Comments
-
@"james.carson" So from my understanding with WG Support, WG cannot detect this and take down a BGP link. This is a critical feature missing for BGP in my opinion.
-
Okay thanks!
-
Good Morning @"james.carson", So yes the WG is able to determine that the circuit is down as I am notificated via email from the WG that the link is down. However, its not pulling the routes from the WG as BGP is still up. So the other day when carrier 1 was down, I got into the office an hour or so later and we couldn't…
-
Hi James, Okay thanks!
-
Okay thanks!
-
@Bruce_Briggs ... Awesome thanks!
-
@Bruce_Briggs ... Understood. Yeah thats what I was wondering was if there were any IPS Signatures and how that entire process works.
-
@Bruce_Briggs ... So I need to have the HTTPS proxy with inspection then? I don't think we have it turned on for this particular website. I believe we have a firewall rule exempting it.
-
@David_Carro ... Host Sensor TDR has been discontinued correct? Currently we have EDPR running on all endpoints.
-
Got it. Thanks Bruce
-
@Bruce_Briggs ... I see. So I can do a DHCP reservation for a group of IP addresses and then use those in the virtual ip pool for the ikev2? We are simply going to be locking down some resources that cannot be accessed remotely unless connected to the VPN. I could also just add the ip addresses allowable that the current…
-
Got it thanks!
-
Got it thank you!
-
Thanks!
-
@"james.carson" ... Okay thank you. Well we disabled ipv6 on our computers per our MSP recommendation and our problems have gone away it seems. However, a few computers that were having trouble are no longer it seems. I'll keep you posted.
-
@"james.carson" ... I am suspecting that ipv6 may be the cause here. We had ipv6 issues with one of our servers a few years ago when we put our first WG in place. I disabled ipv6 on my computer and I am not having any issues now. What do you think? Is there a way to disable ipv6 on the WG? Thanks
-
Got it. Thanks James!
-
@"james.carson" ... The only problem we are having right now is roughly once per day ... our desktops freeze (internet wise) for just a couple of seconds and then reconnect. Any idea what could be causing this?
-
@"james.carson" .... So if we have a VLAN that is routing all of our internal LAN PC's, but we have two fiber connections, should all the traffic be routing over one circuit out or should it be NATTed to an IP or the gateway ip address of our Class C?
-
@"james.carson" ... Right now my experience is not stable. I am dropping RDP Connections to my internal servers (that are just on my lan). It's almost as if my PC is hopping from one ISP to the next.
-
Okay thank you. We will be investigating and I will post back.
-
@"james.carson" ... Got it thats what I thought. I am pinging the DNS Servers of the ISP primarily. My issues the other day ... I am almost certain ... is because the link monitor was pinging every 5 seconds and after 3 successes was saying the link was back up ... then would fail on the very next try. I think if I…
-
@"james.carson" / @Bruce_Briggs ... When in Multi WAN with the Routing Table ... Does the WatchGuard use the Link Monitor to determine links that are Up/Down? My theory is that all I really need to do is to increase the scrutiny on the link before its reactivated. So my plan would be to increase the Reactivate after X…
-
Yes it is: 01745902
-
Hello, I put in a ticket yesterday with High Priority because the issue was effecting our network. I am having an extremely difficult time getting up with anyone from WatchGuard.
-
I'll need some professional assistance configuring this. Any idea how I can go about doing that?
-
Good Morning again ... To circle back ... with the router using the Multi-Wan function in Mixed Routing Mode ... do the fallback for active connections even apply then? I personally don't have a problem if the connections that failover stay on the other circuit but we are using BGP and least cost routing so I am not sure…
-
Good Morning, Well technically the ISP is changing but the external IP doesn't. Our failovers work without any intervention. So I would expect the failovers to be more fluid honestly. Is that wrong?
-
Okay thank you!
-
Yes its strange. I've added a NAT for the selected ip range on the L2TP VPN. The traffic seems to be higher now through the firebox. I am going to work with my partner to go through it again and make sure we are not missing anything.