Comments
-
I do want to enable content inspection. I tried and it's not working. I watched how watchguard did it. He just redirected on the https rule to the http rule and enabled safe search. He must've done something more. Because that's not working for me.
-
So, I do save my configs. I just did something really stupid. I've been saving my config a ton. But then I was getting paranoid about my admin password. So, I changed it. I use a random password generator. My old password was a random password. I changed my password. A little later, I made a change and it messed up the…
-
Awesome. totally worked. Thanks!
-
Here's what I see. I just verified that the SN matches my Firebox. (I accidently ordered one after I bought the one I'm using when I ordered a license.)
-
last screenshot to show that my dhcp lease dns servers match what watchguard says they're supposed to be.
-
-
-
no, hasn't changed. same thing. There is no data available for this time period
-
I think it is. See the two images...
-
This is what I see when I open the policy. This isn't a predefined policy. It's a policy I created. I cannot add another port under policy type. (FYI, I am working on setting up dhcp reservations for everything on my network and restricting the source IP to specific IPs to make it more secure...)
-
OK, been a minute since I got my ccna (15 years ago and never used it.) I thought a bridge was a layer 2 device...same as a switch where it switches which side the traffic is on by mac address. So, it seems like a bridged port would not help.
-
but i'd rather somehow do it on the watchguard
-
I just tried one of those wire tap things where its supposed to act like a hub and send and receive out of all ports, and when I plug in my modem to the firebox, works fine. as soon as i add a second pc in another port on the tap, all communication is lost.
-
also, if a mac address changes because it's not using the hardware mac address, won't that mess up this whole thing?
-
Isnt there a better way than DHCP reservations? A home grade router you can just label the device so you can see what it is. I'd rather not have to plan out each device's IP addresses.
-
wait, i think i just thought of a way to do this. maybe i'll make a duplicate http and https policy and set the sources only to my kids' devices and then, from there, i can schedule it to stop traffic... Or does that just turn off the rule and allow everything? I have the deny any any at the bottom, but, it seems like it…