Menu

BWC

Cybersecurity Overlord ✭✭✭
Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

BWC Cybersecurity Overlord ✭✭✭

Badges (27)

5 Year Anniversary250 Answers4 Year Anniversary3 Year Anniversary250 Likes100 Answers100 Helpfuls2 Year Anniversary1,000 Comments50 Answers1 Year Anniversary500 Comments25 Answers100 Likes25 Helpfuls100 CommentsWork Out Loud5 Answers25 LikesFirst Answer10 Comments5 HelpfulsFirst Comment5 LikesPhotogenicName DropperEarly Adopter
See More

Reactions

9 Promote 189 Helpful 416 Like 0 Spam 5 Abuse

Comments

  • @Pjp usually I tend to allow only specific NTP servers accessed on the Internet, therefor an address group has to be defined with all the sanctioned servers and used in related access rules. Depending on the size of your deployment you could install a small NTP server in your camera network, like on a Raspberry Pi or even…
    in Can my firewall be an NTP source of information ? Comment by BWC January 2023
  • @Pjp no, SNWL appliances do not provide any NTP services, you need to run your own in your network or you use an external trusted source. --Michael@BWC
    in Can my firewall be an NTP source of information ? Comment by BWC January 2023
  • @loyaltyorkide did you tried to enable "Secondary Subnets" in the internal settings, this might offer a solution for that. The secondary IP can than be bound on X1 in the Advanced tab. I can't test it at the moment and never used it before, but it must be there for a reason :) --Michael@BWC
    in /32 WAN IP Comment by BWC January 2023
  • @loyaltyorkide yes, you need the Inbound Rules, just make sure that you mark your Access Rules as Management Traffic if you need to access the Web-Interface for example. I'am not certain if VPN will work properly, you might need to tinker with the default rules for that. There is a setting in the Internal Settings section…
    in /32 WAN IP Comment by BWC January 2023
  • @loyaltyorkide you were right with your assumption, a static ARP and a NAT rule (outbound) should do the trick, you might need additional NAT rules for inbound traffic, but this was not mentioned in the Mikrotik PDF. You might check with the Packet-Monitor if inbound packets arrive at X1. This KB-article covers the steps…
    in /32 WAN IP Comment by BWC January 2023
  • @loyaltyorkide if you can provide the information for Mikrotik I could tell you what the steps are on SNWL. But I think NATing to the 80.x.x.x/32 is the way to go. --Michael@BWC
    in /32 WAN IP Comment by BWC January 2023
  • @RikardB That's what ChatGPT has to say (I had to test it): The SonicWALL community is a user forum and support platform for users of SonicWALL products and services. It is a place where users can ask questions, share knowledge, and get help with using and troubleshooting SonicWALL products. It is also a place where users…
    in Virtual Office HTML5 RDP not going to full screen Comment by BWC January 2023
  • Does anybody knows why the Parition Policies are only available for ANY, LAN and DMZ zone but no other custom zone? For now I leave the zone to ANY and select the appropriate network, but Gen6 offers custom zones. The more I try, the more it looks all half-baked to me. --Michael@BWC
    in Gen7 - Authentication Partitioning Comment by BWC January 2023
  • @Micah @Ena could you please forward this thread to someone with deeper knowledge what the current state of play is regarding TSA etc. It seems there is no progress for a couple of year on that front. --Michael@BWC
    in Directory Connector 4.1 replacing DC+TSA 4.0? Comment by BWC January 2023
  • Update: After removing the Partitions (except Default), disabling Partitioning, Configure single SSO and enabling Partitioning again it seems to work, it might be UI related all along. It's configured exactly as it was before. Service Objects and Access Rules all created as expected. I leave it to that, probably just a…
    in Gen7 - Authentication Partitioning Comment by BWC January 2023
  • @ullerdk I'am running a few deployments with LTE Backups, usually in conjunction with a Mikrotik LTE router. At the end of the day you can use any vendor which provides a LAN connection, you just need to have a transfer network on your X2 between the SNWL and the LTE router and route accordingly. I never used USB because…
    in LTE as backup on TZ370 Comment by BWC December 2022
  • Quick follow up on this, despite nobody cares. If I leave the blank junk report mail open in Apple Mail, it appears after around 45 seconds without interaction. For further investigation I exported the mail as EML and I'am able to reproduce this over and over again. I tinkered with the mail body and it all comes down to…
    in iOS 16.1 - Mail App crashes in Junk Box Summary Comment by BWC December 2022
  • @piechk can you see any entries in the ARP table of your Stormshield for the .113.0/24 network which point to your SSLVPN clients? If not, did you tried to insert a route for the NetExtender Range on your Stormshield pointing to the SMA? I assume we can root out any IP conflicts on your .113.0/24 network. --Michael@BWC
    in Losing connection to internal hosts via SSLVPN Comment by BWC December 2022
  • @TheRealSnarfster I don't say it's impossible, but very unlikely that anyone tinkered with the box to install an alternate OS. If you don't like SonicOS that much and missing to many things, my advice would be to sell the box. SonicOS covers a lot of topics in a very good way which is fine for the most of us. It's not all…
    in Alternate OS (Firmware) for Sonicwall TZ270 Comment by BWC December 2022
  • @Maui first I strongly advice against publishing a Web Server from the LAN. The best case scenario for resolving your demand would be a reverse proxy in the DMZ which distributes the requests to your Web Servers depending on availability. But I assume this is not a viable solution in your case? The only other option which…
    in TZ270 Set Up to run 2nd web server with current configurations settings from main server Comment by BWC December 2022