Comments
-
@Bruce_Briggs. Thanks for the information. I will update my WG an let you know if it works.
-
Hi @Bruce_Briggs, Thanks for your fast answer. I have -external, optional & optional. At the moment I have running 12.5-B596863
-
Hi @James_Carson Thanks for your support. Then I will open a support ticket for this case.
-
Thanks @Bruce_Briggs but it thought the exception list in the content inspection is enough?
-
Hi @James_Carson, I have fixed that problem with the following steps. From a Windows machineopened the certificate that you were planning to import on the Firebox On the window that appears we've clicked on "Certiface Path". On the "Certificate Path" tab we've clicked on the First certificate of the tree and we clicked on…
-
@Bruce_Briggs Thanks for the hint. But Why do I need a separate policy with the HTTP proxy that appears as Inspect in the Https proxy so that a redirect to HTTPS pages works? If I configure this policy also the Teams Client works on the RDS.
-
Hi @James_Carson Thanks for your answer. But very strange ist when I try to import the Proxy Authority Ca over the WEB GUI or Systemanager I always the prolem when I am sekd to import the CA root that this fild is empot again afoter importing the CA root. How can this be?
-
Hi Guys, Thanks for your support. It works now with a VPN-IPSEC connection.
-
@Greggmh123 thanks I will do this.
-
Hi @James_Carson , Thanks for your answer. But I´m searching for a end-to-Site sollution. I will describe my current scenario. We have some employees in china that we want connect to some resources by us via an end to site vpn connection. My question is that scenario possible when the user only installed the vpn client…
-
@NickSimpson no there isnt a significant speed decrease.
-
@Bruce_Briggs Thanks it works fine.
-
@Bruce_Briggs Thanks for your recommendation. I will configure this next week with "Specify allowd resources" and give a feedback it it work.
-
@Bruce_Briggs Thanks for the hint. Would you take "Froce all client traffic through tunnel" oder would you take "specify allowed traffic"?
-
@Bruce_Briggs is it necessary like in the manual above in step 3. to change to specify allowed resources or can I keep the setting at "Allow access to networks connected through the Trusted, Optional,an VLANS"? Then it should be enough that I continue at point 9 with the SSLVPN address or not?
-
@Bruce_Briggs yes exactly that I wan to do. A Mobile SSLVPN user is coming from outside to the Firebox and want to access a resource in another subsididary via a BOVPN tunnel.
-
@Bruce_Briggs my goal is Allow Mobile VPN with SSL Users to use Resources Through a BOVPN Tunnel
-
Hi @lucab, For this is till a Bug-Fix by Watchguard open with the following number FBX-13953. Unfortunately it does not help to change the configuration. I guess there's nothing left but to wait.
-
@Greggmh123 thanks for the answer. Maybe do you have expirience with extreme aps. Because my problem is that the Aps dont get the IP from the Controller over the DHCP.
-
Is it even possible to give the option 78?
-
Ok I got it
-
@Bruce_Briggs which list do you mean?
-
@Bruce_Briggs thanks I will do this an when I have a solution I will pos it.
-
@Bruce_Briggs Thanks for your answer but unfortunately I dont get the same authentication infos from all users on both firewalls. On german I have only the german user authenticated and in the US I have the US- Users an some german users. I dont know why that is
-
What would be the best solution in this case?
-
@BrianSteingraber Thanks for your answer but I have only one RODC on the other site and its a Global Domain.
-
@Bruce_Briggs Thanks for the answer. Yes both firewalls geht their SSO authenticated user info from the SSO agent. You mean the users that are authenticated on one firewall should also be authenticated on the other firewall?
-
I have the version 12.3.1 running. Ok I will do this.
-
Srry I forogt something. If we have the problem no voice connection from external to internal. Then I decativate the policy and then I activate it again and it works again. Its very strange.
-
Hi @stefan_petershofer sorry for the late answer. Yes this ports are important 55000-56000 UDP.