MustafaA SonicWall Employee
Reactions
Comments
-
Hi @HBCANI If a cellular network modem is not in the officially supported and tested list, this means that the modem may or may not work. Your best option could be to contact our Sales team so that they have a business case when they bring this up to the Product Management team, to be added to the list. What wireless cards…
-
Hi @CGoodwin I think you have a typing error since the TCP range is 0 to 65535. Please make sure you are selecting the correct service objects in your NAT policies, since your use case can be configured on the firewall without any issues. I am sharing a screen capture of a Gen7 device. Yes, it is a different firmware but…
-
Hi @ManuNair . Can you please elaborate more, what you mean with "SonicWall Console"?
-
It is very likely that the home subnet overlaps with firewall subnets. I'd suggest to check this first. If that is the case then you need NAT over SSLVPN.
-
Hi @SteveGuh . Looks like your TZ300 has never been upgraded since the purchase and deployment. Technically speaking you don't need to do incremental updates. Please keep in mind that your firmware 6.2.3.x has CFS 3.0 and starting with 6.2.6.x we have CFS 4.0 on Gen6 firewalls which is different in functionality, and for…
-
There is an internal implementation logic that defines the selection of the interface as the source, when a packet is generated by the firewall. I think it uses the interface with the lowest index number, that is enabled and active.
-
Hi @César_S . It has been a few months since I tested a similar requirement. The second part (Accessing website over SSL VPN) should also work. Have you traced the packet flow with the Packet Monitor tool?
-
Hello @Clemens I've not tested this myself but you can give a different Syslog Server Profile ID for the "Configuration Auditing" event group, which should send the events to the dedicated server that handles this "Profile ID". Let me know if that works.
-
Since the description of the requirement is related to a single ISP connection with multiple usable public IP addresses, the referenced KB article is not applicable. What needs to be done is to create a Static ARP entry for the second usable public IP and then a NAT policy is required for the source subnets that will use…
-
Just for clarification purposes, can I assume with "local", it is local with respect to the remote user?
-
@Kelvin , is your local subnet overlapping with the firewall subnets, which are part of being accessed remotely?
-
You need to use dyn.com. Is it not authenticating or not updating the DNS record? Can you share more insight?
-
I will check your question about the roadmap with the Product Management team. Will keep you updated.
-
Hello @jhraffer ; XCP-ng is not a supported virtualization platform.
-
In addition to @TonyA 's valuable inputs, to ensure that the SSLVPN traffic is reaching your firewall, please use Packet Monitor to trace the packet flow. Here is a snapshot of an example of the filters that you can apply. You can use either/or Source IP Address and Destination Port. If you cannot intercept traffic, this…