Comments
-
Hi James, Its a good idea Local > Cloud, ill give that a spin.... thankyou
-
There is, firstly create your Geo-Action, usually for this purpose I create a separate inbound aggressive in number of countries it blocks then apply it to what I call the “connect” policy on MUVPN, there are two policies, the first (connect) is WatchGuard SSLVPN which takes the default format of Any-External to Firebox.…
-
Thankyou James
-
The feature key exists, albeit within the account of the previous owner whom activated it. You would need customer care to change ownership to you, they typically require a photo of the base of the unit showing serial etc, then once changed you should see the feature key in your account. However EOL could affect this…
-
Its one thing having a 10G WAN line and completely another thing being able to utilise all of it. ISP’s are throwing huge speeds at customers these days for very little cost and in my opinion its skewing the provisioning of correct firewall to customers needs. Fundamentally a firewall is doing things to all the traffic…
-
M370 is previous generation, replaced by current M390, however the M370 is still supported till Jul 2028 but I suspect if you purchased it second hand its already been activated as that is a one time thing. You need to open a support case with WatchGuard customer care explaining the situation and they will probably ask you…
-
You can’t lodge a whitelist to permit any website through a firewall. You can lodge a URL category suggested change i.e. it’s in the incorrect category, Without knowing the reason why its blocked or which security service blocked it I am assuming its WatchGuard URL filter called Web Blocker. Checking this…
-
You can’t lodge a whitelist with WatchGuard to permit any website through anyone's firewall, you can lodge a URL category suggested change i.e. it’s in the incorrect category, Without knowing the reason why its blocked or which security service blocked it I am assuming its WatchGuard URL filter called Web Blocker Checking…
-
Sounds like QoS/Quality of service, look on the advanced tab of the policies and isolate the group of PCs. However, implementing QoS effectively needs to be across as much of the network as possible ideally end to end, enabling on the firewall alone isn’t going to do much, traffic will get prioritised across a few…
-
This is the list when it comes to Modem interfaces https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/networksetup/modem_interfaces_about.html you could go 3rd party 5G router for outbound failover, at least then you can place the LTE in a better position linked to one of your interfaces.
-
* Is a DHCP pool enabled on the FW port your connecting too? * Is the PC set for DHCP? * Do you have a DNS outbound rule permitting DNS offered by point 1 above?
-
Are you using SSL VPN? if so its known to be a bit slower when compared to IKEv2, there are some optimisations you can do with the SSL config but Id try IKEv2 and see if it helps.
-
This log message is from external as its running down your policy and not finding a matching rule permitting it thus hitting hidden policy Unhandled External Packet. Your rule From Any trusted To 192.168.2.99 is internal to internal thus that log message isn't related to the rule. Need to understand what your attempting to…
-
Sounds like QUIC protocol and a Chrome browser
-
It’s an input v output question. Every org in the world has 1st liners (We need them) however lesser sophisticated problem descriptions are going to garner boiler plate responses, i.e. I pressed this and its not working or its broken. A sophisticated problem description takes curation and a little time; You need - The…