Comments

• Is W0 IP inside LAN Subnets, by any chance?

  in Error when Adding IP Helper Policy for Enabling Aiprint mDNS Comment by Arkwright September 2024
• https://www.sonicwall.com/support/knowledge-base/how-do-i-schedule-a-reboot-on-my-firewall/180108091908826

  in Scheduling a reboot of one firewall in a HA setup Comment by Arkwright September 2024
• GVC and NetExtender do not work in the same way. By default with GVC the VPN client will be assigned an IP out of the X0 subnet. NetExtender requires an IP address pool. For that reason, one possibility here is that the machines cannot be reached over NetExtender, but work with GVC, don't have the correct gateway.

  in Cannot connect to Linux (Ubuntu) machine through NetExtender, but I can through GVC Comment by Arkwright September 2024
• When you SSH on and schedule a reboot, only the device which you have logged in to, will be rebooted.

  in Scheduling a reboot of one firewall in a HA setup Comment by Arkwright September 2024
• It turns out that the graceful shutdown doesn't work with the 7.0.1 firmware, but it does with 7.1.1. Does 7.1 add a shutdown option in the web interface?

  in Power button on NSA 4700 doesn't start graceful shutdown Comment by Arkwright September 2024
• No - not legally, anyway.

  in Get Firmware Hotfix without a Support Contract? Comment by Arkwright September 2024
• Fair enough. Did support have you connect the console cable to watch for output whilst attempting to shut down?

  in Power button on NSA 4700 doesn't start graceful shutdown Comment by Arkwright September 2024
• Where is the documentation that says there is a shutdown procedure? I googled "sonicwall nsa shutdown" and it's not on the first page.

  in Power button on NSA 4700 doesn't start graceful shutdown Comment by Arkwright September 2024
• Yes, you can change the mask on the Sonicwall, assuming the smaller mask does not overlap other interfaces configured on the Sonicwall. As for different subnets within this range they're not going to be different subnets. You can pretend that you have 4x /24s or 32x /27s but each of those networks will still have to use…

  in Subnets on an existing interface (x0) Comment by Arkwright September 2024
• I just logged in to a 4700, there is no option to shut it down in the UI. You can "Restart System" and "Restart SonicOS" [the tooltips for which explain nothing]. Why would they give you an option to do it locally but not remotely?

  in Power button on NSA 4700 doesn't start graceful shutdown Comment by Arkwright September 2024
• What even is a graceful shutdown on a Sonicwall? I didn't even know it was A Thing until I saw this thread.

  in Power button on NSA 4700 doesn't start graceful shutdown Comment by Arkwright September 2024
• Try iperf2 instead of iperf3 and you might see better results, as iperf3 is single-threaded so you might be hitting your CPU cap before network limits. This seems unlikely to me. iperf uses next to no CPU, the OP would have to be using hardware from a previous millennium to be hitting a CPU limit at <30Mbps. On this 10yo…

  in Site to Site VPN - expected performance? Comment by Arkwright September 2024
• https://www.sonicwall.com/support/knowledge-base/route-traffic-to-certain-website-s-through-site-to-site-vpn-without-route-all-traffic-vpn-set/170503510565981

  in FTP route through VPN Comment by Arkwright September 2024
• You can see this for yourself in "SD-WAN Connection Log". The Iface columns do not show actual VPN tunnel interface name, but they do show the physical interface the tunnel is bound to.

  in SD-WAN VS Site-to-Site VPN Comment by Arkwright September 2024
• ok, but it chooses one connection per-flow, yes. One flow can only ever go down one tunnel. But there will always be more than one flow, right?

  in SD-WAN VS Site-to-Site VPN Comment by Arkwright September 2024
More Comments