; no indication of “what” was updated about the firewall rules.  I do see where the client picked up a “Symantec Revocation Reputation List” and “SONAR Updates x64” update this morning; but that is not unusual either, and hasn’t resulted in the “File and Printer Sharing = on” setting being ignored before.

Where can I display the detail of whether the client thinks “File and Printer Sharing = on” support is in effect or not?  The “Advanced” display just shows “Smart Firewall = On”, and doesn’t show what it thinks the state of the security policy actually is.

Where can I display the detail of what changed in the firewall rules during these “Firewall rules updated” events?  There is no detail provided other than date and time for these events.

Thanks.

0

Related: