BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
Hi @Odysseus2001 I'am glad that you are one step further. You can try to configure your NAT rule only for outbound Interface X1 or but another NAT rule in front of it which leaves the Translated src as it is when Destination is your local subnet. --Michael@BWC
-
I saw a message "SSLVPN restarted" in the log after trying the reboot. --Michael@BWC
-
Hi @MasterRoshi, I'am running 10.2 on this deployment. --Michael@BWC
-
Hi @Odysseus2001 if I see this correctly, the source-ip of the VPN traffic is your public IP and not the 172.168.x.y network from Azure, correct? Is there any NAT involved which could cause this? Did you enabled the packet-monitor on the SonicWall appliance and enabled the Advanced monitor filters to bring some light into…
-
Hi @djhurt1 the GroupVPN policies are created by default and related to the Network -> Zones settings, you cannot uncheck the "Create GroupVPN" in Zone WAN and WLAN. If you don't need them, just disable them on the VPN settings page. The Zone binding for these Policies isn't a big problem IMHO, because they are only used…
-
Hi all, after a slow start the support was able to catch and reproduce the problem. Hopefully it will be fixed in an upcoming release, it seems that I'am the only fool on this planet who needs this :) --Michael@BWC
-
Hi @Vijay_Kumar_KV thanks for the reply, but I was using Proxmox just as for a test, it works so far. Maybe some more active Proxmox users can forecast some demand, I'am more VMware centric at the moment. But Proxmox is a very interessting platform and can save some major bucks for smaller deployments. --Michael@BWC
-
Hi, well the size difference seems to be related of the representation of the virtual harddisk. The 700+ MB Download of the Hyper-V image just contain the virtual harddrive, no nice .OVA template like for VMware. It seems that a migration from VMware to Hyper-V works, the settings imported. BUT one minor hickup occurs, I…
-
Hi @djhurt1 X1 not assigned? That's not common, but my recommendation works for other WAN interfaces as well, you always should bind the VPN to the specific Interface, whatever it is X2, X3, etc. This makes sure that outbound (initiating) VPN connections are assigned to the correct WAN link, which IP is usually checked on…
-
Hi @KRu_vys_CZ I never did this myself, but please check these options, I guess the relevant certificate has to be stored in the Windows Certificate Store and can be selected by either thumb or name. SonicWALL NetExtender Windows Client CLI Commands The following section includes commands for the NetExtender Windows Client…
-
Hi @Shahid_DMATICS if you don't need IPsec you can go with SSL-VPN, MobileConnect is the Client you're looking for, available in the App Stores or as NetExtender for Windows and Linux. It's usually less problematic than IPsec, but speed/latency is not exactly the same, because it's TCP-based instead of UDP. --Michael@BWC
-
Hi guys, well, sounds not very compelling but I guess we will go the 9.2 path as well in the hopes that it is working more smoothly than 8.x. --Michael@BWC
-
Hi @djhurt1 your gateways have seperate IPs so you should be good. Having X1 and X2 as WAN Interfaces, just make sure that both primary and backup applianc is connected to correct switch. The public IP is bound to the HA-address (active appliance), not to the individual firewall appliance. Except you wan't to monitor both…
-
Hi @TENUTO , make sure that the user you're connecting with has your LAN subnet listed on the VPN Access tab. That's the only thing I could think of besides the points mentioned by @KaranM. --Michael@BWC
-
Hi @Halon5 I agree, the SMA is probably my favourite product and a real jack of all trades. I was concerned that there is a growing problem with the 10.2, but maybe it was isolated. Another new deployment is weird as well, after changing the settings of a local user (AD) the whole appliance is restarting, I'll have to…