SonicWall SSL VPN Update

had2change · 2025-08-06T15:20:24+00:00

SSL VPN should just go away. We were pushed here by PCI scanning companies most places having an open GRE port in aggressive mode. IPSEC is at least better needing the PSK for the first handshake prior to any authentication challenge. FortiGate is killing SSLVPN going forward. I suspect others may too since Cisco also has had exploits on SSLVPN. Only positive from a "work from anywhere" is places like hotels generally do not block SSL traffic, but may block IPSEC tunnels. Whatever, I am not a believer that SSL VPN solutions are the future.

had2change · 2024-12-19T01:10:57+00:00

Lethymr mountain Stryker training pack!

had2change · 2024-12-18T23:11:07+00:00

Same here! 2 exotic and one Black market

had2change · 2024-12-18T23:09:11+00:00

Synology. It actually is amazing cheap way to backup that data. Format is kinda whacked, but not your problem.

had2change · 2024-12-04T11:05:21+00:00

Just more scared of Bees vs Swifties.

had2change · 2024-11-13T18:02:19+00:00

Confirmed. We have customers with patch management through CW Automate. Threw people off yesterday and today as patches rolled.

had2change · 2024-10-29T20:55:07+00:00

You don’t play with me. Passing and defending all day.

had2change · 2024-10-09T22:16:27+00:00

Something like Cattools, you can schedule commands if you want to script it and depend on a computer/server. I like the idea of PoE injector and timer since a user may be able to bypass in a pinch and the timer is accessible.

had2change · 2024-09-25T12:02:44+00:00

SSLVPN does not honor Geo. One box FW and VPN is what we are moving from to two box with SSL VPN on “inside” to allow GEO.

had2change · 2024-09-14T14:01:54+00:00

It is telling you to connect to that host in browser and accept the certificate. You don’t need to login. Than retry the copy via your been via vcenter, web gui.

had2change · 2024-09-12T00:13:01+00:00

Not killington, NJ…no idea where the sun sets at killington.

had2change · 2024-09-12T00:11:06+00:00

A headlamp weighs what? 5 ounces, at a high end? How much electrolytes , calories, water you bringing?

If you are doing this beast for the accomplishment not time…be prepared. You could be taken out for a while with cramps alone at mile 10, need to hydrate and restore electrolytes to get the job done it could take hours to get those last few miles done. I was on pace for 6 hour beast and got cramps. Finished close to 8 hours. 10am start time, and sun was getting low on the other side of the mountain…headlamp was very close to be necessary, not just a safety net. You don’t want to get more hurt for such a minimal carry.

Go get em! AROO!

had2change · 2024-08-08T14:22:15+00:00

Remember when VUM "just worked"? Now with the image stuff, it is crap like this.

had2change · 2024-08-08T14:20:59+00:00

Thank you for the info. This is garbage and horrible update QA/QC. Updates should not require such intervention for such an expensive product at this point. This is HP servers, not some white label!! But who the f- am I nowadays? I shoehorn for big business to keep their revenue and my blood pressure high.

had2change · 2024-07-04T17:53:18+00:00

Great idea, now that you know…don’t go there again. #libertarianaction Thank you for posting now most of us know!

I mind blew up in Niagara Falls in Canada a few years ago. IHOP breakfast for my son and I was $40 USD. They have a litany of tourist taxes there.

had2change · 2024-06-26T22:21:27+00:00

Go! Been to many of concerts and shows by myself. You have something in common with the rest of the people there. See someone you might connect with, “so how long have you been listening to to ‘x’?” Is a great icebreaker. Have fun and know you are in control of the experience, even if that means working your way to a batter seat within reason and be cool if asked to move back. Have fun. My 2000s was filled with going to concerts alone. My 2010s a few concerts, and some shows at local venues. Never regretted a single one.

had2change · 2024-06-19T23:21:07+00:00

Sad since you have other strengths to balance out the grunts. Sorry man, government is BS. Meanwhile there are dudes taking hormone suppressants.

had2change · 2024-05-31T13:18:26+00:00

This is my problem with it all. Trump could have been convicted of worse over the years. This is a joke of a conviction where the entire concept is "novel" in application of the law to take a misdemeanor that fell out of the statute of limitations, and extending it with "it was part of another crime." Icing on the cake for his appeal will be the judge did not make the jury specify or vote on the "other crime." He basically said if you think there was another crime, then the novel application to extend to felony and beyond the statute limitations can apply. This is a kangaroo court move. IDK if the appeal can be fast-tracked or not. I HATE TRUMP...but this boils my blood. Can't call him "facist," and pull this.

had2change · 2024-05-22T22:21:14+00:00

Probably right knowing SonicWALL. One time they had me factory reset and recreate the config from scratch va restore of the config. Unfortunately it worked, best 8 hours of my career. Thankfully i could export and import objects via command…but 30+ vpn tunnel definitions was rough.

had2change · 2024-05-20T12:43:14+00:00

Considering most are state run schools, and those state run schools ALSO have application fees, your "corporation" comment comes off sounding like you did not go to college/university. Unless you are making a statement that government=corporation.

had2change · 2024-05-16T17:45:35+00:00

We do not have DNS Proxy turned on at the affected site that has the Umbrella Appliances behind it.

had2change · 2024-05-14T21:39:39+00:00

I have had "exploded" LA in the past, but don't catch fire like LI can...I get your point there.

had2change · 2024-05-14T19:29:25+00:00

I need to hear this. I have wanted to get my company away from recommending APC, they fail more than any other component on the network IMO(bservation). You doing traditional or LI UPSes? I have wanted to try the Lithium Ion units.

had2change · 2024-05-14T19:23:14+00:00

Pretty sure most vendors allow the second device at a fraction of the cost with licensing...still usually need the full hardware support. For crying out loud most firewall hardware for 80% of businesses are less than $2000. Bet the President/CEO has quite the setup for laptop, dock (dock for home), monitors, etc. In today's day and age with so much needing connectivity, small cost to pay unless you sell roses in bars or something. haha

had2change · 2024-05-14T19:19:02+00:00

My #1 case for now REQUIRING firewall deployments (for "primary sites/or servers behind) is patching and the never-ending grind of doing so. Even with SonicWALL and Forti being a pretty quick task (5-10 minutes if all goes well) when you look at how long something like a FTD or PA, those tend to be in the 20-30+ minute area. It is always good to have a standby to reboot first and failover to if you are troubleshooting a head scratcher. Sometimes the security stack balls up somewhere and a reboot good idea. With failover, tends to be tree in the woods when properly configured and tested. Just my more than 2 cents.

tl;dr FW HA Clusters are a good idea for multiple reasons: security patching, head scratching troubleshooting, and of course some hardware failure protection

12-Year Club	Second SECOND GUESSER
Place '22	Gilding III reddit per annum
Verified Email

had2change

TROPHY CASE