Comments
-
@Marcooooo, We can control the flow of traffic using schedules in access rules. I do not think we can set this for the users themselves. But, if access rules are created for specific users/user groups, schedules can be applied to those. Do you need this for users present behind the firewall or for users connecting using…
-
Perfect. Glad that it all worked out!
-
@samaj, Only the latest version of GMS i.e., GMS 9.3 does not need Flash anymore. But, unfortunately, we do not have that kind of option for Analyzer. I would suggest opting for Analytics at this point. Thanks!
-
@Chojin, If it is installed on a Windows server, you can use the link below If not, the last section of the first KB I gave you can be helpful. But, yes feel free to contact support and they can help you through this process. Thank you
-
@Chojin, Please contact support and let them know the Serial number of the GMS. You can click on the Forgot password and Support will reset the password for you. Thanks!
-
@samaj, Why has the ISP provided both of these pools? Is it like an additional WAN pool? SonicWall will by default NAT out all traffic using the IP configured on the X1 interface. Could you please elaborate a little bit more on how you are planning to set this up? Thanks!
-
No, I think it should be fine. The reporting and syslog collection are done locally on the machine it is installed on. Thanks!
-
@samaj, It depends on where the Analyzer is deployed. If it is connected locally to the firewall that it is collecting the logs from like deployed on LAN, the internet is not necessary. Thanks!
-
@Faye, Zero Touch is designed to make the experience of adding a unit to CSC/NSM smooth and setting up for management and reporting easy. It is not the same as a firmware upgrade. Please use the following KB for the firmware upgrade process. You can take a look at the following KB for Zero touch. Thank you!
-
@PushOrigin , Are you using client DPI SSL? Usually these days most of the traffic is over encrypted protocols like HTTPS, SMTPS etc. Without DPI SSL, GAV scans won't take place thereby not triggering capture atp as well. I guess that could be a possible reason. You can try to download a file from a HTTP website and check…
-
@Nick374, This code only shows up when you bind the phone/device for the first time with the specific account. If there are any other users created with admin privileges on the firewall, you can log in with that and perform unbind TOTP for your account. But, unfortunately, there is no way to retrieve that code if not noted…
-
Glad to help!
-
@Gentia, I have usually seen customers go with the first option. Since all security checks are done on TZ, two separate interfaces are not really necessary. But, even if you choose to configure two, it should be possible. Thanks!
-
@Gentia, As we have X0 as LAN and X1 as WAN in TZ devices, it is not dedicated in that manner on SMA. So, you can choose which interface should go to the TZ and which should go to the server. It should function either way. If you have any additional queries, please let us know. Thanks!
-
@Nick374, There is a scratch code generated when you bind the phone/device for 2FA with the firewall. If you have that code, you should be able to reset the password. Thanks!