Comments

• The TZ370 is an upgrade from a TZ300, and the configuration was imported from that (after converting it in the SonicWall online tool) OK, that's a plausible explanation. If you know you have flat network LAN-side then the default gateway setting on the LAN interface is unnecessary.

  in Default Gateway value possibly causing problem with website access? Comment by Arkwright December 2024
• Has anyone out there found a way to convert something like this to the proper format without manually doing it How many firewalls are you making this change on? If it's more than a handful, I suggest you look at DEAOs. The "file format" for those is about as simple as it gets - one FQDN or IP address per line. It would be…

  in Mass Address Object/Group Import GEO-IP Comment by Arkwright December 2024
• Paste the actual drop code. My guess is, ARP complaining that IP address in network that does not belong to this interface.

  in VLAN Zone Issue accessing Internet Comment by Arkwright December 2024
• I think you need to open a ticket with Sonicwall about DPI-SSL performance regression with 7.1.2.

  in Speed Test Issues with DPI Enabled on SonicWall NSA 4700 nsa Comment by Arkwright November 2024
• when I hover over the X1 interface (which is the LAN), there's a value for Default Gateway shown in the window that opens, which is the correct value for the current connection. I'm not sure how it got there, but it's there. Should I remove that? Like I said, it's not normal [by which I mean, necessary in a flat LAN…

  in Default Gateway value possibly causing problem with website access? Comment by Arkwright November 2024
• Are the counters incrementing as expected on NAT and access rules? What is the status of the probes in F&LB?

  in NEW 3700: no WAN traffic on ANY interface Comment by Arkwright November 2024
• Open a support case. Sounds obviously like a bug.

  in Analytics, syslog filter and CPU at 100% Comment by Arkwright November 2024
• The content of the default gateway object is determined by the interface settings; that's why it's not directly editable. It's not normal to have a default gateway on a LAN interface, so what is it for?

  in Default Gateway value possibly causing problem with website access? Comment by Arkwright November 2024
• Download is ~500Mbps with DPI-SSL enabled What was it like before 7.1.2?

  in Speed Test Issues with DPI Enabled on SonicWall NSA 4700 nsa Comment by Arkwright November 2024
• OK, I am intrigued. I am going to watch this now.

  in SonicPlatform - are you ready? Comment by Arkwright November 2024
• I can't give you an exhaustive list but spoof detection and port scanning are not licensed features. Once the license expires, the events are no longer logged.

  in SonicWALL IPS License Comment by Arkwright November 2024
• Definitely X0, yes: X0 is used as a backup HA link so the advice is to connect it so the firewalls can see each other.

  in HA and redundant provider connections Comment by Arkwright November 2024
• Only other option I can think of is asking the provider to see if they can give us two LAG ports from each Juniper You just want a bunch of ports [two - one for each Sonicwall? or three - 2xSonicwalls + a port for the peer Juniper?] bridged together on each Juniper router. That would eliminate the switches. If one of the…

  in HA and redundant provider connections Comment by Arkwright November 2024
• Configure Failover and Load Balancing with logical probing on the WAN(s). It will log the state of connectivity to the probe target and keep some [limited] statistics.

  in Internet loss for 60 seconds or less - several times a day on TZ400 Comment by Arkwright November 2024
• OK, given that information, it sounds to me like your real issue is losing contact with the firewall from the LAN, rather than, some issue with F&LB. If you can't reach the firewall from the LAN then what your WANs are doing is irrelevant.

  in Failover issue - Switching to other ISP took about 2-3 minutes to get back our internet Comment by Arkwright November 2024
More Comments