Comments
-
Excellent point Michael@BWC. I forgot to add that earlier. The Firewalled subnets only include the subnets configured on the firewall (Physical and VLAN sub-interfaces) and not the routed networks. So, in scenarios where those networks are also required, they need to be manually added to a group along with Firewalled…
-
Hello @djhurt1 Yes, you are right. Firewalled subnets include all the networks present behind the firewall. This includes LAN, DMZ, WLAN, or any custom zones added with security type as trusted, wireless, or public. Basically this is useful when providing VPN access to all networks in scenarios where you have many networks…
-
@Larry , So, this is how I tested it. I blocked Russian federation using Geo-IP and accessed the websites vk.com and government.ru which both belong to that country. When I access them over HTTP, you can see that I get the blocked page that tells me why this is being blocked. Otherwise it just shows me connection timed out…
-
@Larry, The reason why the firewall might not be showing any message could be due to the fact that it is a HTTPS website and the DPI SSL feature on the firewall is not turned ON. If it is, the error message should directly show up on the browser with the reason for block, IP, country etc. When this website gets blocked, we…
-
@Darshil, I would suggest looking for logs using the source IP field. There might be a different App control signature causing this. We have a lot of Google related signatures. Can you filter the logs for the source IP you are testing from and look for all App control prevention alerts. Thanks!
-
Hello @Harshi_0614, I would just like to add that this was introduced in 6.5.2.x onwards. Also, the firewall does not apply this as soon as the route policy is created as we see for a normal PBR (Policy based routing). It learns about the protocol ID, the IPs that it contacts, the services that it uses and adds that to its…
-
Perfect! Glad I could help. Have a great day ahead!
-
@Tex , You are making these changes to the WAN interface. As long as management is enabled on the LAN interface, you will be able to manage it locally. Thanks!
-
Hello @jst3751 , Yes, I did notice that on my end. For me as well, I first tested with just intermediate, then added the root as well and then removed the root cert and could still see the website working. SSL control intercepts the SSL handshake but is not going to perform the SSL handshake as a client. So, if the…
-
Hello @Tex , Could you please turn OFF the user login using HTTPS as well and then try? Also, please clear the browser cache before testing again. Thanks!
-
Hello @jst3751 , I tried this on my end and faced the same problem. It shows a Server error under connection failures. I found that the certificate chain is as below and once I imported the intermediate certificate on the firewall, I could access the website with no issues. So, basically when the SonicWall is trying to…
-
Hello @Tex , You are getting that option as the web management is enabled on the WAN interface. You can disable this from MANAGE | Network | Interfaces and then click on configure on WAN interface. Usually the management port is 443 and SSLVPN port is 4433. Anyone trying to go to the SSLVPN portal would need to use the…
-
@jst3751, That option is going to perform the SSL handshake with the server and make sure that the authentication is successful. It means that the certificate validation needs to take place. What is the website that you are having issues with? Thanks!
-
Hello @SGIT , Yes, your are right. We also have SMA appliances for virtual platforms. Please contact your Sales representative to walk you through this. Thanks!
-
@jst3751, The 'Show Connection Failures' shows all errors that took place during SSL negotiations whether the error took place on server side or client side. I also do not see any options to make changes to those View options. It would be best to contact support for this scenario as we can perform captures and check logs…