Comments
-
So why is is only happening on one Firebox? The T40 on 12.6.1 does not do it and the FireFox browser is also used in that network. Also the source of the error comes from many clients and the destination is many different sites. Here are some more examples.. Appliance: LIESTAL Time: Tue Jul 14 17:05:26 2020 (AEST) Process:…
-
T70 12.5.4
-
Thank you James. The vendor has a US$349 option to redirect users away from wp-login.php.. On a good day that's about A$500 without tax.. I know that the customer will not pay that - so it looks like Hackersville Inc (i.e. me) will do the surgery tomorrow..
-
I am pleased to report that the WordPress AuthPoint document works (ony one missing bit in the documentation), but.... :( The immediate problem that I discovered after setting up the AuthPoint SAML solution is that you can type https://{wordpress-site}/wp-login.php and by-pass the AuthPoint login. Being an old UNIX guy, I…
-
As luck would have it, I also stumbled on this beauty.. https://www.watchguard.com/help/docs/help-center/en-US/Content/Integration-Guides/AuthPoint/WordPress-saml_authpoint.html
-
Thank you James.. That's great staring point..
-
I support this proposal, and expand it to include management by Dimension. There is sometimes a discrepancy between how Weblocker tags a site and its actual behaviour. In our case, there are sites categorised as an allowed category, but are actually behaving like Web Analytics (not allowed here). So we add them to the…
-
WebUI works great.. :)
-
In the VM Dimension -> REPORTS > Device > Policy Usage will show the underutilised reports over an extended period..
-
That's just plain sneaky.. I bet this is a question in the next certification exam..
-
T70 has no fan and I am pretty sure that a T80 also has no fan..
-
Here it is - it didn't take long and the only place I have been this morning is watcgguard.com and watchguard.centercode.com These are the original packets using port 52955: 2020-05-25 10:11:40 Allow 10.0.10.7 142.250.66.234 https/tcp 52955 443 1-Trusted-WIRED 0-External HTTPS Request (HTTPS-proxy-00) proc_id="https-proxy"…
-
So the bottom line is that the messages are not important and you can turn them off? Where is the switch? I was going to say that I get these all the time, but after looking at the traffic monitor this morning I can't see any. :#
-
And?
-
You also need to block Web Analytics.. This is the bit that collects the private data.. It is a little bit like mole whacking - new ones pop up every day..
-
Starbucks is closed down here.. Good thing I don't drink coffee..
-
Yes. If I turn off the Server's Firewall I can access the ADHelper configuration page.. Is this the only way you can access the page? The article does go on to say, "most internet-based attackers should not be able to reach this web interface unless you allowed it via your firewall." I take that to also include the…
-
It does not work for me.. I tried HTTP and HTTPS.. Only localhost running from a browser on the server (Windows 2012 R2) itself works for me.. (version 5.8.5.10317).. My laptop and the server are on the same subnet. (i.e. no traffic passes through the Firewall.)
-
Many organisations find it too hard to provide and manage access to services like Facebook, so they adopt a policy of limited access, which can be enforced on the Firebox by using the Quota option. This allows you to limit by time and/or a download limit. See…
-
Yep.. My production Fireboxes reboot once per week.. I am not sure of the benefits these days, but there was a time when they had a slow memory leakage problem and this weekly boot was enough to keep the pain away.
-
It's flooding down here now.. But that's Australia for you - burning one day, flooding the next and snowing in summer the day after.. All normal.. :)
-
Have you guys tried using AuthPoint? Aside from my struggle with the Windows Server's firewall (mostly my own fault), the process seems to work well..
-
Ah.. Sometimes it is the simplest thing.. I used TCP instead of UDP.. Sigh! Thank you for your help Bruce
-
Yep.. I tried to make an Incoming rule. My logic was that the Radius server (the Firebox 192.168.40.1) was using port 1812 to chat to the Authpoint Gateway running on the Windows server. So I set the local port to 1812 with action "allow" across all three profiles (Domain, Private and Public).. No luck.. Then I reversed it…
-
An easier way is to have an allow list so only those networking addresses that matched your country AND those needed to sustain life on the WatchGuard and the server environment are added to the Alias.. It will be a MUCH smaller list than the "rest of the world" To work, you have this policy with the Alias above another…
-
My business uses Windows 10 PCs and a Windows Domain. I assume that you are using SSO. Are you relying on the Event Log or using the SSO client?
-
How old is the HP Switch?
-
I am also having this problem on one of my Fireboxes - the other works correctly. I will try to work to a more granular level that "Mexico" I suggest that unblocking Mexico might be risky given that it is the home of many drug cartels. In my experience, drug cartels and cyber crime seem to have a close relationship.
-
@James_Carson Thank you for the hardware guide. I won't be using the AC Plug Pack. We have solar down here and a backup solar/battery setup for when the grid fails :) to keep the critical infrastructure running. This will enable us to run the firewall without using an Inverter.. I will budget this one for May next year..
-
Oooooohhh... This is pretty awesome.. If the datasheet is correct, it only uses a maximum 1.25 amps at 12 volts.. Easy work for a 12v 20Ah battery and a small (min 20w) solar panel.. Is the 12v connector plug included? The 85% humidity limit might be the only problem down here.. (Great for a desert - not so good in the…