Comments

• In addition; you can set to "Network / System / Network Monitor" rules for vpn connection and enable email log for "Device/ Logs / Settings / Network / Networkmonitor" sub log details..

  in get alert Comment by MitatOnge April 2022
• could you use packet capture for this session. and check packet capture Module ID and Drop code details.

  in Getting TCP Flag(s): ACK RST on https sites Comment by MitatOnge April 2022
• you cannot block without DPI-SSL. check this out:

  in Problems with blocking in UltraSurf Comment by MitatOnge April 2022
• @JurjenArnold Sonicwall has released below signatures. SonicWall’s, (IPS) Intrusion Prevention System, provides protection against this threat: • IPS: 2609 JAVA Spring Framework Command Injection (Spring4Shell) • IPS: 13431 JAVA Spring Framework Remote Code Execution (Spring4Shell) 2 • IPS: 13432 JAVA Spring Framework…

  in IDS/IPS Signatures for CVE 2022-22965 (Spring4Shell) Comment by MitatOnge April 2022
• in my opinion, if you dont use or wont use BGP on the wan interface. you should disable it. otherwise will be open bgp ports and somebody can take attack to ports.

  in Blocking BGP traffic Comment by MitatOnge April 2022
• did you try below document and you will see under the page. NOTE: Please disable exclude from route advertisement (NSM,OSPF,BGP,RIP) under Network | Interfaces | WAN.

  in Blocking BGP traffic Comment by MitatOnge March 2022
• @César_S Outbound traffic scanning is better security layer for zombie end point and your network security . If you have a lots of guest users and you don't believe in end point security tools work fine, you should enable outbound security and tcp streaming scanning. Sonicwall GAV has high qualty scanning engine. Pros:…

  in IPSec and ATP Comment by MitatOnge March 2022
• did you remote site fileserver ip add to other site capture atp exclude list?

  in IPSec and ATP Comment by MitatOnge March 2022
• are you using routed mode or bridge mode on ISP modem? if you are using routed mode. you have to change management ports 80/443 tcp on firewall and forward TCP 80, 443, 5000, 5001 and 6690 ports modem to Firewall.

  in Trouble allowing external access through TZ270 to a Synology NAS. Comment by MitatOnge March 2022
• you should enable ip helper for SLP service and 9100 tcp printer port HP printer: Samsung Printer:

  in How to share printer in DMZ Comment by MitatOnge March 2022
• @JureMazic did you change disk size on the vm settings? or did you copy other vm host? it could be uuid change?

  in Sonicwall analytics web access does not work Comment by MitatOnge March 2022
• simple answer is : If you have HQ Firewall and deploy a lots of S2S vpns on the same public ip, Your HQ Firewall match the rule with key identifier strings on the rules.

  in What is a Key Identifier Comment by MitatOnge March 2022
• colud you chechk dns query and responses both hotspots (boss, yours) is it match?

  in Why can I connect from one mobile hot spot/wifi network, but not another? Comment by MitatOnge March 2022
• I have faced like this. could you send gvc logs. I think problem is ISAKMP packet.

  in GVPN Client cannot connect on ATT network Comment by MitatOnge March 2022
• What is your S2S tunnel? Tunnel interface? İf you did tunnel interface, add to capture atp exclude ip address group. it will work. otherwise, it isnt tunell interface, disable security services on the zone menu.

  in IPSec and ATP Comment by MitatOnge March 2022
More Comments