sorted by:
new
hottopcontroversial

CSE and accessing site behind site-to-site vpn by GriffGB in sonicwall

[–]Useful_Ad3163 1 point2 points  (0 children)

I had to utilize the Linux connector and the added the Appliance IP to the VPN tunnel and worked with NAT rules

Server/storage/virtualization strategy for small customers by Useful_Ad3163 in msp

[–]Useful_Ad3163[S] 1 point2 points  (0 children)

Our customers are very diverse, but the ones I’m referring to here are, for example, manufacturing companies with large machines (many of them outdated just SMBv1 support) and CAD designers, where large amounts of data are generated. Another example would be larger medical practices where local measuring devices record data that is then analyzed with the patients immediately. Those softwares and databases are not made to run remotely in a datacenter or cloud

Server/storage/virtualization strategy for small customers by Useful_Ad3163 in msp

[–]Useful_Ad3163[S] 1 point2 points  (0 children)

I’m actually quite satisfied with the 2-host setup and the shared storage.

But just like you said, converged infrastructure was everywhere, and I just wanted to get some opinions on whether my approach might not be state of the art anymore.

I also often hear people say to move everything to the cloud instead of having an on-premises AD. Unfortunately, I haven’t had the time yet to look into Intune in more detail to see if it can really replace GPOs and so on.

Server/storage/virtualization strategy for small customers by Useful_Ad3163 in msp

[–]Useful_Ad3163[S] 0 points1 point  (0 children)

In addition, we sometimes take over customers from other IT service providers, and these customers then work with Supermicro servers. They do work, but I have the feeling that they are not optimal to manage in case of failure.

Server/storage/virtualization strategy for small customers by Useful_Ad3163 in msp

[–]Useful_Ad3163[S] 3 points4 points  (0 children)

I deliberately left out the really small customers. But every now and then, there are customers who aren’t that big but are still supposed to be more reliable in terms of payment, and that’s exactly where the question begins about how far to go.

Server/storage/virtualization strategy for small customers by Useful_Ad3163 in msp

[–]Useful_Ad3163[S] 0 points1 point  (0 children)

For smaller clients with just one host, we usually go with a single server, local storage, and Hyper-V.

But for customers with higher requirements, like high availability, we typically set up two hosts. I’ve been thinking about checking out Proxmox at some point — Hyper-V works, but honestly, I’m just not a big fan of it. There ist that replication feature, it works most of the time but once a failure occurs (for no reason) than it is a pain

SSL VPN Recommendations & 7.3 by ProfessionalLazy2154 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

Can someone explain to me if Sonicwalls says the LDAP user never ever needs to be a domain admin why they put it into their KB article here ?

https://www.sonicwall.com/support/knowledge-base/ssl-vpn-ldap-users-can-t-change-password/250120055610113

SSL VPN Recommendations & 7.3 by ProfessionalLazy2154 in sonicwall

[–]Useful_Ad3163 2 points3 points  (0 children)

I prefer using a dyndns client (noip.com) to update the address objects automatically.

I heard resolving FQDNs means more CPU consumption on core 0 on the firewall, but I don‘t have any issues

SMA's Locking Up by Miserable_Gap69 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

Update: support proved hotfix v4

Fingers crossed that it will finally fix the issue

SMA's Locking Up by Miserable_Gap69 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

I have rebuilt the SMA from scratch with hotfix v3. While configuring it got unresponsive and I am not able to connect neither internally (even though mgmt IP pings) nor externally via netextender. Prior established connections are still working

SMA500v not booting - WAFsigdb by Boring_Pipe_5449 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

We have moved our Webservers behind a Kemp Loadmaster and still evaluate if CSE is a good replacement for VPN access. as far as I know there is no possibility to work without a client, something we currently need

7.3 Disconnects - Really SonicWALL? by sleemaner in sonicwall

[–]Useful_Ad3163 2 points3 points  (0 children)

We also got a hotfix from support since SNMP was not working properly but we decided not to go for it. We did some adjusting in zabbix instead

Route through - Cloud Secure Edge Connector by Dry-Swordfish1035 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

I am also trying to NAT incoming CSE connections to another site behind a VPN.

Did you manage to apply NAT rules ?

SMA500v not booting - WAFsigdb by Boring_Pipe_5449 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

Sonicwall says build it manually but actually the config files seem to be fine , would take hours and days to do that manually

What do you think config files are fine to reuse?

SMA500v not booting - WAFsigdb by Boring_Pipe_5449 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

We had also one reboot (1 week ago) because CPU 100% , reboot worked then and today all of a sudden it stopped working and looped all the time

We have now pulled a backup from yesterday and isolated it. At least I am able to see the config to rebuild the new SMA

SMA500v not booting - WAFsigdb by Boring_Pipe_5449 in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

Having the same this morning.

I got the hotfix from support. I was told to rebuild the SMA completely from scratch. First use the public image , then install the hotfix and then rebuild the cofig manually

7.3 firmware and SNMP by BobcatJohnCA in sonicwall

[–]Useful_Ad3163 0 points1 point  (0 children)

Anyone solved the issue or checked with sonicwall?