BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
@IslandTechnologies the HA Appliance is not meant to be to run as a single unit and always need to be attached to a Primary Unit. Only the Primary Unit has to be licensed and the HA Unit (Secondary) shares the licenses with it. That's the reason why you cannot bind a license to a HA Unit.…
-
@Laurens IMHO it's part of the Syn Flood Protection The method of SYN flood protection employed starting with SonicOS uses stateless SYN Cookies, which increase reliability of SYN Flood detection, and also improves overall resource utilization on the SonicWall. With stateless SYN Cookies, the SonicWall does not have to…
-
@TonyA any idea what I should make out of this? Will there be a review by the GRID reasearch network because the Lookup Tool on the web does show the correct Country, but the Firewall does not? These fuzzy answers are one of the reasons why I usual avoid to contact Support. >after submission done, Geo Ip location is fixed…
-
@TonyA I created a ticket and hope for the best. At least it does not seem like a wide spread problem. --Michael@BWC
-
@RooibosGreen maybe it was possible on very old firmware releases but IMHO there is currently no way to safe the config in Safe Mode. You should hold the prior IT staff accountable for that. Look on the bright side, if you configure the Appliance from scratch you can do a complete Overhaul of the Policies 😉 --Michael@BWC
-
@RickJones maybe .mil does not get recognized as valid TLD? No problem to create on the appliance though. Maybe some NSM wiz can chime in here, @Larry @TKWITS --Michael@BWC
-
@LitBobOn ja, that's the general advice these days and it happens all over the place, like on MySonicWall or the Appliance UI. - Incoginito Mode is always helpful - Clearing Cache - Different Browser (Firefox is my preferred weapon of Choice for SNWL) --Michael@BWC
-
@RooibosGreen I did a quick check and ran the procedure you listed above and it seems that the downloaded Firmware does not contain any settings. Is there a Cloud Backup or manual Local Backup available by any chance? --Michael@BWC
-
@SonicAdmin80 I can't say for sure, it seems in Gen7 there is no export config option in Safe Mode according to the KB article. I assumed it was possible in the way @RooibosGreen described it. I checked on an older appliance and there was indeed no configuration export option in Safe mode, maybe the Download Firmware…
-
@SonicAdmin80 hmm you got me thinking, but @RooibosGreen got the config exported in Safe Mode and if we follow the usual "logic" and import a config to a factory reset appliance it should end up in having the default password with a running config. I'am not eager to test it with my production appliance (don't have a spare…
-
@Hoppy I don't think that the Appliance will make it's name known by LLMNR or NetBios ... but why do you need this? Why not using the DNS Proxy in the Firewall or a local DNS to do proper Name Resolution? What DNS do your endpoints have configured, could you change them to the IP of the Firewall for example? If yes, you…
-
@RooibosGreen that's the way to go, the restore of your config will keep the default password. --Michael@BWC
-
@djhurt1 correct, let's assume you have LAN and VOIP Zones each with a "Trusted" trust level, they'll be able to talk to each other due to the Auto Rule. My approach, browse through all zones and untick all of these Auto Create checkmarks for each and every appliance I'll put my hands on. --Michael@BWC
-
@preston yes I'am currently looking into reporting via syslog again. Maybe with some help of ELK or Grafana/Loki. I totally abandoned GMS because the Summarizer was causing trouble all the time. My customers just need a simple audit reporting, when a user was logged in, for how long etc. --Michael@BWC
-
@St4ckOv3rflow I really hope you'll have better luck than me, because my discussion from 2 years ago went to nowhere (as often). --Michael@BWC