either serial or HDMI/USB
serial console (RJ45) / ttyS1
38400 bit/s 8n1
log onto the console
root (without password prompts for it)
log onto the web interface
https://192.168.0.1:4444/ enter a few basic info
then reload (new SSL cert) and follow the wizard
finally login as admin – PLUG WAN even if you’re on NAT so far, for automatic updates to work over night…
and define
loginuser password system settings / timezone
you don’t need to grab all the patches.
watch closely what versions you can jump.
besides, you can truly let the tool upgrade multiple patches at once, the only issue will be remaining space.
we send them into /tmp as it’s a different moint point and loginuser has write access to it.
scp u2d-sys-9.607002-705003.tgz.gpg loginuser@sophos:/tmp/ ssh sophos -l loginuser sudo su - cd /var/up2date/sys/ mv /tmp/u2d-sys-9.*.gpg . #auisys.plx --verbose --upto 9.607
if there’s not enough place in /, you can add the tarball patches e.g. by sets of three
auisys.plx --verbose --noreboot --upto 9.705003 auisys.plx --showdesc --verbose
https://community.sophos.com/utm-firewall/b/blog
https://support.sophos.com/support/s/
https://support.sophos.com/support/s/article/KB-000039251?language=en_US
https://download.astaro.com/UTM/v9/up2date/
https://ftp.astaro.com/UTM/v9/up2date/
Sophos UTM: How to troubleshoot Up2date https://support.sophos.com/support/s/article/KB-000034228?language=en_US
Connect to Sophos FTP server using an FTP client https://support.sophos.com/support/s/article/KB-000034094?language=en_US
https://support.sophos.com/support/s/article/KB-000035140?language=en_US
https://community.sophos.com/utm-firewall/f/general-discussion/111523/firmware-question https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/96458/dev-sda6-97-usage---cannot-update-passive-node
https://www.heelpbook.net/2016/sophos-utm-up2date-from-command-line-and-troubleshooting/
https://www.fastvue.co/sophos/blog/troubleshooting-sophos-utm-up2date-failure-due-to-disk-space/ https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/25087/no-hddspace-for-up2date https://robbiecrash.me/up2date-failed-not-enough-free-space/
https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/28906/9-1-up2date-audld-plx-remain-busy https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/87266/up2date-to-latest-package-only https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/111720/up2date-fails-consitantly/400327 https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/96466/how-to-resolve-a-history-of-poor-updating---up2date-is-of-no-use-currently https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/26814/7-306-auisys-plx/78300
https://support.sophos.com/support/s/article/KB-000034331?language=en_US
https://community.sophos.com/utm-firewall/f/general-discussion/21896/ethernet-wan-link-error
Sophos Firewall: Configure High Availability https://support.sophos.com/support/s/article/KB-000035744?language=en_US&c__displayLanguage=en_US
Sophos UTM: Set up High Availability in Hot-Standby (Active-Passive) or Cluster (Active-Active) mode https://support.sophos.com/support/s/article/KB-000038677?language=en_US
Breakup HA Cluster - Gracefully https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/28298/breakup-ha-cluster---gracefully/87245
Reset HA (Active-Passive) error: no free node ID available https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/30103/reset-ha-active-passive-error-no-free-node-id-available ==> how to rebuild cluster