MustafaA SonicWall Employee
Reactions
Comments
-
@Alejandro_Santillan , this issue seems to be a different one, not related to the resource group being not empty or using Vnet of a different resource group. I'd suggest you to call our Technical Support so that we can review and assist.
-
I've tested this on a firewall that runs 7.1.1-7040, and my observation is that it works. I'd recommend upgrading to 7.1.1-7047 which also has the vulnerability. Or, if this is not an urgent thing, we will have a new firmware release which is expected to be public in the second half of March (depending on QA tests). This…
-
Hi @Shihua BWM feature is not part of the licensed services. Can you please share what firmware version you are running on your firewall?
-
Hi @Danny , please use one of the serial numbers of your SonicWave 600 to create a Technical Support case and we will investigate the issue.
-
@Alejandro_Santillan , when you try to deploy the NSv using the MarketPlace you will get an error if the resource group is not empty or if you want to reference a Vnet that belongs to a different resource group. This limitation is being worked on by our engineering team. That said, when you use the ARM Template…
-
Yes, @BWC . UI6 is not supported. I would like to propose this option as a means of meeting the customization requirement.
-
Hi @y2kman When you are using the UI7- (User Interface) on the Gen7 firewall you are limited to "PRE-LOGIN POLICY BANNER" customization. From the "diag" page you can switch to UI6 which will allow you to do the customizations that exist on Gen6 firewalls.
-
In order to provide comprehensive assistance, it is essential to have additional information, specifically regarding the origin of your attempt to ping 192.168.3.231. If your intention is to ping between two distinct subnets, the initial step involves checking the Access Rule(s) in place. For a thorough analysis of packet…
-
@Larry , I'd suggest to submit those IP addresses to be reviewed by our team. https://capturelabs.sonicwall.com/m/feature/ip-reputation-lookup/
-
Hi @CF_ADMIN The 7.1.1-7047 firmware release addresses a single issue: the vulnerability CVE-2024-22394. However, our upcoming release scheduled for mid-March will encompass multiple issue resolutions. Please note that the exact date of the firmware release is subject to change and contingent upon the completion of Quality…
-
Hi @Larry The domain use.fontawesome.com resolves to IP addresses 172.64.206.38 and 172.64.207.38. However, our firewall identifies these addresses' location as "Spain," contrary to their designation as "US" on our Capture Labs portal at https://capturelabs.sonicwall.com/m/feature/ip-reputation-lookup. Our Engineering team…
-
As @BWC highlighted in his comment, 7.1.1-7047 has only one fix which is for the CVE-2024-22394 vulnerability (more info available https://psirt.global.sonicwall.com/vuln-list). As a side note, the next firmware is expected to be released during the second half of March, depending on the QA tests.
-
Hi @cty584 Unfortunately, there is no such built-in feature on the firewalls, that would fulfill your requirement.
-
Hi @Tony Next step would be to check the Log Level. You can set it to Debug which should generate plenty of events.
-
Hello @MartinMP Looking at the packet capture, your source of traffic is 10.46.10.117 which is coming through the X0 interface instead of the X0:V30, which indicates that the frames are not tagged with VLAN ID 30. Make sure your switch is configured correctly so that it tags the traffic properly. Firewall will consider…