Comments

• Is the impending merger of NSM and MSW in to "SonicPlatform" an explanation for why "the internal team" aren't fixing this?

  in CATP reports "No detail to show. Go to Security Notices and try again " Comment by Arkwright March 24
• Check WAN>WAN access rules.

  in Let me access remothly to my network Comment by Arkwright March 20
• Was a fix for this forthcoming? Same issue on 6700 HA.

  in Bug found in 7.1.3-7015: Certificate chosen for mangement Comment by Arkwright March 18
• Route policies can be use to route different client networks out of different WAN interfaces. The default NAT policies will handle NATing traffic to the WAN interface IP by default. If you have enough public IPs you can create additional NAT policies to make different client networks appear as different public IPs.

  in How do i split VPN access across two interfaces on a TZ270 Comment by Arkwright March 17
• Allowing everything and then blocking ports ad-hoc is going to take you a long time to crack this if the application can just use any old port(s) it wants [only another 65500 ports to try :D ] I suggest you run this on your machine and use the Connection Monitor tool in the Sonicwall to look at what ports it's using. You…

  in Has anyone had any luck blocking Hot Spot Shield VPN? Comment by Arkwright March 13
• It's bizarre…it's not as if this is some service that you or I are running on our servers…this is their software on their servers, that we pay them for!

  in CATP reports "No detail to show. Go to Security Notices and try again " Comment by Arkwright March 13
• it had suggested an access rule calling for service to be Any and that is the only way I have been able to make it work even with port to port being same Yes - if you set the source port, you are "doing it wrong" in 99.99% of cases, because source ports are usually random. Sonicwall can take some blame here - specifying a…

  in nat policy with different services (ports) Comment by Arkwright March 12
• Coming from other platforms it can be a bit confusing. Would be great if the access rule could be "linked" to a NAT policy or at least give a hint in the UI as to what it's doing. Using the comment field on the ACL is helpful here.

  in nat policy with different services (ports) Comment by Arkwright March 11
• We have multiple customers with Starlink and GeoIP just shows them as being in the country that they're in on the whois [the installs are fixed and not roaming around].

  in GEOIP : Does the "Satellite Provider" source include Starlink IP's? Comment by Arkwright March 11
• I am saying "not". CATP report links still broken.

  in CATP reports "No detail to show. Go to Security Notices and try again " Comment by Arkwright March 10
• Will this not have a negative effect on the SSD Storage Module? If this was just some general-purpose computing platform then yeah, pulling the power could be a bad idea. But this is a storage volume dedicated to logging. I am sure it could be engineered in such a way that abrupt power loss is not an issue. Whether…

  in Automatically turn on after a power outage?? Comment by Arkwright March 10
• IMO not so much "silly" as "irrelevant" - Every Sonicwall UTM appliance I have ever used boots up when powered on. Not turning on when power is restored is not normal.

  in Automatically turn on after a power outage?? Comment by Arkwright March 7
• Intriguing. Are you saying you managed to get a different OS booted on here?

  in Alternate OS (Firmware) for Sonicwall TZ270 Comment by Arkwright March 7
• Check the VPN status, are the TX/RX bytes incrementing on both sides?

  in Site-to-Site VPN allows one way traffic - Which side do I start from with Packet Monitor Comment by Arkwright March 7
• Yeah, this log event confirms it: "Notes ssl inspection fake cache cleaned up " and destination port on these connections is 80. It is a shame that they could not come up with a more obvious way to find these in connection monitor.

  in Troubleshoot DPI-SSL connections Comment by Arkwright March 5
More Comments