Comments
-
They have an internal bug ID AAAS-23584 if you need to refer to it.
-
For now I downgrade new pc to 23H2 and I’ve blocked 24H2 from GPO. Waiting for a fix from MS or WatchGuard.
-
It's a known issue with Windows 11 24H2 https://techsearch.watchguard.com/KB?type=Known%20Issues&SFDCID=kA1Vr0000006iJJKAY&lang=en_US
-
As CADFEM said, blocking is not effective. I set the ban to 2 failed logins on a 4h time period, but the attempts come from several IPs. I have some suggestions: * Login failures should be counted by IP; if an IP fails to log X times in a row, no matter the username, ban. * Force the WatchGuard VPN SSL client, and ban if…
-
@Bruce_Briggs thanks to pointing out the new feature in 12.10.4. I've just upgraded from 12.10.3 and setup the brute-force protection.
-
Hi @"james.carson", I would like to +1 this feature request. The workaround isn't foolproof. The available domain is easily accessible from the SSL VPN portal https://Firebox_IP/sslvpn_logon.shtml Currently, someone is brute-forcing with many valid usernames on the main domain and Authpoint domain. Users are AD-bound, and…
-
WG support found the issue. The Firebox DNS was pointing to an external DNS. Changing it for AD DNS fixes the LDAP Bind issue. * Add the local DNS server to the Firebox global DNS settings (Policy Manager > Network Configuration > DNS/WINS or web UI > Network > DNS/WINS). Please make it the first DNS server on the list.
-
Hi @"james.carson" The LDAP test success in the WebUI and nowhere in the doc it ask for a functional LDAP but I’ve double check my Active Directory integration and it works. https://www.watchguard.com/help/docs/help-center/en-US/Content/Integration-Guides/AuthPoint/firebox-ssl-vpn-radius_authpoint.html The logs I’ve put in…
-
Quick note for this thread: All SSL clients will be disconnected after entered the cli command.