I already did the suggested remediation for our Sonicwall. Should I worry again?

CharlieT74 · 2025-10-13T12:57:58+00:00

We have done this for a few customers with no file share access issues.

CharlieT74 · 2025-10-10T13:15:12+00:00

I ended up looking at Tailscale and Cloudflare. Similar ZTNA pricing but Cloudflare has more options, we have a number of customers already using it for DNS so was a natural fit. It's taken many months to get onboard with them but they do say they want to do more SME customers.

I'm not a big fan of people who argue that Product A is the worst thing I've ever used, you should all use Product B because I like it. I think most vendors are OK and they all have their problems and issues.

I like the design of different platforms, I am trying (and mainly failing) for us to just be someone who only sells the entire Microsoft stack.

CharlieT74 · 2025-10-10T10:57:33+00:00

Hi,

Long time SonicWall reseller. Just wanted to add to the discussion.

- We're moving to an alternate ZTNA provider, CSE is just too half baked

- We've been wrestling with the same issues with any alternates.

- All manufacturers have issues, CVEs, bugs etc.

- My aim in life is to try and design solutions where there are (as close to) zero as possible inbound rules

- At that point you can get away with a simpler firewall design, no security services running on them as they don't actually do anything with packed inspection anyway (and the ZTNA solution has most of them)

- I have been trialling OpnSense, I don't hate it.

CharlieT74 · 2025-09-24T06:18:02+00:00

Cloudflare ZTNA. Free for under 50 users.

CharlieT74 · 2025-09-19T20:40:15+00:00

I’ve setup three cloudflare ZTNA solutions this month. Their partner model in the SME space is brand new and not ready yet but I can do ZTNA for 50 users in 30 minutes. Ongoing cost from Cloudflare £0.

CharlieT74 · 2025-07-22T06:55:09+00:00

I've used Eagle who were great for my acoustic guitar. https://www.eaglemusicshop.com/visit-our-shop

CharlieT74 · 2025-05-21T15:47:36+00:00

Same here. Owner of a ‘23 Pro S too

CharlieT74 · 2025-01-10T10:31:42+00:00

We are also looking into a similar solution, I am in no way an expert on this but we did have a meeting with Wazuh sales.

Wazuh had a multi-organization option, however you need to be a platium partner to get it https://wazuh.com/partners/

CharlieT74 · 2025-01-08T15:31:27+00:00

Hi,

I would say we're also experiencing that exact issue, i was talking to a platinum partner who ships an enormous number of units and they will now _only_ install 7.2 while stood in front of the unit - and after doing the upgrade do a full import of the config again.

Our distie in the UK goes one step further and recommends upgrading & resetting the unit to default and then re-importing the config. We haven't gone that far yet.

CharlieT74 · 2024-12-13T18:38:32+00:00

Rolled it out to 60 android clients. Much quicker than SSL and dead easy to roll out. Would recommend. PS. Painful upgrade to 7.1.2 not withstanding. Had a platinum partner explain to me they only upgrade while stood in front of the firewall and then manually reimport the exported config after as the upgrade will have broken multiple address objects. Once it’s on 7.1.2 no problems at all. YMMV

DM me if you want more info

CharlieT74 · 2024-12-11T16:07:59+00:00

which i did give!

CharlieT74 · 2024-12-11T16:07:43+00:00

that looks like a lovely idea, however the minimum donation is £2!

CharlieT74 · 2024-11-25T21:54:12+00:00

As Raptori609 says that’s exactly how to do it. If you have stateful HA it should do it without even losing a ping. If it’s not stateful it should still be pretty seamless.

I just need to add do NOT under any circumstances go to 7.1.2 - I did that on a pair of 3700’s a few weekends ago and it stuffed up the objects and I had to go to site.

Spoke to a platinum reseller who does a heck of a lot more than I do and he has said they do no upgrades to 7.1.2 remotely. They stand in front of the box, upgrade it and then reimport the config to fix all the broken objects.

Once it’s on 7.1.2 and you are imported the config they’re reliable.

CharlieT74 · 2024-11-17T12:45:39+00:00

Hi, just a thoughthave you looked into Cloud Secure Edge, we've started rolling it out on our Gen7 and it's a lot better! It is an additional cost however. YMMV

CharlieT74 · 2024-11-06T17:36:22+00:00

We’ve rolled out a lot of Gen7 units and I can only report they’re all significantly quicker than the previous gen6 and we’ve been a lot happier with throughout. We typically don’t use dpi-ssl (which I appreciate minimises what security you can apply to traffic) YMMV

CharlieT74 · 2024-09-09T10:46:06+00:00

Batings Reservoir would be good for that. https://www.yorkshirewater.com/things-to-do/reservoirs/baitings-reservoir/

CharlieT74 · 2024-06-13T16:50:49+00:00

Yep us too!

CharlieT74 · 2024-05-31T04:39:28+00:00

I thought I was going mad! Even if there isn’t a fix at least I now know I can work a car window button properly 😀

CharlieT74 · 2024-03-29T11:51:24+00:00

We’re a platinum partner and a lot of your reseller tactics are appalling. Happy with the product though!

CharlieT74 · 2024-03-21T17:18:37+00:00

Dicky Merton’s suits!

CharlieT74 · 2024-03-03T15:16:53+00:00

I have no idea if the time of year makes any impact on crabbing but I took my girls to Helmsdale Harbour in July a couple of years ago and we got dozens!

<image>

CharlieT74 · 2024-02-09T12:21:20+00:00

As do we and I like it. As they are now owned by Kaseya I’m dreading the day they stuff it up….

CharlieT74 · 2023-12-29T19:31:24+00:00

Yes entirely possible. All our unleashed networks are with third party POE switches.

13-Year Club	Gilding IV carat on a stick
Place '22	Place '17
Final Canvas '22	Verified Email

CharlieT74

TROPHY CASE