BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
@Kevin did the users having the problem tried a different browser or the incognito mode for testing? --Michael@BWC
-
@Kevin you can't, which is a bummer and I needed that in the past as well. There is no real progress in the community functionality, but maybe it'll be addressed somehow. --Michael@BWC
-
@Gisaza your issue seems to be fixed in Firmware 7.0.1-5111 GEN7-37417 Deleting a user account with a domain format causes the error to be displayed: Network Object not found. --Michael@BWC
-
@Kelvin did you enabled HTTPS User Login on your WAN (X1) Interface? What does the Event Log shows for this login attempt? --Michael@BWC
-
@Raffepat if the RST is generated by your CCTV server and not by the Firewall it might be caused by an ACL on the Server which prohibits remote network access or plainly it's not listening on 38880. Are you able to access the Server on 38880 locally to rule that out? --Michael@BWC
-
@public_sector_admin did you enabled "Allow Management Traffic" on the Optional tab for your Access Rule #1? This has to be done for all Services provided by the Firewall itself. Grüße in den Public Sector. --Michael@BWC
-
@Raffepat I'am sorry but your post lacks so much information so I can only assume you're trying a Destination NAT from WAN to LAN/DMZ accessing Port 38880 from the outside? You already checked NAT and Access Rules, probably double checked with a Packet-Monitor as well? If everything is fine on the Firewall, it's a rule of…
-
@mouser18 this was covered a few times here, if you register an appliance through the Secure Upgrade Program you can do the "Register only" and have around 90 days to plan the replacement, after that or any time in these 90 days you can initiate the transfer which transfers custom licenses to the new one. It's a pretty…
-
@Tytec "Reboot tut gut" ... old german saying 🤓 --Michael@BWC
-
@sdeyoung maybe it's related to this one? GEN7-37095 For TZ 270, TZ 370, and TZ 470 models only: the Enable Stateful Synchronization option is not displayed within the management interface for High Availability. If this option was enabled in prior versions, the setting will continue to function even though it is not…
-
@sdeyoung usually HA updates are pretty painless, maybe the trouble was caused by the older firmware. I upgraded multiple deployments in the last weeks, upload the firmware to the primary (which I make sure is active), wait for the upload to complete, initiate the upgrade, finish. I don't have any units without the…
-
@sdeyoung you tagged TZ 300, I assume it's a TZ 370 or something else? Both units running the 7.0.1-5111? I experienced something similar with a NSa 4700, when the secondary not accepted the update. --Michael@BWC
-
@Asif_Iqbal that's an interesting question. Did you purchased an Essential or Advanced Secure upgrade? Only the Advanced edition comes with cloud management. --Michael@BWC
-
@Tytec well, this screenshot shows everything and nothing ... please check what the negotiated SAs are, I believe the SSLVPN is missing here. Check the log on the Cisco side as well. Are you aware of any problems that the smallest negotiable size could be /24? I've seen this in the past, but this might not apply here.…
-
Does the subnet mask match on both sides for the SSLVPN subnet which is used in the Tunnel definition? Does the "Currently Active VPN Tunnels" section on the NSa shows only a single Active Tunnel for your VPN Connection to the Cisco or multiple? Anything logged on the Cisco which might be helpful here? --Michael@BWC