BWC Cybersecurity Overlord ✭✭✭
Reactions
Comments
-
@radiman subnet will collide with your other locations, because it'll make an ARP request when it's in your subnet boundaries. It will not even try to route it over your VPN, except all endpoints getting an explicit route, but that's not really good. Best option would be a renumbering of 10.15.23.0/24 to something more…
-
@ChristianK if the medical device is in the 172.17.1.x range, like the backup server was before, NAT gets a little bit tricky because it does not answer any ARP requests and does not handle half open connections. If this is the case you need additional steps to make it work until the technician can alter the address.…
-
@dp8 I changed the TimeZone on a Gen6 with 6.5.4.14 to India and the syslog reflects the change. The first timestamp (CEST) is added by my syslog but the time= value comes from the Firewall. <local0.info>2024-05-15T06:43:28.946338+02:00 shield.bwc.internal id=shield sn=xxxxxxxxx time="2024-05-15 10:13:28"…
-
@DP8 if 192.168.99.236 is a functioning NTP server you should be good. It seems that "Current NTP Server" in the TSR is the last one the appliance tried to connect to. Check again after your interval of 60 Minutes is past. —Michael@BWC
-
@DP8 custom NTP Servers are configured at Manage → Appliance → System Time and enable " Only use custom NTP servers". I deleted all of my custom NTP servers and TSR still shows one. Best way is probably to define a valid NTP server for that location. —Michael@BWC
-
@dp8 why do you have ntp.cais.mp.br in your config if Brazil is blocked? System time on your appliance is correct or already drifted? You should configure a valid NTP server from which you know it's working. I checked my config and local time is properly reported to syslog. —Michael@BWC
-
@DP8 what are your setting at Mange → Appliance → System Time Time Zone is set to your local Zone? Did you enabled "Display UTC in logs (instead of local time)", which what cause what you described. —Michael@BWC
-
FYI, Support came through real quick, kudos for that. It seems that my initial hunch about 10.2.1.7 was correct because the answer from support was that: I've seen this problem before but on another platforms, not KVM. Please redeploy with the 10.2.1.0 version instead of 10.2.1.7. After deployment, upgrade to 10.2.1.5 ->…
-
@jlembo I neaver heard about that it happened to just specific users. What comes in mind you did not enabled "Uninstall Client After Exit:" in the Client Settings on the firewall? Is NetExtender completely uninstalled or is it just the Shortcut on the Desktop? Is there any Endpoint software installed which could cause…
-
@JoeB just edit the User and hit the "Unbind Totp Key", this will invalidate the old one and the user will be greeted with a new QR code. —Michael@BWC
-
@JesseN thanks for taking the bullet and putting the RFE in for something that obvious. I don't have much hope that it'll get implemented before the SMA (100 Series) goes out of service, which is somewhere in 2027. —Michael@BWC
-
Yes, Address Object Group which holds the Address Objects of your selected PCs. —Michael@BWC
-
Just let us know if you need additional help. It might need some Network Monitors for logical interface probes, but this depends on the type of interface. —Michael@BWC
-
@Quasipeper the following should do the trick remove X2 from Failover and Load Balancing, because that's for all create a network group holding all PCs which do you like to get routed over X2 in failover create a new default route, source your new network group, interface x1, metric 1 create a new default, source your new…
-
@B83 the Firewall isn't doing it by itself, you could check the TSR if there is any occurence of 8.8.8.8 which gives you a hint where it's used. If it's not in the TSR then it must be generated externally, which you can find with a Packet Monitor looking for 8.8.8.8. My best guess would be that the DNS is configured to…