TKWITS Community Legend ✭✭✭✭✭
Reactions
Comments
-
The article you linked mentions enabling Multicast and allowing traffic to it, did you do that?
-
There is a logging checkbox on the General tab of the older (5.x and 6.x) interfaces, and on the Logging tab on the newer (7.x) interfaces. Setup a syslog server and set your firewall to send logs to it.
-
I'm not sure why you brought up Ubiquiti, they have documented issues for years that have gone unresolved in both their switch and wireless products. And they seem to have gotten worse over the years when it comes to releases and fixes... I hope youre 'trying it out on a whim' in a test environment, and not in production.
-
Unfortunately you likely won't see much coming from support. Their switches are missing a ton of simple things (like port descriptions) when managed locally, and even more when managed from a firewall. Maybe a few months from now things will be better...
-
You need to contact Comcast business. They do not do bridge mode on their modems, thus the traffic destined for your business connection isn't hitting your firewall. If you can't ping the business public IP than they need to change their config. I've run into this before with them. Comcast sucks. Do NOT ask for bridge…
-
Have you seen the above? Ran into this a few years ago and it ended up being the 5GHz wifi channel was overlapping with the one Apple's devices use for P2P Airplay. Oh the joys of Apple...
-
Is it the firewall that has been subjected to it, or a device behind it? Do you have proof this has caused an issue or are you just reading the logs? See above. Nestea is a type of DoS that is quite old, but I suppose someone could still be trying to use it.
-
ISPs like this should not be allowed to run. If they are giving you static IPs than they cannot be handed out via DHCP. If you have an IP that works when assigned statically, just use that one and read up on NAT. See this post for an explanation.
-
Unfortunately this is one large downfall of Sonicwalls SDWAN configuration. You do have to consider that Big Tech has geographically diverse IP addresses and equipment. Google/Microsoft/Apple/etc. do not run on a single server on a single provider with a UPS with bad batteries. Their services are engineered to be available…
-
Those steps are for Email Security appliances, not for hardware firewalls. Unfortunately you have to factory default a hardware firewall if you cannot restore to a known good backup or misplace the admin password. It's possible the steps you outlined are for software firewalls, but I cannot confirm. Either way from the…
-
Not sure what phones / PBX you are using, but that would help. Yes, there maybe occasional issues when encountering a new VoIP system but once you have good settings that can be reproduced there are rarely issues. Above might be what you are looking for. Also below. As far as editing UDP timeouts it is something that I…
-
You also have to consider if you are going to use any of the security or reporting features as they will limit the throughput as well.
-
@Ehsan Did you get anywhere else with this?
-
This may be an issue with encryption. Since most websites use SSL encryption of some sort, without DPI-SSL the encrypted traffic isn't scanned, because the Sonicwall can't decrypt it.
-
Zero touch and NSM do not play nicely... yet. Be wary.