Comments

• @ccabral Can you elaborate?

  in Firewall TZ and Switch Comment by TKWITS May 23
• You do have to consider the impact Tunnel-All mode makes on the traffic traversing the SSLVPN tunnel...

  in Printing over VPN to a Printer connected to a WLAN at home Comment by TKWITS May 23
• in Gateway-AV causing false-positive on MS Teams install? Comment by TKWITS May 23
• You failed to say that the firewall was not upgrading through NSM in your original post. Is your NSM license still valid? As Enzino mentioned, try a local upgrade.

  in TZ 570 and SonicOS 7.0.1-5065 (problem) Comment by TKWITS May 19
• While Ajishlal's screenshots are helpful, we do not know what your current configuration is as you did not provide its details. Think about the flow of both the inbound and outbound traffic. Inbound from the requester will hit Site A WAN, translate to the site B DVR address, and send that traffic over the existing tunnel…

  in Port Forward through Site to Site VPN Comment by TKWITS May 19
• No, but good to know. Have you tried using the MSI file rather than the EXE? What firmware version are you running?

  in Gateway-AV causing false-positive on MS Teams install? Comment by TKWITS May 18
• The only other option is using printer redirection over RDP. But if your company does not have you RDP-ing into something than this is moot.

  in Printing over VPN to a Printer connected to a WLAN at home Comment by TKWITS May 18
• Each VLAN should have its own Zone, otherwise whats the point of having a zone-based firewall? 'Guest' networks should have a Guest zone with security type public (it's an untrusted network). 'Voice' networks should have a Voice zone with security type trusted. I think your missing the Security Type concept.

  in Suggestions for zones Comment by TKWITS May 17
• For additional clarification for future readers. As mentioned in the 'answer' the Sonicwall doesn't share the entire SSLVPN subnet/range, it shares each INDIVIDUAL route. That means routes will only show up when clients connect.

  in Advertise SSL VPN subnet via OSPF? Comment by TKWITS May 17
• You're welcome.

  in Advertise SSL VPN subnet via OSPF? Comment by TKWITS May 17
• You failed to mention that you were redistributing to Ciscos in your original post. Getting OSPF to share the SSLVPN client route CONSISTENTLY with the Cisco ended up being the nail in the coffin. We ended up just doing static routes. I couldn't determine the rhyme or reason why some SSLVPN client routes would get shared…

  in Advertise SSL VPN subnet via OSPF? Comment by TKWITS May 17
• This is possible. I've done it with Gen6, but its been a while. No need to go into the shell, I believe you just have to redistribute static routes using the 'standard' ABR. Some background here is how SSL VPN client addresses get added to the Sonicwalls routing table (static routes, not in the ARS table). This is…

  in Advertise SSL VPN subnet via OSPF? Comment by TKWITS May 17
• Support suggested you seek professional services? That's not very professional. Support can't even support their own products. @EnaBev @MasterRoshi

  in TZ500 won't see 14-48 switch Comment by TKWITS May 17
• You'd have to open a ticket with support for additional information. At this point with Gen 7 its usually best to run the latest available as prior versions have been unstable.

  in where do i get more detail about resolved issue GEN7-31049 to decide if I want firmware upgrade Comment by TKWITS May 17
• Are you doing anything with Bandwidth Management? If so try disabling it. Some other things to try: Try using a different interface (X3) for the CLARO ISP connection and test. Try using X1 for CLARO ISP and X2 for MOVISTAR and test. Factory default the unit and set it up with the bare minimum required for connectivity on…

  in Sonicwall Nsa 2700 SonicOS 7.0.1-5065 Comment by TKWITS May 17
More Comments