Menu

John_Lasersohn

Moderator
Default Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

John_Lasersohn Moderator

Badges (12)

1 Year Anniversary2 Year Anniversary3 Year Anniversary100 Comments25 Likes5 Answers5 HelpfulsName DropperFirst Answer10 Comments5 LikesFirst Comment
See More

Reactions

1 Promote 23 Helpful 41 Like 0 Spam 0 Abuse

Comments

  • Hello @Darshil - I think you must be using DPI-SSL. This error is what you would expect when using it and the Root Certificate has not been installed on the user's computer. This installation results in the DPI-SSL certificate being trusted. Below I show what it looks like when a host on the LAN is subject to DPI-SSL, and…
    in Error while accessing site Comment by John_Lasersohn September 2020
  • Hello @Mattjn82 - You do not need more than one WAN interface on your NSa-2650 to do what you need. Your configured WAN is probably a static block with subnet mask of 255.255.255.248. The GW Router uses one IP and the firewall uses another one, leaving four other IPs which you can configure as WAN host objects. Those can…
    in NSA 2650 WAN & LAN Queries Comment by John_Lasersohn September 2020
  • Thanks @Ajishlal . The Engineering ticket I created was MSW-8800 and it was solved last night. I've seen reports from affected customers that their Cloud Backups are now working, I also confirmed on multiple lab units that it is resolved. Both a scheduled automatic cloud backup (3:00 AM PDT) and a manual one (10:20 AM PDT)…
    in Cloud Backup - error Comment by John_Lasersohn September 2020
  • Hello @amarvulli - I am about to write a ticket for our Engineering team to look into this. We have customer cases reporting this, and our lab firewalls also fail. We get this UI error: Status: Error: Failed to upload preference backup file. [MSWAPP:FILEUPLOADFAIL] I will update this thread once this is done.
    in Cloud Backup - error Comment by John_Lasersohn September 2020
  • Hello @Ajishlal - I do not believe having a second zone would solve this issue. I believe, as others have commented, is that you have only one public IP answering on TCP port 443, and the firewall's rules would only be aware of one public IP and two private IP addresses (or even two FQDNs which resolve to that same public…
    in Two web servers on TZ-300 Comment by John_Lasersohn September 2020
  • Hello @johnbor - I am preparing a detailed answer, but I can give you the outline of it now: 1) View and search the log monitor for the involved IP addresses is task #1. 2) If your rules outbound (I assume the program or app is attempting internet traffic from inside) are not wide open, create a rule allowing Any Service…
    in Sonicwall TZ215 how to disable Comment by John_Lasersohn August 2020
  • I am consulting our SMA expert on this, once I hear back I will update you, @ljohnson055 .
    in How to Lockdown Net Extender Client so Users CANNOT disconnect or change settings Comment by John_Lasersohn August 2020
  • Yes @Katz that should do the trick.
    in Connect to Internet without Windows Domain Server Comment by John_Lasersohn August 2020
  • Hello @fre - I would assume that both hostnames (dev.contoso.com & app.contoso.com) resolve to the same public IP, and you want to route traffic to them on the same HTTPS port (443). The firewall rules and NAT Policies would not be able to distinguish between the incoming packets since those are IP layer-based. You would…
    in Two web servers on TZ-300 Comment by John_Lasersohn August 2020