SonicAdmin80 Cybersecurity Overlord ✭✭✭
Comments
-
Over six months to have a working product is quite a long time. The fact of kexts being deprecated has been I think known even longer.
-
I had a brief period of unresponsive UI again, but this time it looked like it was a TLS handshake error and reloading the page made it go away. But in the meantime I noticed that unfortunately the virtual firewall doesn't have the "show cpu" command. Is there another way to see "core 0" or UI process activity? On the…
-
I used it on my own domain for testing purposes and saw it block a site once or twice. But in the end I disabled it because it caused more harm than good. There was a period where Microsoft saw the URL rewriting as a phishing attempt, bad enough for my emails sent to customers to be quarantined in Office 365. I contacted…
-
Yes the older GUI's are much cleaner, faster and easier in almost every way. The new ones don't even fit well to a smaller screen. I guess you get used to everything in the end when the old GUI's are gone, but that doesn't make them better than the old ones. Change for the sake of change seems to be the motto these days,…
-
I think the same can happen with a physical appliance, at least with SSL-VPN users when they change their password in Mobile Connect. Hyphens/dashes at least seem to be the issue, not sure if other special characters cause the issue. I would appreciate it if there's a workaround to avoid factory reset, perhaps inputting a…
-
I think I remember this happening previously with SSL-VPN where after changing the password in Mobile Connect the new password wasn't accepted. The appliance probably mangles or normalizes the dashes/hyphens somehow to a format that isn't recognized from the input afterwards. I tried the password with hyphens, dashes,…
-
Ok I got in through the web UI and can at least export the configuration. But is there any way to fix the built-in admin account without factory reset?
-
It was 6.5.4.4-44v-21-987 which I deployed and configured from scratch. I'll keep in mind checking the CPU usage if it ever happens again.
-
Cheers, I'll probably do it over the weekend just in case.
-
@BWC @Saravanan Ok great, so the acquisition should be quite seamless. I will be acquiring a NSv HA setup that has already been configured. Is there any risk that acquisition could cause connectivity issues?
-
Yes I read about that, that local modifications aren't really recommended which is a shame. But I wonder what manually acquiring does the the WAN management access and if it disables it, how does NSM communicate with the appliance.
-
I wonder how it works if I manually acquire a device already setup? I guess I find out when I do it.
-
@BWC Does that mean that with cloud NSM the WAN access has to be open for long enough for NSM to acquire the device, then it sets up the VPN tunnel and disables the WAN management after that? Or how does it work exactly?
-
That's great info. I actually didn't replace the power supply so that could explain it. I'll make sure to replace it when I repurpose the appliance as I have the new one delivered with the replacement unit. I might do the CLI configuration on the TZ670 as well, but I suspect some manual modification might be required if…
-
Yes I have, makes restoring the config much easier when it happens.