BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
Hi all, short update, had a call with the Support a minute ago, first he said I need to buy an End Point Control license (there is no such thing), then he tried to reset the license and at the end I have to wait for 10.2.0.6 which fixes ALL (!) reported bugs. No ETA, playing the waiting game. This time I had to use…
-
Hi all, short update, today Support reported that it'll be addressed in an upcoming 10.2.0.6 release which is currently in testing. The vulnerability thingy postponed this a little I guess and 10.2.0.4 got skipped. --Michael@BWC
-
Hi, still waiting for get my End Point Control License issue resolved. I deployed a new SMA 500v with 3 years of Service, End Point Control is licensed up to 2071, which gives it 50 years, so it does not seem like a general issue with the 10.2.0.5 OVA release. Despite the fact that Support is valid for this deployment up…
-
Hi @nebula I had this kind of situation with CSC-MA (predecessor of NSM, the announced migration never happened) where a stuck Scheduled task cause the permanent reboot, not sure that this could be the case here too. --Michael@BWC
-
Hi @Halon5 Customer Service replied yesterday though and created a technical case for me. I guess it does not seem License related. Will keep you posted with the results of that, hopefully they'll don't ask for configuration or TSR, because of the lack of information how much SNWL itself got compromised I'am a bit hesitant…
-
Hi @techpat it seems noone is willing to chime in, I can only provide my Enduser/Partner view. The WAF for 60 days is a freebie and of course to this point in time you have to pay good money for that feature afterwards. There is no official word if WAF is still necessary after applying 10.2.0.5. There is no word of the…
-
Hi all, in my ongoing effort to track down weird stuff I can say with somewhat confidence that GeoIP is messing things up when US gets blocked. While examining the iptables ruleset on the SMA, all incoming packets from SRC addresses listed in the ipset table denyIpset will be dropped. Some of the members on that table are…
-
Hi @Larry @TKWITS the graphic covers it really good. This usually happens when function/pricing/simpilicity is weighted over security, which might work to a certain point. The "flaws" are not on public display, having a look under the hood can be mind-boggling. Knowing these shortcomings could be a simple way to determine…
-
Hi @Gilbert you're are a bit on the adventerous side of life or just baiting with a honey pot to connect :) - Either way I wouldn't disclose a public address in here. Back to the topic, IMHO you can't hide the address bar, but you can disable it with the Option "Set user to access the specific files/folders", maybe this…
-
Hi @ROLWALA @shiprasahu93 thanks about this NCP value, will keep this in mind when I should face PPPoE issues. Would love to know what the Packet Monitor would have shown, that's the nerd talking, sorry 🤔 --Michael@BWC
-
Hi @ROLWALA this is how I would try to tackle it: Keep an eye on the Event Log as well, in case your physical Interface flaps. --Michael@BWC
-
Hi @ROLWALA did you compared the Protocol-Settings on the Network Interface you dedicated for PPPoE? Are they the same compared to the old TZ? Did you tried a Packet-Monitor for PPPOE-DIS and PPPOE-SES on your PPPoE Interface, maybe it shows the reason for the disconnect? I only have 2 Gen7 Appliances in the field, but no…
-
Hi all, maybe to put my question a bit in perspective and to fuel your opinion making process. I would really love to hear. --Michael@BWC
-
@Larry, I know, but I stopped complaining because it looks like a dead end. --Michael@BWC
-
Hi @Chathura_Yapa1 if you're talking about on-premise, then the answer to both of your questions is yes. I have deployed it in multi-server, multi-ldap, multi-domain scenarios. --Michael@BWC