BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
@Lucho that is what you get CLI-wise: IMHO there are no programming features baked into the CLI which support regex. Sorry that I can provide no better option. --Michael@BWC
-
@Lucho I tried a Copy&Paste on my home appliance and it worked right away. Try a "show address-groups ipv4" to list all of your groups and check for the right name, it should be "All Rogue Access Points". It has auto completion, you could hit the TAB-Key for every space in the group name, maybe something is messed up with…
-
@Lucho isn't the "All Rogue Access Points" just a simple Address Group? Quick and dirty would be my approach here, no: ssh to appliance no cli pager session show address-group ipv4 All\ Rogue\ Access\ Points #copy the address-object lines from the output into a text editor #replace "address-object" with "no address-object"…
-
@Dev if it was managed by GMS you should make sure to disable the GMS settings on the appliance as well. I assume the device got deleted from GMS, because it would connect via MGMT HTTPS to the unit and cause this. --Michael@BWC
-
@Dev is this unit managed by GMS/NMS? I saw something similar in the past once when a unit got preempted without being managed centrally. For that reason I always disable ZeroTouch on every unit I'am configuring. But your question does not seem to be IE related. --Michael@BWC
-
Refreshing the UI does not show them either? This happens to me all the time when creating objects via CLI. Maybe @Jaime or @MustafaA or some other with API experience will be more helpful than me. --Michael@BWC
-
@Gandhi just to rule out the obvious, you issued the commit after the operation? --Michael@BWC
-
Followup, AzureAD got me thinking, not sure if MFA works there because I don't use it ATM. --MIchael@BWC
-
@Alberto do you believe that GEN6-999 might affect you? This issue sounds like it's meant for users not already binded their TOTP, but I might be wrong here, never faced this specific one. TOTP authentication is not supported on a High Availability pair when the same user has different QR code and scratch code on…
-
@Alberto it's preserved, otherwise this would be a disaster everytime the unit switches the TOTP binding would became invalid. But fair question, we've seen questionable things in the past :) --Michael@BWC
-
@ITMgr did you checked the priority of your Access Rules, I'am currently investigating some weird behavior where it seems that Access Rule get shuffled around for no reason, resulting in Drop before Allow situations. But this would probably not explain why the new MAC address is working and the older ones not. Did you do a…
-
@techie_bloke Email Security does not support MFA, not on-prem, not on HES. --Michael@BWC
-
@cellsee6 why calling SonicWall Sales? You should get in touch with a Partner near you which helps implementing and support a security solution like this. --Michael@BWC
-
@secallona maybe it should escalated to SNWL support. I did a few tests on a TZ 400 (6.5.4.12) and was not able to use the DNS Proxy with SSL-VPN. I added the necessary Management Rule, even tried some NAT rules, no luck. According to the Packet-Monitor the DNS request get received by the SNWL but no answer is sent back to…
-
@Trauti are you running the latest Firmware 6.5.4.12? I had Packet drops in the past despite the fact that there was a matching Rule allowing the traffic. A reboot helped for a while but it got finally fixed in 6.5.4.11+ Just in case to rule this out. --Michael@BWC