Comments

• Log Alerts are avaiable for the following Custom Lists andshould present a different msg ID Policy/Security Services/Botnet Filter - Custom Botnet List Policy/Security Services/Geo-IP Filter - Custom List

  in Can SonicWall syslog shows the status of the IP?(blocked or not) Comment by MarkD April 2
• SonicOS Packet flow in Global and Policy Mode SonicOS Packet flow in Global and Policy Mode

  in Can SonicWall syslog shows the status of the IP?(blocked or not) Comment by MarkD April 1
• There IS routing in the VNET which will be pointing to the VNET gateway (or a pair of them technically) as the default gateway. In order to route traffic via the NSv to your chosen address range (address prefix) you have to create a route table specific to that VNET, with a next hop of a virtual appliance (AKA the NSv's X0…

  in NSV 270 -AZURE- SSL VPN AND GVC CONNECTIVITY ISSUE Comment by MarkD March 28
• Thats an OLD OLD thread. have you changed the routing within the VNET to route traffic to your on prem via the NSV X0 interface Azure virtual network traffic routing | Microsoft Learn

  in NSV 270 -AZURE- SSL VPN AND GVC CONNECTIVITY ISSUE Comment by MarkD March 14
• I would suggest starting with a packet capture

  in Integrate with wazuh Comment by MarkD March 7
• Via the 802.1q Header in within the L2 packet IEEE 802.1Q - Wikipedia

  in VLAN Comment by MarkD March 3
• A HA firewall Setup, although this is technically not HSRP/VRRP which I think you are trying to describe How to Configure High Availability (HA) | SonicWall

  in IP routing Path Comment by MarkD February 13
• If theres already a VPN and there is no overlap there is no need for any NAT configuration, the traffic is routed between 192.168.32.0/24 and 10.222.22.0/23. not sure about overthinking it, may be overcomplicating a solution - if there are already DC's in that Main Office subnet

  in VPN and Cloud Services Comment by MarkD February 10
• To expand on BWC - http can be intercepted and the sonicwall block page shown, without DPI-SSL there is no "resigning certificate" to insert the block page. How to Configure Server DPI-SSL | SonicWall

  in Block page not shown correctly Comment by MarkD February 10
• management access rule LAN interface at 10.1.1.200 enable ping under the interface properties creates the rule

  in NSA 4700 Drops ICMP traffic from server VLAN to X0 LAN Comment by MarkD January 20
• review you zones "But from what I can tell, there is nothing that stops the X2 port from accessing… or the X0 port from accessing the X2 port" there is zone rules X2 WAN-LAN X0 and LAN X0 to WAN X2

  in Allowing 2 different WAN interfaces to the same LAN interface Comment by MarkD January 17
• What are the best practices for wireless mesh network? | SonicWall

  in Need help setting up a Wireless Bridge Comment by MarkD January 15
• If the event is benign you can disable sending this event to the syslog. Device Log Settings Expand VPN/VPN IPSEC/ESP Drop the event ID 533 is populated, turn off the SYSLOG, it will still be logged in the GUI

  in DROP PACKET IPSEC Comment by MarkD January 15
• I think you have the use of Zones wrong You talk about X1 and X2 as WAN Zones? and one is connected for wireless ?? X2(or the subnet on it the 192.168.200.0 subnet.. WAN zones connect to the internet i.e it routes all traffic that is no pre-defined by routing rules or interface connectivity. How do zones work in SonicOS? |…

  in Allowing 2 different WAN interfaces to the same LAN interface Comment by MarkD January 15
• IKE UDP 500 is to start a connection, if during P1 negotiation the remote endpoint is behind a NAT device, this will move to UDP 4500. Is the remote endpoint behind a NAT device? Also your logs are from an external syslog collector and may not contain all the information.

  in DROP PACKET IPSEC Comment by MarkD January 15
More Comments