BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
@Tytec and the NSa? You're using an Address Group object as Local Network in the Tunnel configuration which holds all needed networks? --Michael@BWC
-
@Tytec does your Local Network definition in the IPsec tunnel holds all networks in a group which need to be routed into the Tunnel? E.g. LAN and SSLVPN Subnet? On the Cisco side, is the Cisco aware of all Remote networks, e.g. LAN and SSLVPN Subnet on NSa? If there is no SA negotiated it won't work. --Michael@BWC
-
@casidus I'am sure you've already done the obvious, testing from another machine, testing from local not remote, disabling any endpoint security which might interfere and check the browser console (developer tools) for any errors which might give a hint. This can't be a licensing issue right? I don't know how the virtual…
-
@casidus this is the Classic Navigation view which might be messed up. Did you clicked on the little icon (the 3 lines) in the bottom left corner to switch to contemporary mode? Another option would be to access the Internal Settings and disable the Option " Show Classic View Pages" is enabled. You can access the Internal…
-
@casidus can you provide a screenshot what actually is shown when you select Manage -> Rules -> Access Rules or Manage -> VPN -> Base Settings ... please blur any sensitive information. --Michael@BWC
-
@casidus that would have been to easy. Is the whole Rules and VPN section missing from the UI or "just" your custom configuration? You did not selected IPv6 by accident and looking for IPv4 or have some other values in the filter which might hide them? I fear that needs to be addressed by Support, I cannot think of…
-
@casidus I have no experience with the NSv series but did you tried a different browser or Incognito (private) mode in your browser to make sure it's not just browser related? Browser issues are pretty common and annoying these days. --Michael@BWC
-
@Kyniu1 I'am not 100% sure that I can follow, but if you like to disable OTP for a specific user you need to do the following: log into the firewall via ssh configure user local user <username> no one-time-password end end Your mileage may vary if you don't work with local users --Michael@BWC
-
@judywatson which version of NetExtender you're running? When install 10.2.331 you need to enable the PreLogon when installing the Client. You might need to reinstall to have it working because I think it's not changeable later on. --Michael@BWC
-
@Kamil_Szymanski I highly recommend a real NAC for detecting/reporting/quarantining unauthorized devices, but you might look into this if it fits your needs: E-Mail Notification can be done via logging for the specific events. --Michael@BWC
-
@abhishekbisaria great that you got this sorted out. If you saved a TSR before the factory reset you may compare it with a current one, if you believe you configured the system exactly like before. --Michael@BWC
-
@ThK @David W to quote from April 2022 "We have been tracking this and do not have a clear understanding just yet of why this is happening." it seems the understanding did not made any progress. A year later it still happens, I guess I need to check HES instances at least once after every update that I'am getting aware of.…
-
@AlexColohouse IMHO it's not possible to transfer from one machine to another (Windows users might know better), but you should not use Mobile Connect any longer if there isn't a specific need for. --Michael@BWC
-
@AlexColohouse you should get one of the supported VPN Clients for your remote access, because MC on Windows in unsupported and I don't know if it is still downloadable. --Michael@BWC
-
@BSKINNER what device is providing the DHCP server, the NSA or something else in your network? If it is the NSA, did you checked that the service is enabled? Did you rebooted the NSA and last but not least, what Firmware version you're running? --Michael@BWC