Comments

• From my own understanding, not 100% sure. Device VPN use PKI authentication(no credentials support) and run as window services. As a result, once device boot up, no matter user login or not. The CT window service will to use system store certificate to login SMA and provide limited connection to internal network. Network…

  in Modern Connect Tunnel 12.4.2 what is the difference between Network Login and Device VPN mode Comment by Nat October 2022
• With device VPN only, UI should show connect button for user VPN. Yes, it looks like a bug so you can reach sonicwall to fix.

  in Modern Connect Tunnel - is there a programmatic / API way to get connection status? Comment by Nat October 2022
• Do you mean API on client itself or SMA appliance? PC client , you can just check the UI. For SMA, it support REST API. Append /Console/Help to AMC and you will find.

  in Modern Connect Tunnel - is there a programmatic / API way to get connection status? Comment by Nat October 2022
• Device VPN is real always-on. It is connected even window user does not login to windows after cold boot. Network logon I don't think its always-on, they are different stuffs.

  in Modern Connect Tunnel 12.4.2 what is the difference between Network Login and Device VPN mode Comment by Nat October 2022
• Those websites need public A record, not cname or alias. With correct A record, CT will add the public IP to client route table and route to SMA.

  in Route Certain Website adress through Connect Tunnel Client Comment by Nat September 2022
• You can uncheck these, its enabled by default.

  in Is anyone else seeing the following Alert Comment by Nat September 2022
• Issue already fixed.

  in Is anyone else seeing the following Alert Comment by Nat September 2022
• DNS (Name Service) is a group which include DNS (Name Service) TCP AND DNS (Name Service) UDP. In most cases, allowing DNS (Name Service) UDP would be good enough. Majority still using UDP for DNS. DNS (Name Service) UDP = UDP Port 53 DNS (Name Service) TCP = TCP Port 53 DNS (Name Service) = TCP 53+UDP53

  in Access Rule Question regarding DNS in Port/Services Comment by Nat September 2022
• Yes, it already dead for few days. All firewalls got this but no one gonna fix it. Its sonicwall backend issue and wont affect devices operation. Just ignore it and hope sonicwall backend will fix it within 1-2 months.

  in Is anyone else seeing the following Alert Comment by Nat September 2022
• @BWC If you plugin console & boot compare 3700 & 4700. You will find different processes ran during boot up. High end products definitely have some "on top design" over SMB products.

  in SonicOS 7.0.1-5080 - Restart System vs. Restart SonicOS Comment by Nat September 2022
• It seems only available for high end models. (Start from NSa4700) The core design is a bit differences between high end & low end products. Like the previous SM9800 with multi chassis. Maybe the the high end product is running like Linux kernel > docker container > SonicOS? So you can restart docker image without restart…

  in SonicOS 7.0.1-5080 - Restart System vs. Restart SonicOS Comment by Nat September 2022
• the file should be encrypted by SonicWALL Dev. Don't think we can extract it without SonicWALL Tech.

  in SonicOS 7 - .gz log file format? Comment by Nat August 2022
• @BWC Yes, you are right. SMA 12.4.2 connect tunnel works with MacOS(even M1).

  in How to get Connect Tunnel to work on Mac OS (Monteray) Comment by Nat August 2022
• Upgraded to 12.4.2 for testing, the new features are great. But I am not sure about the stability as I am not heavily use it.

  in Any Upgrade Issues with 12.4.2 ? Comment by Nat July 2022
• NSa2700 should have secondary storage built-in. Remember to enable it. By default, logs are not store to secondary storage.

  in NSA 2700s Running SonicOS 7.0.1-5065 Truncating Logs Comment by Nat June 2022
More Comments