Menu

BWC

Cybersecurity Overlord ✭✭✭
Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

BWC Cybersecurity Overlord ✭✭✭

Badges (27)

5 Year Anniversary250 Answers4 Year Anniversary3 Year Anniversary250 Likes100 Answers100 Helpfuls2 Year Anniversary1,000 Comments50 Answers1 Year Anniversary500 Comments25 Answers100 Likes25 Helpfuls100 CommentsWork Out Loud5 Answers25 LikesFirst Answer10 Comments5 HelpfulsFirst Comment5 LikesPhotogenicName DropperEarly Adopter
See More

Reactions

9 Promote 189 Helpful 416 Like 0 Spam 5 Abuse

Comments

  • FYI, Support came through real quick, kudos for that. It seems that my initial hunch about 10.2.1.7 was correct because the answer from support was that: I've seen this problem before but on another platforms, not KVM. Please redeploy with the 10.2.1.0 version instead of 10.2.1.7. After deployment, upgrade to 10.2.1.5 ->…
    in SMA 500v (KVM) - Restart kills Appliance Comment by BWC May 2024
  • @jlembo I neaver heard about that it happened to just specific users. What comes in mind you did not enabled "Uninstall Client After Exit:" in the Client Settings on the firewall? Is NetExtender completely uninstalled or is it just the Shortcut on the Desktop? Is there any Endpoint software installed which could cause…
    in SonicWall NetExtender App Dissapearing Comment by BWC May 2024
  • @JoeB just edit the User and hit the "Unbind Totp Key", this will invalidate the old one and the user will be greeted with a new QR code. —Michael@BWC
    in I have a user who received a new phone and doesn't have Sonic on his 2FA authenticator. Comment by BWC May 2024
  • @JesseN thanks for taking the bullet and putting the RFE in for something that obvious. I don't have much hope that it'll get implemented before the SMA (100 Series) goes out of service, which is somewhere in 2027. —Michael@BWC
    in SMAConnectAgent - admin permissions needed Comment by BWC May 2024
  • Yes, Address Object Group which holds the Address Objects of your selected PCs. —Michael@BWC
    in Specific Lan computer on Secondary Wan in Failover ? Comment by BWC May 2024
  • Just let us know if you need additional help. It might need some Network Monitors for logical interface probes, but this depends on the type of interface. —Michael@BWC
    in Specific Lan computer on Secondary Wan in Failover ? Comment by BWC May 2024
  • @Quasipeper the following should do the trick remove X2 from Failover and Load Balancing, because that's for all create a network group holding all PCs which do you like to get routed over X2 in failover create a new default route, source your new network group, interface x1, metric 1 create a new default, source your new…
    in Specific Lan computer on Secondary Wan in Failover ? Comment by BWC May 2024
  • @B83 the Firewall isn't doing it by itself, you could check the TSR if there is any occurence of 8.8.8.8 which gives you a hint where it's used. If it's not in the TSR then it must be generated externally, which you can find with a Packet Monitor looking for 8.8.8.8. My best guess would be that the DNS is configured to…
    in TZ-370W default config spewing unsolicited messages out its WAN port Comment by BWC May 2024
  • Enabling United States and Sweden did the trick, not sure if Singapore needs to be added as well, but it works without it. Needless to say that's nothing I really want, because allowing access from Countries we don't expect connections from is not helpful. —Michael@BWC
    in SMA 500v - 10.2.1.12 - Lets Encrypt fails, Appliance struggles Comment by BWC May 2024
  • You're the admin of the SonicWall Firewall? Did you checked the logs? If you're not the Admin, what did your Admin said about this? Does the message says "Tunnel Negotiation"? Because Navigation makes no sense here. —Michael@BWC
    in TUNNEL ERROR NAVIGATION Comment by BWC May 2024
  • @CCAdmin just to avoid any confusion, there is a new Firmware 10.2.1.12 for SMA 100 Series, Firewall admins are still facing the issue. The HTTP DOS Settings is new and should do the trick, classic fail2ban. —Michael@BWC
    in Is anyone getting hammered by password spray attacks recently? Comment by BWC May 2024
  • @CHEOPSken do you have only Site to Site Tunnels or Tunnel Interfaces for Peers with static IP addresses? In that case you could limit the IKE Access Rules in WAN-to-WAN to a group of allowed Peers. Otherwise I'am not aware of a solution right away. —Michael@BWC
    in Blocking random VPN connection Attempts Comment by BWC April 2024
  • If you're getting the same log entries over and over again, frequency is a good way to reduce it if no details needed. —Michael@BWC
    in SonicWall TZ 570 Comment by BWC April 2024
  • 6.5.4.14 is currently the latest for Gen6. There will be probably another one soon. —Michael@BWC
    in Is my firmware up-to-date? Comment by BWC April 2024
  • It's unfortunate that there are no Release Notes linked with the Firmware. But it's the same version running on HES and it contains some fixes related to AV Engines. Official Release Notes are mandatory, IMHO. I'am running it myself without new issues and gave a green light for my customers to deploy it. —Michael@BWC
    in April, 18, 2024 Hotfix notes? Comment by BWC April 2024