Comments
-
I purchased a basic license for it. And although I applied the license to it I am getting an Activation Status of "Not Available". When I go into our Manage Products it shows that support is now enabled on it. But clicking on it takes me to a 500 Error webpage. Put in a ticket a day ago. Still nothing. Support seems to be…
-
Well I tried again, still the lights never turned what they were supposed to but I held the reset for 3-4 minutes. This time the AP came up as untrusted. Clicked on the trust and now its online. What a pain. How can you reset the ssh password?
-
It does show that the AP is being managed locally though.
-
Thanks, I have a policy that allows it to talk to the Firebox and deny everything else. Still says authenticating. The directions say to hold the reset in and plug it in and wait 60 seconds for the 3 lights to go green, Never happens. SSH password not working either. Frustrating.
-
I think when the lights go out its reset. Now its stuck on Authenticating. They need to makes this better for how much these things cost.
-
Been through all that. Those lights never turn green no matter how long I press the button.
-
You are correct. Since it was a specific app I could go into the Application and allow that particular app. Thanks.
-
Was hoping not have to put in another policy but that did work. Thanks
-
I have a question on this. Does this policy act like a true Reverse Proxy? I would like to use a single IP for websites behind my Firewall and installed a HAProxy VM. But I would rather use the Firewall to do this if it is a true Reverse Proxy. Also, can the SNAT be directed to an internal IP that is not assigned to…
-
You are correct. I thought it had to match the AD credentials, which had capitals. Thank you very much.
-
BINGO!!!!! Its the SSO settings. I had to point the SSO on the other Firewall to the SSO agent on my domain controller.
-
Thanks, but I am not referring to Dimension. I am talking about the Dashboard on the Firewall Front Panel, Top Clients. I have another site with a Firewall and Domain controller. That site connects to the main Site over VPN. The main site Firewall does show usernames instead of IP's. I am trying to get the other Firewall…
-
The DNS is different on the one that is not showing names. Doesn't explain usernames though. I have the SSO agent installed.on workstations. And I always thought that had something to do with it. I might read up on it and see. I changed the DNS on the other Firewall but still only IP addresses.
-
Yep, using Text did work.
-
I just looked at a Sonicwall that has Option 156 configured. But its type is setup as String. Not sure if that is the same as text. Will try and find out.
-
Well scratch that. I just tried again and it seems to be working. The tunnel is up and staying up. Not sure why I was having so many issues before.
-
So for the 1-1 nat, do I put the ip of the internal user for the Host IP?
-
Yes, 1 user needs to access a server on the other end.
-
I just got another alert. This time its for www.altajan.com. Which is Business and Economy. This is allowed yet I got an alarm (email). Alarms are not configured for this category, just logging. So the category is correct. The traffic log shows it was allowed. But again, I got an alarm email.
-
I already have Exchange configured behind the firewall. I also have a couple of other public websites I am wanting to protect. The Exchange was just one site I was trying. The others also do the same thing. Just trying to protect all the websites using a reverse proxy instead of having it directly accessed through a SNAT.
-
Thanks for the clarification. But even though I am doing all of this I am still not able to bring up the webpage. When I look at the traffic Monitor it shows a Unhandled External Packet. Which means there is no service configured. I did not read anywhere that is tells me I need a rule. I added a rule to the external…
-
Well, I was wrong. It still is not working. I actually had a rule pointing my public interface to the website I am trying to proxy. So it still doesn't work. Let me understand this, should the proxy port be the same as the Access portal? Right now my Access portal resides on port 6655. Does that mean in order to use the…
-
Figured it out. I have 2 internet interfaces. I was connecting to the wrong one.
-
ok, thanks. Any ideas on the Reverse Proxy? I changed the internal url to the servers name like https://servername. Still nothing.
-
I have tested it externally. Nothing comes up. I am assuming the webpage should just come up without a login prompt right? I might need to adjust the internal url. Wish there was a test button. But how do you add Nat Loopback?
-
I had this problem too. What I did was going into c:\users\username\appdata\roaming\ and delete the watchguard folder. It will create a new one. By the way anyone know how to read the dmp file? Notepad just shows garbage.
-
WORKING!!!!!!!! Switching to LDAP seems to have fixed the issue. Would rather use that anyway. Thanks for all your help.
-
Did a validation test at Yubico and it came back valid. So I am clueless as to what it is I am doing wrong. Maybe I should switch from radius to ldap.
-
With my password and what the yubikey enters it equals 53. 54 if you count the comma so its with in the limitation.
-
I am using the comma with no spaces. Not sure what I am doing wrong. Its is setup for OTP. Its been imported and my login attached. The slots have me a little confused though.