Comments

• Why are you bridging your WAN interfaces to X5 and X7 to use X5 and X7 as 'internal networks'? X5 and X7 are now considered in the WAN zone, and not LAN (or other internal). While your explanation is helpful, it doesn't make much sense. Can you provide a diagram? What 'application' are you referring to?

  in Routed mode as well nat Comment by TKWITS February 2021
• CFS can and will miscategorize websites. What your firewall categorizes it as, and what its listed as Sonicwalls global response can be different. You're not crazy.

  in Another site suddenly blocked Comment by TKWITS February 2021
• Verify the Phase 1 and Phase 2 proposal configuration is correct on both sides of the tunnel. If the issue is on the other side, than it is their issue to figure out.

  in Nat Over vpn Comment by TKWITS February 2021
• Create an address object for the subnet you are to use for the VPN NAT(172.26.12.x). In the VPN tunnel properties you enable 'Apply NAT policies', set your local translated as the address object for 172.26.12.x, and remote translated as original. You do not need to manually create a NAT policy when setting the NAT in the…

  in Nat Over vpn Comment by TKWITS February 2021
• Or you can use SNMP to query the device regularly, and obtain statistics from that. See PRTG, LibreNMS, etc.

  in Calculate total egress bandwidth Comment by TKWITS February 2021
• You might be able to use the lynx browser as it does not require a GUI.

  in authenticate to internet from linux terminal Comment by TKWITS February 2021
• This is expected behavior. You should not be editing auto-added NAT rules. You should be creating new rules to perform the function you want, and placing them above the auto-added rules.

  in Problem with modified auto added NAT rule Comment by TKWITS February 2021
• @Chojin I am talking about using a public CA SSL certificate in place of the built-in SSL cert for SSLVPN and in place of the pre-shared key for GVPN. These types of configurations are required when going for PCI, or other, compliance. SSLVPN: requires maintaining the certificate on the Sonicwall device only; client-side…

  in What is the different between SSL vpn client and Global VPN client Comment by TKWITS February 2021
• Were there any changes to your environment? Have you tried connecting with the Mac from a different internet connection (ISP)?

  in Mobile connect not work from MAC Comment by TKWITS February 2021
• See this post for an explanation. https://community.sonicwall.com/technology-and-support/discussion/comment/6798

  in 1 ISP WITH 2 DIFFERENTS RANGE OF PUBLIC IP Comment by TKWITS February 2021
• The firewall received a packet with an unknown Ethernet frame and subsequently dropped it. Unfortunately Sonicwalls documentation isn't very clear with its drop code explanations. Without additional information we wouldn't be able to help any further.

  in Drop packet Comment by TKWITS February 2021
• If you are doing proper security of VPN clients with SSL certificates, than SSLVPN is the easier of the two to manage.

  in What is the different between SSL vpn client and Global VPN client Comment by TKWITS February 2021
• Another consideration is if you are enabling TOTP per-user or per-group on the Sonicwall device.

  in TOPT binding stops working to some users Comment by TKWITS February 2021
• What are you trying to accomplish with this configuration? While what you are asking is probably technically possible, whether or not it will work is another matter.

  in Routed mode as well nat Comment by TKWITS February 2021
• @lemansgt If you were in a serverless (or more accurately 'directory service'-less) situation, than the Sonicwall would be your main choice for DHCP. I do not know of any documentation that describes what you are looking for, since it is outside the scope of what Sonicwall does. There are too many variables with different…

  in Sonicwall and Wireless setup Comment by TKWITS February 2021
More Comments