?
Solved

Firebox X Edge (X15) locking up

Posted on 2006-05-25
2
Medium Priority
?
1,287 Views
Last Modified: 2008-02-01
I have a client with a Firebox X Edge, and every few hours or so the firewall just "locks up"  nobody can get out to the internet, and can't get to the configuration screen to look at the configuration until we do a hard reboot.

I've talked with Watchguard support guys, and they told me to watch the number of NAT connections and if that goes down to 0 the firewall will lock up (Which I'm not thrilled about that behavior).  Which I did and checked around for viruses, peer to peer programs etc that would be taking up connections all to no avail, it still locked up.

Next thing they are saying is to take the firewall back to factory defaults and reconfigure the whole thing back to the way it was because the configuration file may have become corrupt.  That I haven't done yet because I'm REALLY not looking forward to doing that.

Does anyone else have any other thoughts on what else could be causing this before I spend a saturday reconfiguring?

I'm having it log to a syslog server and don't see anything there going on before it locks up, it just stops.
It has one site to site VPN set up and 5 MUVPN clients that are used, not sure if that helps anyone.  

Any suggestions to troubleshoot would be very appreciated!
0
Comment
Question by:prima854
2 Comments
 
LVL 9

Accepted Solution

by:
IPKON_Networks earned 1500 total points
ID: 16789066
Have you tried the firmware upgrade. I think the engineers are searching for an answer rather than knowing.
The behaviour regarding the number of NAT connections is a standard reaction as the device considers this to be a DoS attack and so goes into Fail-Shut mode. Fail-shut is the default failure mode of the WatchGuard Firebox. This shuts down alll in/out traffic.

An alternative to try is overheating? Does the box have enough ventilation and nothing is blocking the vents? Is it very hot at the time of crash? Are you logging environmental conditions?

Hope this helps
Barny
0
 

Author Comment

by:prima854
ID: 16803849
Thanks Barny,
     Seems like a funny solution to DoS attacks, to shut down all traffic.  Isn't that what DoS attacks are trying to do?  Slow down/Stop traffic.  The solution seems the same as the problem.

    The firmware upgrade was one of the first thigns I tried, but still locks up.

     I've tried moving it away from all other sources of heat, but still no good.  Locks up randomly.  Unfortunately I'm not logging environmental conditions, so I can't give a difinitive "It's not overheating", but it doesn't seem THAT hot.

     I ended up going to factory defaults and reconfigured, and still the same behavior.  In further talking with Watchguard, they're sending out a replacement unit as I sat in front of the NAT Dump screen for two days watching all the connections and nothing significant ever went through it.

     Anyway, by default you get all the points, but I do appreciate the input, at least it gave me something to try!
0

Featured Post

Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question