Comments

• @EnaBev a little help here wouldn't hurt

  in How long am I expected to wait for NSM to deploy minor changes to firewall? Comment by TKWITS August 2021
• @EnaBev Since you are new to the community brace yourself because many of us have been sorely disappointed with Sonicwall over the past year. Especially with Gen7 / NSM. I echo Larry and Jurg's sentiments. I have generally avoided opening tickets because they never get resolved.

  in Waiting for a technician to pick up a Support call Comment by TKWITS August 2021
• Familiarize yourself with the concepts of zone based firewalling and object oriented management/programming. These concepts are fundamental to firewall management. You dont need to learn programming you just have to understand the idea behind object oriented models. A good visual reference for zone based firewalling: That…

  in Basic WAN GroupVPN setup on Dell 12800 SOHO Comment by TKWITS August 2021
• Think about what you are trying to accomplish. If your GroupVPN allows access to "LAN Subnets" than that includes the entirety of your internal network. You don't want that. You want to select an address object that represents the HVAC device. The same thought applies to the user account being used to login. The big…

  in Basic WAN GroupVPN setup on Dell 12800 SOHO Comment by TKWITS August 2021
• Glad to help. Feel free to mark an answer for others to see.

  in Packet détail problem..... Comment by TKWITS August 2021
• Thse might be what you are looking for. Again, this is a question for a *nix forum, not Sonicwalls. Good luck.

  in NetExtender CLI Linux Comment by TKWITS August 2021
• Ciscos will hide some settings in the raw config file unless it is explicitly defined, so while its possible it could be part of your issue I cannot say for sure. At this point I would work with the 3rd party and have them run a packet capture on their device looking for traffic from mine. You have already verified your…

  in Many-to-One NAT over VPN? Comment by TKWITS August 2021
• There is no way to 'disable' an account on a Sonicwall. The account either exists or it doesnt. That being said preventing SSLVPN access depends on how you have users setup. If the user is being authenticated via LDAP, disabling the account is your directory services should be enough to prevent the user from logging in or…

  in ACCESS SSL VPN FROM GEO IP AND DISABLE USER FEATURE Comment by TKWITS August 2021
• Any feedback from Sonicwall? @Micah?

  in NetExtender - no support for TLS 1.3? Comment by TKWITS August 2021
• By default the global GEO-IP filtering list will be applied to inbound SSLVPN traffic. You can edit the global list, or you should be able to edit the access rule to use a custom list. Not sure what you are asking in part B.

  in ACCESS SSL VPN FROM GEO IP AND DISABLE USER FEATURE Comment by TKWITS August 2021
• not sure why you want NetBIOS on your WAN, but have you seen this? The same idea can be applied to outbound traffic.

  in About Netbios port Comment by TKWITS August 2021
• i would suggest nesting scripts, rather than trying to run it all in one. can you post a copy (sanitized if needed) of your script? this really isnt a sonicwall question, more linux. what distro are you running?

  in NetExtender CLI Linux Comment by TKWITS August 2021
• You have failed to provide what version of netExtender you are using? Have you seen this post? https://community.sonicwall.com/technology-and-support/discussion/comment/9143

  in NetExtender on M1 Processor Comment by TKWITS August 2021
• A static ARP entry should accomplish what you are asking for BUT be aware that using the LAN host MAC address as an ARP entry on the WAN interface may cause the Sonicwall to identify traffic as Spoofed.

  in How to 'forward' LAN host MAC address to WAN Comment by TKWITS August 2021
• have you done a packet capture to see how the firewall is handling the telnet traffic when using the 0.0.0.0 address in the VPN?

  in Packet détail problem..... Comment by TKWITS August 2021
More Comments