Comments
-
It is still waaaaaaay better than the v11 days.. I can't recall a recent FQDN fail.
-
Sadly, it also works for me too.. Die WSM die..
-
In Version 11, FQDN operation was flaky.. I remember problems like it running out of space to hold a domain that had lots of sub-domains, and when this happened some FQDNs would work sometimes and not other times.. Gregg can probably remember the other FQDN issues as he was the champion that kept whipping the FQDN horse to…
-
VERY VERY annoying!
-
I can't get to any of those three sites either using a T40-W with 12.6.2.B631387
-
I was okay until today and now I have the problem using FireFox 83.0 All the topics are bolded for me..
-
Is there plenty of free memory?
-
I have a T35 and T40.. The T40 is light years ahead of the T35 in terms of real world performance.. I don't have a T20, but I have heard nothing but good comments from people that have them..
-
There isn't one.. The closest is Drugs/Nutrition.. This is an important classification area that seems to be missing..
-
Sigh! That does make it hopeless to track down the potential problem..
-
The reason for my suspicion is that I searched Dimension for 38045 expecting to see a call to 172.217.25.138 with a source port of 38045, but the first entry is the "unhandled exception" log entry. In fact, all of my requests to this IP address today have source ports in the 50000 range. I feel that there is something…
-
I have come across this in the past.. I seem to remember that it had something to do with expired certificates or changing a setting on the mac related to certificates..
-
I use Content Actions to redirect incoming https requests to the correct web server.. See https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/proxies/general/content_actions_about_c.html
-
I gave up! I ended up connecting all the consoles (and TV sets, Bluray players etc) at home to their own VLAN with a packet filter of VLAN to any-external.. I spent nearly a whole year figuring out ports and valid IP addresses to use in policies, and still everything would come down in a heap - even on the TV.. These…
-
It was a fictional example.. o:)
-
By way of example. Say that the first PEN test was to do a DDOS attack.. The Firebox will block the source IP Address of the attacke.. The next PEN test might be for port 8080, which might have been left accidentally open on the Firebox.. The PEN test for 8080 will pass, but only because the FireBox is already blocking the…
-
One reason is that the Firewall, if it is configured like mine, will block the IP address after the first failed attempt at a breach. This means that a test intrusion that might have been successful will fail simply because the Firewall blocked the IP address and not because the Firewall prevented that particular breach…
-
We got a result of sorts from Support. The T20/T40 is working normally in that it informed us of an expired certificate. It seems that the other boxes have a "bug", because they did not report an expired certificate. However, I need to lodge a case for the other boxes so that the "bug" can be captured. As an aside, I was…
-
The certificate is on the FireBox... Expired 2020-10-27 08:43 Trusted CA for Proxies RSA c=FR st=France l=Paris o=PM/SGDN ou=DCSSI cn=IGC/A email=igca@sgdn.pm.gouv.fr If you delete it and reboot the Firebox. it is gone forever.. That will solve the problem tactically, but begs the question of why did WatchGuard put it…
-
I should have read my answer better. It is not on any of my other boxes (T70 and T15) - only my T40.. Support apparently have not seen the problem before.. I have a few questions to answer for them.. I will update with the results..
-
UPDATE: I lodged a low priority case to look into this one.. It is only on the T40 not on the other boxes..
-
The price difference between a livesecurity licence on a T10 and a T15 with basic security is pretty minimal.. Consider a trade-in to a T15..
-
Yep.. I see this too..
-
Yep.. I am seeing these in Dimension every 2-3 minutes, while a PC is logged in and surfing the net.. When the PC is shut down - the log entries do not appear..
-
I might have to reconsider the design. It made sense to have a single time source on the local network. The Firebox is logical- if it is down there is no Internet anyway. I didn't want our 100mbps bandwidth cluttered with NTP traffic from every device on site and these days, even for a small business it adds up very…
-
If you restore a backup, from USB, that includes the preferred OS, then you should not lose the configuration. The only loss will be any configuration changes that you made since the backed up version was upgraded..
-
Yep.. I get that. However, in this case we have a Firebox that has woken up after a long sleep (e.g. it could also be a brand new box.) and a switch that is trying to set time through NTP and realising that the Firebox (as the NTP server) has not attempted to set its own time, and won't for at least another 90 minutes.…
-
Where do you think the idea came from? ;)
-
Summer of '69 for me.. :)
-
Except that modern switches are able to determine if the NTP server source has been synchronised, and will refuse to accept them as a time source. The consequence is that the switch (or any other device without some kind of battery backup) remains on 1970 time.