Comments
-
@nbctcp , You just need to add the subnets as address objects and group them together. You can select this group in the VPN policy and the same tunnel can be used for all the subnets. Thanks!
-
@Chathura_Yapa1, Here are the differences. 1) It is not that one is less secure than the other but on what layer the security is applied. GVC is IP security whereas SSLVPN is L-4 layer security. Both are equally secure. 2) The main differences to consider are the end clients that they support and the data transfer rates.…
-
@WCG_Admin, Please refer to this KB article. Thanks!
-
@Dant , In your case, just the access rule should be enough. The SonicWall adds routing policies etc once you configure VLAN sub-interfaces. So, it knows how to forward traffic between those networks. If you have any additional queries, please let us know. Thanks!
-
@Dsenora, We have a reported issue where the TOTP bind fails after a failover to the HA device on Issue ID GEN6-999. But, even without a failover, if you are seeing this problem, then it would be best to upgrade the firmware to the General release 6.5.4.7-83n first and then reach out to Support if the issue still persists.…
-
@Dant, Thanks for sharing that. I understand now. I hope you know that the VLAN interface under Zone B, can belong to Zone A but needs to have a separate IP scheme. But the access rules can be added such that New PC can communicate to the Zone A PC. Thanks!
-
@Dant, Even if traffic is completely prohibited between two zones, specific access rules based on the source/destination IP fields can be added to allow only the necessary traffic. I did not follow the cable part, do you have a network diagram or elaborate on the situation at hand? Thanks!
-
@Dsenora, What firmware do you have on the firewall? Also, is this is a HA deployment? And has the TOTP failed to work after a HA failover? Thanks!
-
@Dant, Welcome to the SonicWall community. Yes, the physical interface can belong to a particular zone can have a sub-interface belonging to a different interface. The concept of zones is to make it easier to apply access rules and security policies. Please make sure that the access rules are added correctly for that zone…
-
Thanks for letting us know. Glad that it is all fixed now!
-
@PekkaPuupaa, We do have the telnet feature built-in for the email security appliance which is extensively used in troubleshooting. But, on firewalls we usually use ping, traceroute, find network path, etc. You can reach out to your Sales engineer as have this filed as an RFE (Request for feature enhancement). I could not…
-
@PekkaPuupaa, We can certainly ping the hosts from the firewall CLI/GUI, but I do not think telnet is an option. Thanks!
-
@pe_pips_988, The red log shows that the peer is notifying about an error in the payload. I could not find any reported issues like this, but I think it would be best to work on this over a support ticket. One last thing though, right now who is the initiator, SonicWall or PF sense? Could you reverse the keep alive and…
-
@pe_pips_988, The mode does show up as tunnel but I am not sure if they use different terminology. Please use the following KB article and use the route-based VPN setup. Thanks!
-
@pe_pips_988, Welcome to the SonicWall community. What device is being used as the peer VPN device? Please make sure that they are not using tunnel mode VPN whereas this is a site to site policy mode of the VPN. You can try using tunnel mode VPN and create routing policies and test if that works. Thanks!