MarkD Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
You can't set those, the flags are within TCP stack for your device, as the source port is 513 this appears to be the Rlogin service - I'm assuming on your Solaris box (although it dose not show the source IP)
-
XMAS tree attack is referring to the TCP flags that are set in the Notes Field. In this instance four of the possible 6 flags are set URG ACK PSH FIN simultaneously
-
I wouldn't suggest bridging the WAN to LAN through this device, you will compromise the security. is there a reason for it to be seen as a LAN address and not its external? you could try create the address objects 192.168.1.14 Zone LAN, object 10.1.10.100 WAN add a NAT policy original source 192.168.1.0/24 original…
-
In the device/log/settings - import the firewall action the logs should then show the action against the firewall rules.
-
The device should be accessible on the external IP address 10.1.10.100 from internal devices 192.168.1.0/24 for outbound traffic. The web servers MAC address should also be visible in the ARP table on the X1 interface. what is this? Static 192.168.1.14 (set this IP address to connect to X1 LAN's Web Server IP 10.1.10.100…
-
Check that you have bidirectional port matching enabled on the packet monitor, if so the server you are trying to connect to is not responding You send the TCP SYN to start the 3 way handshake but nothing is shown coming back.
-
There is definitely information in the release notes for 12.4 Supported Firmware Levels Client systems running version 12.4 client software can be used with SonicWall SMA appliances running one of the following firmware versions: 12.4.0 + latest hotfixes -> 12.4.1 12.1.0 + latest hotfixes -> 12.4.1 12.3.0 + latest hotfixes…
-
I think you will encounter an error when trying to use the same encryption domains/ destination/ interesting traffic - whatever terminology you are familiar with. IPsec Name: Address object XXX overlaps in XXX Network policy On an IKE V1 IPSEC site-site VPN you have the option for a primary and secondary Endpoint If you…
-
I always find diagrams can be more descriptive
-
The release notes should provide guidance and pre-requisites
-
Can you elaborate on what you need, what is "Event ID" - are you referring to something like the Windows event_id?
-
24X7 SUPPORT FOR NSA 5600 1YR - 01-SSC-4284 - but that will give you no security services subscription :- SonicWALL Gold Support 24x7 - 24x7 phone, email and Web-based Support, RMA, Firmware updates. We have moved all bar two of our clients to Gen 7 - under the secure upgrade program
-
I would first review the CVE and the rating and cross reference with the SW security advisory Security Advisory (sonicwall.com) Are the results of the scans being carried out externally or internally
-
that's a question for TrendNet
-
unless its deleted, the previous firmware should be on the appliance - boot from that and try the SSL.