TKWITS Community Legend ✭✭✭✭✭
Reactions
Comments
-
Are the users logging in to a directory (e.g. Active Directory) joined system when accessing remotely? If not are they prompted to provide credentials when browsing to the shared folder? I'm wondering if this has less to do with the Sonicwall, more to do with the sharing and NTFS permissions on the shared folder.
-
I have wildcard FQDN exclusions to many Microsoft domains, but most are hosted in the USA anyway. I have Address Objects in the Default GEOIP & BOTNET Exclusion group. If you provide an address to test with I can report my findings (I am on a TZ570 w/ 7.0.1.12xx).
-
You should not have RDP access open to the internet. This is a huge security risk and will eventually get you hacked or ransomwared. To answer the intial question. If you ARE going to run like this you should either severely limit the IPs allowed to access the RDP systems in your allow rule. Or you will have to play the…
-
The default Access rules on a Sonicwall block all inbound WAN to LAN connections already. Are you sure the WAN side is initiating the connection?
-
So, can the users even access the Windows Server shares remotely? As in they can browse to them and see the files? How are the Windows shares accessed mapped drive? UNC path? You haven't given us much to work with.
-
You can also use SD-WAN or policy based routing to direct traffic. With the default rule sets (auto-created via the Zone), your two networks will be able to communicate.
-
Do you mean other than rebooting the device?
-
I would recommend going to Firmware version 7.0.1.12XX. It introduced many fixes and may include a fix for what you are describing.
-
let me google that for you... but also Most importantly did you create an access rule allowing any traffic from the WAN to the new subcontractor zone?
-
I have seen what you are describing before, but that was years ago on much older versions of both firmware and netextender... I would try using an older version of NetExtender, one that you hadn't had problems with. Obviously, removing auto-update as well. I tend to stick with versions between 8.6.266 and 9.0.x.
-
let me google that for you....
-
What firmware version(s) are/were you running on the firewall? What NetExtender version(s)? Any reason why you manually uninstalled / re-installed? You can force NetExtender upgrades via the Client Profile on the firewall.
-
Which router web GUI are you referring to that you can't access?
-
Basically if you can prove you physically have the device (e.g. send them a photo of the serial number label), and purchased it (e.g. invoice), they will transfer the device to your account. Normally though you'd buy from a reputable seller who can transfer the device to you.
-
Though I do not have experience with business class ISPs providing IPv6 connectivity, it is my understanding of IPv6 that you should not need to NAT with it. NAT-ing was created to get around the numerical limitations of IPv4 addressing exacerbated by the constantly increasing number of connections to the public internet.…