James_Carson
Comments
-
If the MAC address control is set up on the AP itself, you will not see anything show up on the DHCP table.
I…
-
Hi @Cristiano
The Access Portal is compatible with AuthPoint. You can set that up using the guide here:
(Firebox Access Portal I…
-
Hi @Cristiano
Access portal is designed to be a replacement for using the VPN. This won't be possible as it goes against what the featur…
-
There should be a check-box in the bottom of your VIF's gateway tab that says "add this tunnel to BOVPN-Allow policies." Unchecking that will remove it from the default BOVPN rules.
-
If your 3rd party device has a way of listing multiple gateways, it'll probably work. Since we don't have any way of controlling how that device decides to use what gateway when, your results may vary.
If it does an OK job, your failover…
-
Hi @ALyman
The issue is likely the protocol in use -- it sounds like you're trying to access SMB file shares. SMB doesn't work well over co…
-
Hi @Cristiano
The access portal is designed to effectively replace the need for a VPN since it's securing the connections.
Access…
-
Hi Bruce,
My apologies, I mis-read that.
You're correct, those options are only available for the default threat protection logging.
I'm not exactly sure why they added it for all log types and grayed it out for them. I'l…
-
Hi @Kwiss
it sounds like you're possibly using one of the default proxy actions (which can't be edited.)Try pressing the button to cl…
-
Hi @Jim_McGrann
There's not a whole lot of data here aside from the requestID, which I'm unable to find in our system. Checking your L…
-
The MTU setting in the CLI is a hard setting -- that limits the tunnel to that size.
PMTU behaves differently, and only does this when it sees fragment traffic returned to it. You can see more about it here:
in Difference between gateway PMTU and tunnel MTU for a BOVPN Virtual Interface? Comment by James_Carson May 10
-
As of right now, there's no report like what you're looking for in cloud.
Is your device cloud managed or l…
-
Hi @Kevin252
We don't have any verification method that requires you to upload a picture of an ID card. Verification is done via a local …
-
@Danny86
If you use WSM, you can do all all the changes in policy manager, and save them to the firewall at once -- which makes cutting over… -
Hi @Danny86
You'll need to set your external interface to Disabled, and create it as a VLAN. Once it's created as a VLAN, you can go back …
-
@travis_tmb
The firewall uses RAM as "scratch space" for quite a few processes -- things like AV scanning, APT blocker, DLP, etc will hol… -
Hi @Vader
If you'd like a webblocker category changed, please use the system here to request it:
(Security Portal - URL Category)
I checked with our support team lead, and it looks like it's made it to the correct team. One of our team that works with TDR should be with you soon.
The error you're seeing says the phase 1 identifier that you're receiving doesn't match what the remote side is sendi…
Hi @RobL
You can define specific routes and exclude the ones teams goes to -- however, you'll need to know the IP subnets (not FQDNs) for this.…Hi @KDP
I'd suggest opening a support case so that we can see what might be going wrong.If you've already opened a case, can you please…
Hi @KDP
TDR Supports Big Sur with host sensor v5.9.1 or better.
-It sometimes takes a bit for the client to baseline and report back.
Hi @Ron
I'd suggest making a packet filter for that site and seeing if the traffic can traverse that way. Using a packet filter will just NAT …
Hi @Cristiano
The firebox supports external authentication servers (such as RADIUS) that support MFA.-If you manage your device v…
Hi @Flo_Paris
You should be able to open the rule from the search results -- no need to close the search and look for the number.
Hi @Flo_Paris
This is an existing feature request -- FBX-4332.If you'd like to follow this request, please create a case and the …
Hi @CraigS
The issue with this is by default the message is released before APT scanning is finished, so it's often impossible to add this i…
Hi @Flo_Paris
You can add sites to the blocked sites list via the CLI, or import using WSM's policy manager.If it's a cloud manag…
I'm not sure if we've tested the IOT edition -- (I can look into that.)
If you're looking for native VPN however, both L2TP and IKEv2 VPNs, which are built into windows 10, will work.
You can also use any compatible (most) OpenVPN…
Any reset procedure aside from pushing the reset button on the firewall will require the passwords to accomplish anything.
If you don't have any passwords, you'll need to reset the firewall and make a new configuration.