Arkwright Community Legend ✭✭✭✭✭
Reactions
Comments
-
I've never attempted multiple PPPoE logins on the same interface so not sure what it would look like. That screenshot looks to me like the PPPoE is untagged and then there are VLANs on top of it.
-
Can you just clarify, does access to the internet from the firewall itself work? I am not sure if you should be able to see anything in ARP entries in a VLAN on PPPoE. TBH I don't think I've seen VLANs-over-PPPoE before. Plenty of it the other way around though.
-
Great stuff, thanks for that, waiting for part 3!
-
Come on Larry, it's Christmas 🤣🤣🤣 But seriously, my hope is that it will help anybody who did google it.
-
There is tick box on IPsec VPN tunnels specifically for allowing management. Check it.
-
You could cripple NetExtender settings to stop it being used as a VPN as suggested, and then give users who need VPN access with Global VPN Client.
-
The TZ670 is rated for 5.0Gbps without DPI-SSL. That's aggregate throughput when every physical interface is in use [eg 5 WANs and 5 LANs]. Don't expect to see those numbers in real life [real life = 1 LAN and 2 WANs, for example]. I am not 100% clear on what control plane traffic is. I assume using the management…
-
Check your throughput stats, do you see these events coinciding with peaks in thoughput?
-
Check the logs.
-
You can override this in /diag.html but I assume there has to be a reason why it gets disabled by default. This is an interesting article [although much is implied rather than explicitly stated] - it suggests to enable PortShield before enabling HA and it will work.…
-
How can I work out if any given connection is inspected? I think I might have an answer but would be grateful if my peers could try to validate this one for me…. Connection Monitor. Change destination port to 80, Flow Type to HTTPS. Every firewall I've checked, this looks like DPI-SSL. Firewalls with DPI-SSL disabled have…
-
Did support give you any specific notes on the hotfix?
-
Can anyone suggest any tools to help me t/s this? What is the status of the probes in F&LB?
-
At this point I'm about to do a conversion/restore from the configuration tool and just fix the mess after validating connectivity. That would have been my starting point.