Comments

• Just re-read your first post. If general internet access is working for you at all, then this must be the upstream doing NAT. If you had misconfigured your firewall to use the IP of your default gateway as its source IP, then the replies would never get back to you and nothing would work at all - your attempt to browse…

  in TZ570 answering on WAN gateway address Comment by Arkwright 8:47AM
• Do a packet capture, do you see packets leaving the interface with a source IP of .9? If yes: It's a config issue on your firewall. If no: Whatever is upstream of you is NATing your traffic to .9

  in TZ570 answering on WAN gateway address Comment by Arkwright March 30
• If you've created SSIDs in Unifi with VLANs, then whatever the APs are plugged in to needs those VLANs on too. The Sonicwall would need VLAN subinterface(s) to serve those networks.

  in firewall setup Comment by Arkwright March 30
• Raise a feature request for RFC4638 support with Sonicwall. Would be great if you could do that from here but they usually refer you to your account manager for some reason.

  in MTU size PPPoE / WAN Comment by Arkwright March 30
• If you don't know what you're doing then your safest option would be to use Teamviewer or something of that ilk. It's not clear what your actual question is here, or how it relates to this thread.

  in TZ370 Comment by Arkwright March 30
• I am pretty sure there was some change in behaviour between versions here. IMO this is not a "workaround" - the management checkbox on access rules surely only means management of the firewall itself, and if it happened to allow other traffic previously, then that was a bug.

  in Monitoring /Management Issue Comment by Arkwright March 30
• I think you need two allow rules. One allow rule for management of the firewall itself, destination = the firewall, allow management = ticked. One allow rule for management of the devices on the network, destination = the subnet, allow management = unticked. "Allow management" specifically refers to management of the…

  in Monitoring /Management Issue Comment by Arkwright March 27
• Yes, this one really irritates me. Seems ludicrously short-sighted. It's not just that the firewall will generate names over this limit, also it will generate names close to the limit and by the time I add [say] the device name to the file, it's too long. Sure, we can upload files that are hundreds of MB, but can't spare a…

  in What will the MSW developers think of next? Comment by Arkwright March 24
• No, licenses are not exported with the configuration.

  in Configuration on TZ670. Comment by Arkwright March 23
• Disable and enable stateful sync in the HA settings, see what happens.

  in Stateful sync down after firmware upgrade Comment by Arkwright March 21
• On the SA(s) that contain(s) your SSLVPN subnet, do you see TX/RX bytes accumulating?

  in Drop Code: 448 (SA not found on lookup by SPI for outbound pkt), Module ID: 20 (ipSec) Comment by Arkwright March 21
• Bon appetit!

  in Global VPN Client for a MAC Comment by Arkwright March 17
• I'm not sure if there is a way I can download the app on another laptop and then just install it in my work laptop. BWC gave you the link to Netextender, which works with the same VPN services that Mobile Connect used to [and is a better piece software in all respects that I can think of]. Mobile Connect on desktop is no…

  in I can't download from the Microsoft Store the Mobile Connect win 10, is there another installer? Comment by Arkwright March 16
• Not comprehending what the sadness is here. You have a self-inflicted issue and know how to work around or resolve it.

  in Migration from TZ350W to TZ370W Comment by Arkwright March 16
• Basically, do either what I or @TKWITS has suggested, but don't try to do both - you will end up with triangular routes, for no discernable benefit.

  in sonicwall / cisco switch Configuration ( 2 separate LAN networks using 2 different ports) Comment by Arkwright March 3
More Comments