TKWITS Community Legend ✭✭✭✭✭
Reactions
Comments
-
Haven't had the misfortune of trying this yet... I would, of course, assume that it would transfer an NSM license. But you know what assuming does...
-
What is the point of having the Sonicwall in this mix? Have you considered L2 Bridge or Transparent Modes?
-
I've never done it 'live' in a production environment but IIRC the primary does not reboot if everything is setup correctly. If there is a mis-configuration with regards to link monitoring you may inadvertently cause a failover which will cause the primary to reboot. So the big question then is do you have redundant ports…
-
This is all information that should be provided up front, but anyways... Have you performed a packet capture to watch what happens with the traffic?
-
When you connect via SSLVPN the client has routes it knows. Is the new subnet in the list of known routes in the SSLVPN client?
-
Well... considering there is currently no way to monitor the CPU core usage except for staring at it in web UI its going to be hard to tell. (SNMP MIBs have been requested for Gen 7 but have never been provided that include CPU AFAIK.) Also to consider is on Gen6 the default setting was Maximum Security. On all the Gen 6's…
-
Think about what you are trying to accomplish. You added a new router which means there is likely a new subnet behind that router. Does the Sonicwall know how to route general traffic to the new subnet? Does the Sonicwall know how to route SSLVPN traffic to the new subnet?
-
The new PSUs connectors are slightly different so you aren't able to interchange them.
-
Most MSI installers have silent and uninstall options (/s /u). Have you considered those?
-
Like most robust hosting services Discourse uses a content delivery network, you'll have to identify and add exceptions for that as well. Try adding *.discourse-cdn.com to your exceptions list.
-
Have you tried adding any services to the Users \ Settings \ User Session \ User Session Settings option "Don't allow traffic from these services to prevent user logout on inactivity"?
-
You have failed to state the servers connection requirements. If the servers only need access to/from the internet, you should be able to add a new zone and designated interface to the firewall at B and exempt those addresses from the VPN. If the servers need VPN access as well than you're going to have to cough up some…
-
For others' sake here is Let's Encrypt's very simple integration guide: https://letsencrypt.org/docs/integration-guide/ In my experience, the server requesting an LE cert needs to be able to lookup its own FQDN and be able to connect via HTTP to itself on said FQDN. Assuming DNS is ok, but do you have a hairpin NAT…
-
Id try a clean uninstall of GVPN, reset winsock and the IP stack on the laptop, and then reinstall latest version of GVPN.
-
Than your packet capture filtering rules are incorrect. Setup the packet capture, then run Lets Debug and make sure you see that traffic.