Sophos Not Updating After Upgrading to Astaro to 7.x

Date March 13, 2009

Problem:  After upgrading from Astaro 6.x to 7.x, Sophos updates began to fail from within the internal network.  Updates outside the network were successful.
Background:  Because Sophos is configured to update using the external internet address(update.domain.com), a NAT rule was created to redirect the public IP request to the internal address of the update server.  Sophos would make the request to the update server but when the update server tried to respond, Astaro would drop the packets, tens of thousands of requests would be dropped.  Working with Astaro support, we determined that the updates were failing because of the transparent proxy.

Solution:  Added the update internet address to the “Skip transparent mode hosts/nets” list.  You can find this under Web Security – HTTP – Advanced.   Once added updates were successful.

Similar Posts

`

Category Posted in Astaro, Software

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>