Bruce_Briggs
About
- Display Name
- Bruce_Briggs
- Joined
- Visits
- 3,258
- Last Active
- Roles
- No Roles
- Points
- 521
- Badges
- 7
Comments
-
It works for me at this moment
-
That is available in V12.7 which is currently in Beta.
-
You can contact Customer Care, and provide the serial number & model of this firewall, and they should be able to tell you the want account name this firewall is registered, which should give you a clue.
To contact Customer Care:
Look at using SD-WAN, where you can select which policies will use a specific WAN interface.
For example, you can set your HTTP & HTTPS policies to use WAN2, and perhaps have WAN1 as the default outgoing WAN.Once you disable the default IPSec policy, you can add as many specific IPSec policies as needed.
For example, you could add one for each of or for all BOVPNs - From: specific IP addrs or FQDNs of the other ends of the BOVPN sites, and have…Do you have a HTTP or HTTPS proxy in your config?
Do you see a Deny log message with HTTP Body Content Type match in Traffic Monitor From: the IP addr of your Xbox, similar to the Deny message shown above?
If so, you can add a HTT…
Create it or post it?
To post it, upload the screen shot to an upload site, and include a link to it in your post.With 12.7 beta 5, I get to the main page and all of the rest of the pages without issues.
Looking at Traffic Monitor, I don't see any really long URLs.But, I'd certainly like to get some more really tasty Aus wines.
Haven't …How are you trying to access the servers?
Via SMB?
If so, could SMB not be enabled in the wireless interface?I don't see anything when I click on your link.
How are these 2 networks connected?
Any reason why you need a /16 subnet for your site?
There are a number of "hidden" polices in the WG software.
So for IPSec user VPN connections, the policies are for connections by authenticated users, well after the IPSec connection attempts.You can disable the built in IPSEC poli…
Care to post some sample Traffic Monitor log messages showing this?
For the record, what firewall models & software versions are at each end?
It looks like both ends are out of sync on trying to bring up the VPN.
In this post, a change to the "IKE V1 password", which I assume to mean the share…
You need to add a policy to your M270 to allow the T20 or other remote firewalls to contact your WSM Server.
Add a WG-Mgmt-Server Packet Filter, From: Any-external (or preferably the public IP addrs of the remote firewalls) To: SNAT (Any-e…I have no formal WG training either - just many years of using the WG products...
As I said before, a M270 comes with a 4 unit WSM Server license .
You should be able to find it on the support site in the your products section.And as I said before, even without a WSM Server license, you can select Connect to Dev…
Given what James said, and what is in the docs (see below), I would expect the BOVPN tunnels to stop, or at the least, not be able to start up once stopped.
Disable or Enable the Built-in IPSec Policy
The Firebox includes a …
Feel free to post for this ability on the Product Enhancement section
You should install the SSO client on your PCs.
My guess is that this admin account logon happens on some PCs after the user logs on, and the SSO ELM sees the last logon, and that is what is being used.
There is a lot of ocean between Australia and the USA.
You need to factory reset the firewall in order to change the access user IDs and/or passwords.
Prior to doing so, make sure that you have saved the current config.
After the factory reset, you can reload the saved config.R…
As those IP addrs are not added to your config, I would expect that a reboot would cause them to be lost
I would expect the need for an admin user ID & password to do this.
From a Google search:
"To login to your Wi-Fi router, open up a browser and go to 192.168. 1.1 and then login with the password located on the sticker on the ro…One would hope that the GEO response to the sender would be their source country, not the dest country. So for me, this is unexpected.
Support may well tell you that this is working as expected.
But it is not what I would expect.I don't have that setup.
Most odd, for both.
Open the support incident.Each device, both the active and the passive, must have an active Support subscription.
If the Support subscription on the passive member expires, then it is not active.Support subscription: Each device must have an active Support subscription.
Comparison of FireCluster Active/Active and Active/Passive
in Active\Passive Subscription Comment by Bruce_Briggs April 8To use Fireware GWC to manage an AP, you would need to change the AP to Firebox managed (Basic Wi-Fi) and you can not use the additional features from a Cloud managed AP.
We suggest to stay with Cloud managed, and use Bridge mode for the …
For the record - upgraded from what version to what version?