Comments

• Show us some sanitized screenshots please. Did you follow the KB article?

  in Remote Access via Global VPN Client to a TZ370W (IPSec VPN) Comment by TKWITS July 2024
• @Razzberry you shouldnt have to use an app password, just use the 'direct send' method in the microsoft article.

  in MFA and emails Comment by TKWITS July 2024
• Glad you got it worked out. On a side note, theres a mobile app? LOL

  in On a TZ670 to use the 10GB Ports on X8 and X9 as X0 and X1 what is the best way to do that? Comment by TKWITS July 2024
• You might also want to look into Policy Based Routes and the default NAT policies, depending on how strict you want to be.

  in Firewall TZ270 - Dual ISP WAN Comment by TKWITS July 2024
• 255.255.255.0 is the subnet mask. The subnet is everything masked by the 'subnet mask' e.g. 192.168.168.x where X would be the host address. Example: You are currently using 10.0.0.1 / 255.255.255.0 as the IP address on X0. You change the IP address of X0 to 10.10.0.1 / 255.255.255.0. You changed the Subnet from 10.0.0.x…

  in On a TZ670 to use the 10GB Ports on X8 and X9 as X0 and X1 what is the best way to do that? Comment by TKWITS July 2024
• "And it's just kind of impossible to do because if I change XO to a different subnet and hit save I can't get back into it to change X8" It's not impossible… Change X0 IP, set your PCs IP to an address on the same subnet, log back in to the Sonicwall on X0's new IP, and change X8…

  in On a TZ670 to use the 10GB Ports on X8 and X9 as X0 and X1 what is the best way to do that? Comment by TKWITS July 2024
• I don't recommend portshielding, as all switching functions are done in software and you will probably see performance issues portshielding a 10G to a 1G interface. Use the X0 interface in the LAN zone as a dedicated management interface, so change the IP address completely to something else and document it. Create a new…

  in On a TZ670 to use the 10GB Ports on X8 and X9 as X0 and X1 what is the best way to do that? Comment by TKWITS July 2024
• I have run into this with no resolution from the various Sonicwall KBs. I will try to be succinct. We are replacing a Cisco ASA with a NSA3700. Planned a phased migration where we swap IPs of the Cisco and Sonicwall interfaces to direct traffic through the Sonicwall on a VLAN by VLAN basis. A dedicated interface was…

  in NSA 4600 - dropped packets for invalid TCP Flag #1 Comment by TKWITS July 2024
• AFAIK such a feature doesn't exist, blocking a specific user agent. @Community Manager might be able to elaborate, but likely would need to become a RFE. That said look into the dynamic BOTNET filter feature. You'd have to maintain a list of your own known botnets but it could help. Others have hosted their own botnet file…

  in Is there a way to block Python traffic Comment by TKWITS July 2024
• Have you considered you are under attack? Seems like script kiddies are using public code and reworking it in python…

  in Is there a way to block Python traffic Comment by TKWITS July 2024
• I dont know, I dont use the API. What does their documentation say? All Sonicwalls come with a built in, self-signed SSL certificate.

  in SonicOS APIs Comment by TKWITS July 2024
• Are the computers assigned the ADDS DNS server? The message indicates the workstations are not communicating the with the domain controller.

  in Domain is not available from users Comment by TKWITS July 2024
• @Community Manager have any thoughts on this?

  in LAN outage with Global VPN Client + Intel i225-LMvP + Intel 2.1.2.x / 2.1.3.x Driver + Windows 11 Comment by TKWITS July 2024
• You get the 2FA code from the app you used to set it up…

  in SonicOS APIs Comment by TKWITS July 2024
• NAT alone does not provide encryption.

  in NAT rule with encryption Comment by TKWITS July 2024
More Comments