Is it possible to use Global VPN Client on Linux by Wine?
↧
Global VPN Client on Linux
↧
How to view user or IP address who logged in and edit the Sonicwall settings
Hi Guys,
I would like to ask if there's a way to view user or IP address who logged in and edit the Sonicwall settings? Someone edit the Web Page to Display when Blocking under content filter settings and we would like to trace who logged in to edit the said settings. Hoping for your prompt response. Thank you in advance.
↧
↧
Maximum Imported Ldap users
Hello , Does anyone know if there is a maximum number of ldap users that I can import for NSA 3600 users ?
↧
WiFi Bridge as WAN interface
I have a TZ300 and a Verizon wireless hotspot.I am wainting for my router from my ISP.
If I connect the hotspot to the USB port the firewall does not recognize the modem (I think because it's not supported, it's a Verizon Jetpack). My question is if it's possible to use as a WAN interface a kind of network bridge between firewall's wireless and the hotspot.
↧
TZ215 resets connection every 2 hours with strange Ref Id reason
Hello,
I got a TZ215 which kills all WAN/VPN connections every 2 hours (+/-5s) with a TCP reset. Dump shows a strange "Reset cause: (Ref.Id: ?sfKlOsUeQMqgzWq4s5F8e?)". Log on the firewall shows nothing.
Tested with other firewall => no disconnects => no ISP/server/client
↧
↧
Sonicwall - Routing between zones?
Hello
I have a configuration similar to the following:
Interface X5:10 Zone SVR IP 10.10.10.1 Subnet 10.10.10.0/24 Trusted
Interface X5:20 Zone USR IP 10.10.20.1 Subnet 10.10.20.0/24 Trusted
Interface X5:99 Zone MGT IP 10.10.99.1 Subnet 10.10.99.0/24 Trusted
My problem is that I'm having problems routing between zones. Intra-Zone traffic works fine, just not traffic between zones. All of the routing and nat rules are the system default for
trusted zones and they look correct. Is there something I'm missing here?
↧
Upgraded Units
What is everyone doing with old units that were upgraded with secure upgrade path? I still have old soho units sitting around. Is their a proper recycle option?
↧
Allow Onedrive
I am trying to get Microsoft Onedrive allowed on our network. I have put onedrive.live.com in the allowed URL list but for some reason it still is blocking part of the site (it doesn't show up correctly when navigating to it.) I tested taking off all restrictions for blocked content and then onedrive worked but I am not sure what category would be causing the issue. If anyone can help me get it allowed or know of other URLs I may have to allow that are associated with it that would be appreciated. Thanks
↧
new implementation
hi all,
new implementation for two HA sonicwall 5600, what is the best practice for the connection between the two FWs one or two links ??
and is there any addition configuration on the two switches core switches connecting to them either than configure the FWs ports for spanning tree portfast ?
↧
↧
TZ100 Not Receiving Correct IP From ISP
My TZ100 is setup DHCP so it receives the ISP IP. However, the IP that the TZ100 is showing is a 172. IP. I have connected my laptop directly to my cable modem and I pulled a valid 24. IP from my ISP. I have restarted the modem, TZ100, and my switch but the exact same IP shows up.
The TZ's firmware was the latest which was 5.9.1.1, so I rolled back the firmware to 5.9.1.0 with same results.
What the heck is going on? Since I rolled back the firmware, I apparently cannot get back into the TZ, so the only answer might be to default it and re-set it up.
Jay
↧
Sonicwall is flagging our new DELL PCs' communication
Hi,
Our company recently purchased 7 new notebook and 1 PC and after setting up the machines a Sonicwall detected some suspicious communication and reported it as follows.
Subject: *** Alert from Network Security Appliance *** [C0EAE466C750]
11/02/2015 08:26:38.416 - Alert - Security Services - Gateway Anti-Virus Alert: (Cloud Id: 21928457) Agent.FL (Trojan) blocked. - 192.168.11.107, 49243, X0 - 61.194.99.178, 80, X1 -
This email was generated by: SonicOS Enhanced 5.8.1.15-26o.01.jpn (C0EA-E466-C750)
This is strange because these PCs are totally new and I am pretty sure that there was no chance for malicious spyware sneaks in. So my guess is that a software pre-installed in DELL PC's is sending some info to the IP then sonicwall blocked it. Does anyone have the same experience? Now Sonicwall is a part of DELL so that it shall not happen, though.
Regards,
↧
outlook 2013 pop3 problem with app control advanced
Hello.
I experienced, with outlook 2013 POP3 connection problem. On large mail (10 meg) i have deconnection before the end of the download
If i put on computer an ip address that was not control with "app control", all works well.
I dont have any problems with 2010 or 2007 version of outlook.
Thanks for your help
↧
Allow Java/Active X/Cookies to Trusted Domain sties while using App Rule for CFS?
Hi, There
I configured App Rules for CFS on SonicWALL. Now I need to allow some java thingy on one of the site, lets say kijiji.ca. I put it under trusted domain and allow Java (like screenshot). But it doesnot seem like it is working as I expected...
So my question is: will the configuration for Trusted domain still work when using CFS via App Rules?
Thanks,
/S
↧
↧
NSA - SonicOS Enhanced 6.1.2.5-26n - SSLVPN Update broken
SSLVPN on this firmware release is broken. The client does not download and times out as does applications.zip.
NSA2600 : Firmware: SonicOS Enhanced 6.1.2.5-26n
↧
"Allow Advanced Routing" checkbox missing.
I am attempting to configure a pair of SonicWALL devices, to be VPNed together, and exchange routes using OSPF.
I am using this as a guide: https://support.software.dell.com/kb/sw8442
The trouble I have, is that on one of the firewalls, I don't have the "Allow Advanced Routing" checkbox, which is required. The VPN tunnel is up OK, but there is no interface to bind OSPF too.
Any ideas why I don't have this option on one device?
The end that is configurable as expected is a TZ210, running SonicOS Enhanced 5.9.1.1-39o
The end which has no "Allow Advanced Routing" is a TZ215, running SonicOS Enhanced 5.9.1.0-22o
Screenshots of the good and evil VPN advanced screens attached.
↧
DPI-SSL and SHA1
I want to turn on DPI-SSL on my NSA 3600. After reading a KB I see that Dell recommends NOT replacing the default cert.
- In general, replacement of the default DPI-SSL CA certificate is not needed nor recommended.
support.software.dell.com/.../sw14090
I downloaded the cert and found that it is a SHA1 cert. Is there a way to get the default cert updated to something that is more supported by browsers? Is this SHA1 cert still the preferred way to implement DPI-SSL?
↧
Routing traffic between 2 interfaces on NSA 240
I am attempting to use a older router, an NSA 240, in a test bed that simulates our production environment. In our production environment we have two subnets. Each is connected to a NSA 2600. The 2600's are in different locations and are connected via their X1 interfaces. Network>Routing policies are defined to route traffic back and forth from from one subnet to the other.
On the NSA 240 the configuration I have set up one subnet on X2 and another on X3. I am using X0 only for management of the router. X1 is connected to the internet and machines on both X2 and X3 can connect to the internet.
The problem I am having is that I cannot get the machines on the two subnets to talk to each other across their interfaces. In each subnet a machine can ping it's own default gateway, the ip address of the interface it is connected to, but cannot ping machines in the other subnet.
I have created 2 NAT polices and 2 access rules that as far as I can tell should be forwarding on all traffic directed from an address on one subnet to an address on the other subnet. They use Any for all address and port values.
I am using ping to test connectivity. A ping from one subnet to the other generates a request timed out message. The packet monitor displays a ICMP packet from the source to destination with a status of :Received. By comparison, when I ping from a machine on the same subnet to the ip of the interface it is connected to, I get replies and see packets with statuses of Consumed and Generated.
Can anyone help me figure out how I need to configure this router to get intercommunication between the subnets working?
I need to get the machines on X2 and X3 able to communicate with each other
↧
↧
cloud av signature 30357555 blocking teamviewer download and use
As the title states, cloud av signature 30357555 is blocking download and in some cases blocking teamviewer from running.
↧
Create login page for WGS clients
We use a TZ217W and two Sonicpoints and want to set up WGS for visitors. There is no requiremtnto access internal network wy wireless clients, just provide them with Internet access. Presently we restrict access by password to connect to the Wifi but I wish to enforce acceptance of usage policy and reconcile clients with misuse acivity. I can see that it is straightforward to enforce acceptance of policy but can anydbidy advise on how to identify the clients please?
↧
Routing Issue - Two WAN Configuration for VPN tunnel
I have two WAN (X1, X10) on Sonicwall NSA4600
(WAN IP -X1: 128.128.128.128, WAN IP -X10: 138.138.138.138, LAN IP:10.1.0.1, Local Network: 10.1.0.0/24) and I used X10 for VPN tunnel connection.
Remote site use Sonicwall NSA3500
(WAN IP -X1: 222.222.222.222, LAN IP:10.11.0.1,Remote Network:10.11.0.0/24)
After VPN tunnel established between Local site 138.138.138.138 and remote site 222.222.222.222. When I used the Diagnostics tools 'Find Network Path' and the result is below
10.11.0.1 is located on the X1
It is reached through the router at 128.128.128.127 (X1 Default Gateway Address)
If I disconnected X1 on Sonicwall4600. When I used the Diagnostics tools 'Find Network Path' and the result is below
10.11.0.1 is located on the X10
It is reached through the router at 138.138.138.137 (X10 Default Gateway Address)
1. Why '10.11.0.1' is on X1 on my first 'Find Network Path' result?
2. How can I force all the traffic in/out (10.11.0.0) on that VPN tunnel using X10 line connection?
↧