Best Of
Re: SSLVPN 12.11.4 Internet connection issues
We have exactly the same problem since the new SSLVPN 12.11.4 client. It occurs completely sporadically and without us being able to identify any connection, affecting various clients. The issue can be temporarily resolved by reconnecting, but then it reappears after a few hours, days, or even a week. Support from WatchGuard is very inconsistent, and you often get the impression that they are just stalling us and randomly requesting things like restarting the firewall, etc.
There is even a Knowledge Base article about this issue at: https://techsearch.watchguard.com/KB?type=Known Issues&SFDCID=kA1Vr000000E96fKAC&lang=en_US.
Hauke
Re: SSLVPN 12.11.4 Internet connection issues
WatchGuard is working on getting a collection of SSLVPN related bugs into a build that will be available shortly. Please stay tuned for an update.
Mark Boscolo
WatchGuard Support Manager.
mboscolo
Re: Failed update, adding back to the cluster
@james.carson Unfortunately i wasn't able to get the older file of the version from the website I did request it in the case to downgrade as a backup option, So we went with disable the cluster, update the live one, then reset the cluster up, was back up and running with in a hour, most of it was triple checking cluster settings were correct, before adding the member back. thank you for your help.
Re: Failed update, adding back to the cluster
Hi @ANicholls
If you can get the firewall out of recovery mode (assuming there isn't something wrong with it), you'll need to do one of two things:
-The firewall you reset needs to be at the same version number, so downgrade it to the correct version.
or
-Temporarily disable the cluster (by going to Firecluster -> Configuration, and uncheck enable firecluster, then save.) Once the cluster is disabled, you can upgrade that firewall as a standalone unit, and then reform the cluster once they're on the same version.
I would suggest the first option, as that should allow you to upgrade the cluster's Fireware version without both firewalls being down for any period.
If you are not getting responses during the time of day that you'd like in your support case, please check your hours of availability. Our ticketing system auto-assigns cases to our technicians based on that. If you're not able to do that, please let the technician know in your case, and they can update that for you.
Re: Mobile VPN SSL high CPU
I came here to post and ask about this as well. I've seen this behavior on every machine I've had 12.11.4 installed on. Right now I'm on an older dual core /w hyperthreading machine and the client is pegged at 25% CPU
feek
Re: Mobile VPN SSL high CPU
Maybe I didn't make myself clear...the high CPU means the PC side, not the Firebox. There is a significant change after updating from 12.11.3.
Juuso
Mobile VPN SSL high CPU
Is just me or has anybody else seeing hight CPU load with the new 12.11.4 version of the client? it is drawing around 15% all the time.
Juuso
Re: Firecluster with Multiwan - Layer 2 switch recommendations
Marc C, we currently have 5 ISP feeds (1 is an evaluation) into a M390 cluster and twin switches providing connectivity. My suggestion is to spend adequate money for the task because it will likely return that value many times.
bfife4
Re: unable to save Expired License
I believe that this is a result of not having a valid license on your firewall.
You can try contacting Customer Care, and see if they have a resolution for you.
Do that via a support case, and select Customer Care
Provide your firewall number
