Menu

John_Lasersohn

Moderator
Default Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

John_Lasersohn Moderator

Badges (13)

4 Year Anniversary1 Year Anniversary2 Year Anniversary3 Year Anniversary100 Comments25 Likes5 Answers5 HelpfulsName DropperFirst Answer10 Comments5 LikesFirst Comment
See More

Reactions

1 Promote 23 Helpful 41 Like 0 Spam 0 Abuse

Comments

  • Hello @Darshil - I think you must be using DPI-SSL. This error is what you would expect when using it and the Root Certificate has not been installed on the user's computer. This installation results in the DPI-SSL certificate being trusted. Below I show what it looks like when a host on the LAN is subject to DPI-SSL, and…
    in Error while accessing site Comment by John_Lasersohn September 2020
  • Hello @Mattjn82 - You do not need more than one WAN interface on your NSa-2650 to do what you need. Your configured WAN is probably a static block with subnet mask of 255.255.255.248. The GW Router uses one IP and the firewall uses another one, leaving four other IPs which you can configure as WAN host objects. Those can…
    in NSA 2650 WAN & LAN Queries Comment by John_Lasersohn September 2020
  • Thanks @Ajishlal . The Engineering ticket I created was MSW-8800 and it was solved last night. I've seen reports from affected customers that their Cloud Backups are now working, I also confirmed on multiple lab units that it is resolved. Both a scheduled automatic cloud backup (3:00 AM PDT) and a manual one (10:20 AM PDT)…
    in Cloud Backup - error Comment by John_Lasersohn September 2020
  • Hello @amarvulli - I am about to write a ticket for our Engineering team to look into this. We have customer cases reporting this, and our lab firewalls also fail. We get this UI error: Status: Error: Failed to upload preference backup file. [MSWAPP:FILEUPLOADFAIL] I will update this thread once this is done.
    in Cloud Backup - error Comment by John_Lasersohn September 2020
  • Hello @Ajishlal - I do not believe having a second zone would solve this issue. I believe, as others have commented, is that you have only one public IP answering on TCP port 443, and the firewall's rules would only be aware of one public IP and two private IP addresses (or even two FQDNs which resolve to that same public…
    in Two web servers on TZ-300 Comment by John_Lasersohn September 2020
  • Hello @johnbor - I am preparing a detailed answer, but I can give you the outline of it now: 1) View and search the log monitor for the involved IP addresses is task #1. 2) If your rules outbound (I assume the program or app is attempting internet traffic from inside) are not wide open, create a rule allowing Any Service…
    in Sonicwall TZ215 how to disable Comment by John_Lasersohn August 2020
  • I am consulting our SMA expert on this, once I hear back I will update you, @ljohnson055 .
    in How to Lockdown Net Extender Client so Users CANNOT disconnect or change settings Comment by John_Lasersohn August 2020
  • Yes @Katz that should do the trick.
    in Connect to Internet without Windows Domain Server Comment by John_Lasersohn August 2020
  • Hello @fre - I would assume that both hostnames (dev.contoso.com & app.contoso.com) resolve to the same public IP, and you want to route traffic to them on the same HTTPS port (443). The firewall rules and NAT Policies would not be able to distinguish between the incoming packets since those are IP layer-based. You would…
    in Two web servers on TZ-300 Comment by John_Lasersohn August 2020
  • Hello @NJMSP - I am sorry to bear not good news. That modem is not yet listed on our official 4G card support page. I will search for any records in which customer cases have requested it, which probably has already happened. I will have no way to give an ETA even if I find an existing record. Update: There is some…
    in 4G USB Adapters Comment by John_Lasersohn August 2020
  • Hello Dang Dinh Ngoc: If you are using the VPN or SSLVPN feature built into the firewall, you cannot use an alternate address for this. We terminate on the firewall's own interface IP address for these functions. I am searching previously submitted enhancement requests for this behavior, or allowing termination on other…
    in Set up VPN Server to listen on Public Static IP rather than the dynamic PPOE IP Comment by John_Lasersohn August 2020
  • Hello Shultis: This sort works in the latest MR version, SonicOS 6.5.4.6.8-79n, tested on TZ-500W, using MS Edge on WIn10. See attached. The columns also are persistent. Once enabled, they appear on the far right of the rules display UI after I go to another screen and then return. All of the features in this web UI are…
    in Rules Display - GUI Comment by John_Lasersohn July 2020
  • Hello @shultis and @Larry The web UI in SonicOS displays rule #s as a friendly tool. The numbers adjust based on which rules are being viewed, and on how they are filtered. For example, I have taken two images of rules (all) in which the total is 169 when viewing IPv4 + IPv6 items, and only 120 rules total when viewing…
    in Rules Display - GUI Comment by John_Lasersohn July 2020
  • Hello XDMFANBOY: I have not seen this issue with WIndows 10 VMs running NetExtender v.8.6.266 . I did used to see that behavior on older versions.
    in NetXtender Doesn't Give Up! Comment by John_Lasersohn June 2020
  • I would imagine that connecting the WAN ports of the APs to the X0 and other internal interfaces of the TZ-400 would work fine. I suspect that the WANs of the APs can do DHCP client process just like any PC. You can use the PortShield features on TZ-500 to make the X2, X3, and X4 interfaces, for example, be part of the…
    in Connecting Netgear WAC730 AP to the Sonicwall TZ400 Comment by John_Lasersohn June 2020