Comments

• Welcome to the 'wild west' that is the internet. Cybersecurity is no joke. Nothing is plug and play. You have to define your policies and procedures to mitigate what are risks. Implement the policies and adjust to how well they are working. Continually refine. A good start is reading up on NIST CSF. A quick thing you can…

  in Attacks Comment by TKWITS June 2021
• The document is published and old, but does exist. I've never done inbound One to Many NATs, always been One to One with an internal load balancer. The Sonicwall is designed to be a security appliance, not a load balancer.

  in Nat IP External for IP Internal Comment by TKWITS June 2021
• Can you provide screenshots, or more detailed description, of the Sonicwall tunnel config? While you have provided good information it is incomplete.

  in site to site vpn issue Comment by TKWITS June 2021
• Are you local to the device or remote? Were any changes made to the network that could cause this? You haven't provided much information.

  in Log in to user interface times out Comment by TKWITS June 2021
• That makes some sense with IPv6, but still seems a bit silly to me. The OP did not mention which IP version they are working with... All this doesn't help the actual issue which SHIPRASAHU93 addressed. Either way you'd need another piece of hardware to hand off the 'routed subnet' to the Sonicwall. Your ISP might provide a…

  in GVPN client fails to connect with PPPoE + fixed IP Comment by TKWITS June 2021
• Are you using the latest BIOS and drivers on your new PC?

  in Netextender very slow to connect from new system Comment by TKWITS June 2021
• X0 is the default LAN port, X1 is the default WAN port. other ports can be port-shielded (bridged) to X0 or setup as dedicated interface for DMZ, etc. It matters where things are plugged into in networking.

  in Port Forwarding Comment by TKWITS June 2021
• 1: The logs on the Sonicwall will not provide this information. You'd have to look at the FTP server for that. You might be able to scub some info along those lines from a packet capture though. 2: Let me google that for you...

  in External FTP client connetion in the clond not passing though a TZ400 Sonic Wall to a server behind Comment by TKWITS June 2021
• I have never seen an ISP provide what you are describing: fixed IPs routed to a dynamic. I don't know why anyone would do this, but thats besides the point. Can you provide more description of your physical connection to the ISP? Are you connecting only X2 to their equipment? Why not X1? You stated that you assigned a…

  in GVPN client fails to connect with PPPoE + fixed IP Comment by TKWITS June 2021
• Seems to me you should be posting in the NAS manufacturer forums.

  in Connecting a NAS to TZ370 Comment by TKWITS June 2021
• Are firmware updates being applied? Is the firewall managed by GSM / CSC / NSM? Are there other admins accessing the unit?

  in How/why are settings changed automatically? Comment by TKWITS June 2021
• It sounds like you have more routers / firewalls involved than just the sonicwall, thus my inquiries about internal routing and more information...

  in Setting up Rule from LAN to WAN Comment by TKWITS June 2021
• It's not broken if it's behaving as intended. You can call a batch file as an argument when running cmd.exe with the /c or /k argument.

  in GVC won't run script on connect Comment by TKWITS June 2021
• We still need more information. Give us some IPs or something to work with.

  in Setting up Rule from LAN to WAN Comment by TKWITS June 2021
• The time clock vendor should provide documentation on their network requirements that you can base your configuration off of. Not sure why the vendor needs inbound access, if the device can communicate out they would in theory be able to pass any configuration changes to it that way. Anyway if the vendor is adamant about…

  in TZ350 Best pratice to open up ports in this scenario for Time Clock company Paycor Comment by TKWITS June 2021
More Comments