Comments
-
Nice one @Abertay - thanks for noticing, and letting us know
-
I just tried to edit my profile, couldn't - and found this thread. It's bonkers not being able to edit our own profiles.. can you pass this feedback on to the internal team?
-
Great, glad I came across this (Sentinel may prove central into some of the services we offer) - thanks @NickMedlock. Are you releasing any workbooks and rule templates to go along with the connector (it's no good just getting data in there)?
-
Hi @DaveRC If this is about access for firewall management, and if you have the resources (Windows Server); I'd recommend installing WatchGuard Management Server which will not only allow you to centrally manage your Fireboxes (and keep an audit trail/backup of the configurations), but also allows for Role-Based Access…
-
Hi @Rick_Bray It's really simple, and if it's not a cluster, then there will be downtime while the firewall is rebooted - usually not more than a few minutes. I have seen it take 20 mins - but that is a rarity for sure. May want to leave it until the end of the day if an interruption in connectivity can't be tolerated.. If…
-
Hi @Rick_Bray Upgrading to the latest FirewareOS on your Firebox, will also bring with it the latest SSLVPN clients. The users will be prompted to upgrade if they wish upon connection I believe
-
Yes, it was in jest - tongue firmly in cheek!. Apologies to Bruce if taken any other way. Maybe my humour is as dry as his :smile:
-
No need, just continuing the conversation in this public forum, as any response may help others. I’m beginning to think you just like to get your message count up Bruce :smiley:
-
Hi - any news on this? We have customers affected (do WG devs test against pre-release/beta versions of Operating Systems beforehand?). The latest release was 12.2 back in 2018 from the look of it? Having to use OpenVPN Client in the meantime. Cheers, James
-
Hi @BradM (Disclosure - I am a partner) I'd just like to add, that while some of the initial engineers assigned to AuthPoint cases have been a little sketchy on the subject (few and far between).. they are in my experience, escalated and dealt with in a very technical, and professional manner. While there are a few…
-
Hi @KevCar You don't need any extra rules, but you do need to make sure that you have users, or groups configured within the Access Portal, with permissions to access the appropriate apps. To get this working the first time, I followed the existing documentation. If it's not working, I'd hope it would be something simple.…
-
Hi @KevCar Hopefully I've read your issue correctly: Bear in mind that when using the Reverse Proxy with the Access Portal, the internal domain (currently) needs to be the same as the external domain (which I hope is 'fixed' at some point). What I did was: * Make sure the FW looks to your internal DNS server for lookups *…
-
I had this very same problem (Group Sync). Had an issue with a WG engineer telling me otherwise, but a week later I saw a comment in the latest beta release notes saying they'd fixed it. Tested, and yes - I can confirm the Group Sync now works again (just to reiterate - that's with the latest beta).
-
Agreed, but while using SAML will essentially redirect all users to AuthPoint, you could create a group within AuthPoint that will require passwords as normal, and exclude push, OTP, QR as a second method. Not perfect for a couple of reasons (the branding of the AuthPoint page redirected to, cannot currently be re-branded,…
-
Interesting behavior - I might try that out on my test firebox
-
We have literally, hundreds of Fireboxes (boxen?) out there - and we always turn on proxies by default for all of the above reasons (security services, and reporting).. and just stick in a proxy bypass packet filter for specifics, should it be required (getting rarer).
-
Hi Daniele Good news, thanks - that'll be useful.. Cheers, James
-
Doesn't Windows use SSTP? In which case it wouldn't work with an OpenVPN-based solution? Be nice if it did, or if WG introduced SSTP support.. although bear in mind that SSTP is user-based, not device based..
-
Hi Mike If you need remote access to manage your firebox, aside from locking it down to specific trusted public IPs; one method would be to configure SSLVPN if you haven't already, and lock it down to the subnet used by that (192.168.113.0/24 by default), as well as trusted internal networks/addresses. As Bruce says - when…
-
Hi Waseem Have you tried emailing exams@watchguard.com yet? I've had pretty good responses from them in the past. Cheers, James
-
Thanks @Bruce_Briggs - I'm not 'completely' enjoying the experience navigating around it so far, but I'll reserve full judgment for now (hopefully it will grow on me!). I was really hoping it would be based on phpBB or similar.. Veeam use that and it is spot on. Cheers
-
It's been a while since I logged on to the forums - had no idea a new one had gone live (when did it? - I've banged on about it at every conference for I don't know how long!). Couple of questions: Is the old forum still available as an archive anywhere? There was valuable content in there. Was there a beta for this? Is…