Francesco

Reactions

0 Promote 0 Like 0 Boom 0 LOL 0 Spam 0 Abuse

Comments

  • Hi james, the event of ssl vpn user disconnecting is shown as 3E00-0004 not 2500-0001 FWStatus, Firewall user - from - logged out, pri=6, proc_id=sessiond, msg_id=3E00-0004
    in VPN Connection Logging Comment by Francesco January 2022
  • Hello Bruce, in my Event Notifications window those 2 ids are missing. Instead 3E00-0002 and 0004 are present but those are logging every ad login to user pc, creating a lot of email spam. I'd like to only log SSL VPN user logged out assigned virtual ip, is it possibile? M270 v12.7.2 here.
    in VPN Connection Logging Comment by Francesco January 2022
  • Solved! It was trivially an MTU problem. No errors or collisions, but fragmentation! ping www.yahoo.com -f -l 1464 and I found out the optimal MTU to set on the external interface.
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • https://i.ibb.co/f8M4m4n/Cattura.jpg This is my network, the issue is between wg https proxy and wan over vlan
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • it turns out to be an issue of solution B on my first post, as connecting directly to the router has no issue. Will try changing the network topology and give you an update
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • After sorting out some network problem, the last one that remains is: 2021-08-05 14:42:05 https-proxy 0x8afa40-4454 9108032:4454: nondata event 'CHAN_READ_BLOCKED: 45: 89.0.0.154:51164 -> 217.61.8.49:443 [A txr] {B }' Debug After ssl HELLO and ssl CLOSE. Taking down the HTTPS Proxy solves the problem
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • I double checked the path of the vlan and there are no collisions or misconfigurations. One switch has the vlan running on a 10gb fiber link instead of 1gb utp like the rest
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • RX packets:44729205 errors:0 dropped:0 overruns:0 frame:0 TX packets:17571918 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • I had to disable tcp syn for i had a lot of errors
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • I have an Invalid connection state and connection failed, Unhandled External Packet-00. xxx is lan, yyy is target site, zzz wan connection through vlan 2021-08-03 16:43:27 Allow 89.0.0.xxx yyy.167.246.67 http/tcp 49474 80 LAN WAN zzz.3.100.34 ProxyAllow: HTTP header match (HTTP-proxy-00) HTTP Proxy Profile…
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • it seems to be a problem of handshake
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • Thank you Bruce, solution B is working. I had to disable my https proxy lan to external: many sites were loading eternally if it was on, especially after authenticating. Any idea?
    in wan, vlan, tagged, untagged Comment by Francesco August 2021
  • It seems there is a problem with mnt Error (8196), ******ERROR: Unable to create backup directory - [Errno 2] No such file or directory: '/var/opt/watchguard/dimension/backup_mnt/wglog'" /
    in Dimension backup Comment by Francesco September 2020
  • How to enable bandwidth and time quotas? regarding ssl vpn traffic. I have a ssl vpn user group, can set a quota action for this group and set it to the rdp policy applied to the group. Then I'll have a report of authentications per user with quotas. Am I wrong?
    in Dimension and SSL VPN logging Comment by Francesco March 2020