Comments
-
Hi james, the event of ssl vpn user disconnecting is shown as 3E00-0004 not 2500-0001 FWStatus, Firewall user - from - logged out, pri=6, proc_id=sessiond, msg_id=3E00-0004
-
Hello Bruce, in my Event Notifications window those 2 ids are missing. Instead 3E00-0002 and 0004 are present but those are logging every ad login to user pc, creating a lot of email spam. I'd like to only log SSL VPN user logged out assigned virtual ip, is it possibile? M270 v12.7.2 here.
-
Solved! It was trivially an MTU problem. No errors or collisions, but fragmentation! ping www.yahoo.com -f -l 1464 and I found out the optimal MTU to set on the external interface.
-
https://i.ibb.co/f8M4m4n/Cattura.jpg This is my network, the issue is between wg https proxy and wan over vlan
-
it turns out to be an issue of solution B on my first post, as connecting directly to the router has no issue. Will try changing the network topology and give you an update
-
After sorting out some network problem, the last one that remains is: 2021-08-05 14:42:05 https-proxy 0x8afa40-4454 9108032:4454: nondata event 'CHAN_READ_BLOCKED: 45: 89.0.0.154:51164 -> 217.61.8.49:443 [A txr] {B }' Debug After ssl HELLO and ssl CLOSE. Taking down the HTTPS Proxy solves the problem
-
I double checked the path of the vlan and there are no collisions or misconfigurations. One switch has the vlan running on a 10gb fiber link instead of 1gb utp like the rest
-
RX packets:44729205 errors:0 dropped:0 overruns:0 frame:0 TX packets:17571918 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000
-
I had to disable tcp syn for i had a lot of errors
-
I have an Invalid connection state and connection failed, Unhandled External Packet-00. xxx is lan, yyy is target site, zzz wan connection through vlan 2021-08-03 16:43:27 Allow 89.0.0.xxx yyy.167.246.67 http/tcp 49474 80 LAN WAN zzz.3.100.34 ProxyAllow: HTTP header match (HTTP-proxy-00) HTTP Proxy Profile…
-
it seems to be a problem of handshake
-
Thank you Bruce, solution B is working. I had to disable my https proxy lan to external: many sites were loading eternally if it was on, especially after authenticating. Any idea?
-
It seems there is a problem with mnt Error (8196), ******ERROR: Unable to create backup directory - [Errno 2] No such file or directory: '/var/opt/watchguard/dimension/backup_mnt/wglog'" /
-
How to enable bandwidth and time quotas? regarding ssl vpn traffic. I have a ssl vpn user group, can set a quota action for this group and set it to the rdp policy applied to the group. Then I'll have a report of authentications per user with quotas. Am I wrong?