Comments
-
@ibrown I tested just now while at my house, which has a max upload of 40Mbps and transfer rates over ikev2 from my home computer to the office server were around 39Mbps. It's a beautiful thing.
-
Thank you, James, for the confirmation. My cruddy wifi AP's now (not WG) have a cool isolation feature already, so no worries there. My current AP's can only handle 1 SSID and am planning on upgrading them this spring with a WG solution, but I need to tell the owner something tonight or tomorrow. He'll likely through a…
-
haha, thanks guys. I don't know what I was thinking yesterday trying it through the web gui. I hadn't fired up WSM is a while and had forgot all about it. So I made a copy of the config file using WSM of my 5-port model, then connected to my 8-port model, opened 5-port config, set the extra interfaces to Disabled for now,…
-
Hi James. Thanks for the reply! I'm saying something else unfortunately... I've noticed the attacks coming in and stopping within hours when I forward them to a non-existent IP vs I do nothing and they persist for days. I've been brushing this off as a coincidence, but there's a positive correlation there. Why? I don't…
-
Gregg, and for others reading this... I setup the IKEv2 and let me tell you - night and day. Feels like I'm on sitting in the office with the server in the other room. My goodness. IKEv2 is definitely the way to go. No split tunnelling, but that's a small price to pay.
-
Thanks for chiming in Gregg! I'm using Mobile VPN with SSL, routed VPN traffic, SHA1 authentication, AES-256 encryption, port 443. How fast you getting on IKEv2? I might just turn that on and see what happens.
-
Found it by running a Firebox Configuration Report. I had defined .18 years ago as a secondary address to an external interface that has long been disabled. Weird that it still acknowledges a disabled port's info.
-
Well, there is if you're using Authentication > Servers > Firebox-DB. You get the options shown in the screen shot below for every user you create... https://ibb.co/nQ62jK8
-
The guys at Watchguard Support are good. They looked at both endpoints and determined the tunnel was being re-established when the main isp would fail. The problem was with the backup isp at the main office - its bandwidth is 18 down, less than 1 up. Because of the main office location, att only offers copper dsl and no…
-
Thanks guys. I added multiple Gateway Endpoints and matched the article to the T. I then power cycle the main ISP at the main office (Deerfield, IL) and I can no longer connect to the branch office (Chicago, IL). It takes the main ISP about 4 minutes to come back online, so I think that's enough time for the tunnel to…