BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
@Master_Crane you can go directly to 6.5.4.9 or 6.5.4.11 which I prefer. --Michael@BWC
-
@AF30KK Device -> Users -> Status -> Show Count should tell you how much Users are online, you need to compare with the max. Number of licensed Users. Another option would be Network -> SSL VPN -> Status. You could also download a TSR, this holds the information as well, a single line holds max. licensed and current used…
-
@AF30KK your firmware is way to old, go ahead and install 7.0.1-5095 which fixes lots of issues. A common problem is the exhaustion of licenses or sslvpn pool addresses. --Michael@BWC
-
!!! DO NOT INSTALL 10.0.20 - I've got a 2nd mail to hold off because of an issue !!! If anyone is fancy about DMARC reporting, SNWL released Firmware 10.0.20 without much commotion which addresses this topic, according to the Release Notes and Feedback I've got on my long running Support Case. Some other fixes are also…
-
@stevmorr I couldn't find any official information right away, I did a check for you and authentication with a vanilla domain user was working fine, no special rights needed. --Michael@BWC
-
@stevmorr AD integration is IMHO straight forward. Read-only AD user might be sufficient for that, unless you're allowing password changes, not sure if this requires more rights, never used it. Is the test not working? --Michael@BWC
-
@Overbill6015 first, we're talking ES 5000, correct? I suppose you're already running 10.0.19 then? Did you enabled this Option in your Connection Management, it helps a little sometimes. Logging on Email Security is beyond awful and I lost faith at this point that it'll ever change. You might manually download (worst form…
-
@Simon_Weel nice catch, @Chamil are you using any Aruba Instant On devices? --Michael@BWC
-
@Hannman I never had to deal with the absent firmware in all the years, so I guess it's not common, but known :) You might check with SNWL support and maybe there is some information in the diagnostics log which can be downloaded from the internal settings page. When VPN connections are not coming up by it's own, I usually…
-
@SupportFast this is a topic covered many times. On Gen6 appliances you can roughly expect a throughput (/w enabled security services) calculated by that formula (rule of thumb): Max Throughput / Number of CPU Cores 300 Mbps / 4 (TZ 500 has 4 Cores) = 75 Mbps (which matches your test). A single flow is limited to a single…
-
@ServiceLine there is no out of the box solution for this, but you should have a look into the API for enabling/disabling security services. Another option you should look into, are Schedules which can be bound to Access Rules. This enables you to allow/disallow specific traffic based on time and day, no specific dates…
-
@Larry is there a possibility the Countries are sorted by ISO Country Code instead of Country Name? I experienced this in the past, it might the case here too, it somewhat looks like. --Michael@BWC
-
@eugp if I get this right, both WAN ports getting IP addresses in the same subnet, e.g. X1 192.168.1.1./29 and X2 192.168.1.2/29? This is not allowed and there is IMHO no way for overlapping subnets on different interfaces. If there is more to it just let us know. --Michael@BWC
-
@Hannman if I get this right, none of the network ports is working, even the MGMT port is dead? Did you tried to boot into safemode to make sure it's not a ROMpack related issue, if you can get a network port working? If nothing helps you need to get in touch with SNWL support. --Michael@BWC
-
@Chamil about Ethertype 0x8ffd, I did not found any information, you should ask the vendor of the device with the related MAC address what it is about. Known Ethertypes I looked at: About the 2nd Screenshot, it seems that you're receiving VLAN 100 tagged packets on your X0. Check your Network Interface and Switch…