Comments
-
The host should be configured with the address you want to configure on the router. On the router itself, you can configure that address and use the WAN IP as the gateway or the X8 default gateway itself as the gateway on that router. Thanks!
-
@ABlockerLemming, If X8 is the primary WAN connection, they you can use X2 as DMZ and configure it in transparent mode. The KB gives more detail on the same. You can have x.x.x.4 was the DMZ transparent range. Thanks!
-
@DisaRicks, If you have taken a backup of your settings file (.exp) before making these changes, then you can hard reset and re-import the settings. But first I would suggest putting your machine on DHCP while you connect to X0 and see if you are able to get an IP address. If yes, you can use the IP address of the default…
-
@mrshahin, Yes, that is correct. You can bind the local admin account with an authenticator on phone/PC and use the generated code on that authenticator to complete the MFA. Please refer to the KB below for more details. Thanks!
-
@mrshahin, For OTP via mail, we need to associate a username with an email address and we cannot do that with the built-in admin account. We can enable TOTP for the admin account though. Otherwise, you can create a local user, add it to SonicWall Administrators Group and then enable OTP via mail on it. Thanks!
-
@SEBASTIAN It is definitely ACL followed by App rules. Thanks!
-
@djhurt1, The firewall does maintain a cache of the previously queried websites and their respective categories. But, the categorization is saved on the cloud and each firewall queries it if the category is not present in the cache. Thanks!
-
Since this message is showing up on the unit due to a certificate change, I think when you click on restart the secondary firewall should restart first and once it is back up, the failover should take place, and then the primary should restart. If you do not have preemption for HA, the secondary should stay active. I am…
-
@Alberto, That does sound correct. Usually, a reboot is required for such a change. Thanks!
-
@Jez222, Welcome to the SonicWall community. In your case, I think the NAT is only required on your end and not on the remote side. If the VPN is already up, it means the networks are matching. I think it would be best to check if you see any traffic on the associated NAT policy and perform packet captures. Thanks!
-
@skunkworks, If you are using the Round robin mode, I would suggest enabling this option under WAN load balancing, so that the connection once made to an IP address continues through the same ISP connection. This is usually crucial with banking/government sites. Let us know if that helps! Thanks!
-
@Alun, Most of the monitoring tools on the SonicWall itself are real-time and can show what is the current utilization. For historic data like, how much data was utilized last week, you would need to check in the monitoring tools like Analytics. Thanks!
-
@Chris_has_questions, There should be a download button next to the current firmware with the settings file, as shown below. But, if you are planning on upgrading the firmware, please export the .EXP and that should be sufficient. You cannot directly upload this .sig file to the firewall and can only be done from safe…
-
@Matrixcc, Welcome to the SonicWall community. This issue is reported on issue ID GEN7-20312. As per this issue ID, it is just a display issue on the UI, although the NAT policy and the Geo-IP filter itself should function correctly. This will be addressed on the 7.0.1 release. Apologize for the inconvinience. Thanks!
-
Thanks for confirming. I'm glad it's all working as expected. Have a great day ahead!