Thomas_Buergis Enthusiast ✭✭
Comments
-
Yes, that is unfortunately true. It didn't work for me, and I had to redeploy the virtual appliance.
-
@TKWITS absolutely :-) It's good to have an up-to-date backup ready before hitting the "Delete All" Button
-
Hi, I didn't find a way to extract TOTP binding information, not even from the TSR. If the One-time password method TOTP is chosen on the SSLVPN Services Group or an individual level, SSL-VPN doesn't let a user authenticate and connect without a TOTP provided. So you could log the users' login attempts and build your list.…
-
Hi Larry Swagger only supports two-factor and bearer token login. Nonetheless SonicOS API supports username/password authentication. On SonicOS 7.0 2FA is not a must, but it is recommended.
-
I totally agree! Many customers rely on this feature. It's also a bit cumbersome for the users to type in the credentials again!
-
Hi Larry in NSM you can create a template from a firewall configuration. First, I would use the migration tool to convert a 6.5 into a 7.0 exp file. Then upload the exp to a new Gen 7 firewall and acquire the firewall in NSM. Now can create a template from that firewall configuration.
-
Hi Douglas, please open a support request.
-
Hi Simon No, there's no tweak for that. SonicWall does not allow FQDN because an undefined object in a NAT Policy could lead to unpredictable side effects.
-
Hi @sudin16 The NSv HA in VMWare is identical to a HA with HW Appliances. Other than Azure, VMWare ESX supports Layer 2. There's no need for the virtual MAC because the firewall sends gratuitous ARP packets to inform the network about the changes. I'm not sure if the vSwitches would be able to handle the virtual MAC…
-
@Rave_Romero12 yes, TOTP works with Connect Tunnel.
-
Sure, with Cloud management it works! The firewall integrated switch management is very limited and re-using the concept of portshield for no good reason. There's simply not enough flexibility when it comes to VLAN.
-
No, there's no such validation and frankly, the username doesn't have to be an email address IMHO. But I agree in general because no proper validation opens the gate to buffer overflows.
-
Ciao Enzino ;-) The datasheet shows that the NSV 270 only supports two interfaces. If you operate the NSv 270 with three interfaces, you are outside the specifications. I don't think you would get the assistance of SonicWall Support if you need it. With the NSv 470, you are on the safe side.
-
Yes, that makes sense because the 2FA/TOTP is enabled on a user or group level. No matter if SSL-VPN or login to the firewall, the same user settings are kicking in. Ideally, you would run a dedicated SSL-VPN solution. Take a look at SMA500v. It's very cost-effective and it gives you better features than SSL-VPN on the…
-
Hi Marcel, I have UPC Sunrise too in my office and I don't have the same issue. I send you my contact info in a DM. Maybe we can troubleshoot together.