Quantcast
Channel: WatchGuard
Viewing all 1338 articles
Browse latest View live

watchguard "support"? I have other names for it!

August 25, 2014, 1:49 pm
$
0
0

Our company has pretty well standardized on the XTM-5 box for our router/gateway systems.

With over 20 sites it is nice to have similar layouts and support from within our company can usually give us a hand on most of the problems for our networks.

I am one of the remote support techs. In most cases I am giving the guys a hand.

This morning however it became my turn to deal with the "support" services of Watchguard.

I have an XTM-5 that was installed in March of this year. It was dead this monday morning. NO Lights, No Fans and NO data was flowing.

I attempted a reboot. Nothing.

I Pulled it from the rack and threw in the old 550e box... This limited the switching services, but for the main part it got my office back running.

I took the XTM-5 downstairs and tried to fire it up again... NOTHING.

I contacted the watchguard support by phone and...

Search

Watchguard Quarantine Server Client hangs while loading emails.

August 26, 2014, 2:39 am
$
0
0

We are using Watchguard spam filter on XTM525 device and it's working very well and reduced 40% spam emails. The problem is when I go to quarantine server client to look for emails, it took so long to load emails and it hangs in between. One click on scroll button take 30 sec or so to scroll page down. 

Quarantine server is configure on PC with i5 processor with 5 GB of RAM. 

Any one had faced this issue, if so how to work around on this?

Thank you in advance.

Watchguard Mobile VPN with IPsec (using Shrewsoft client)

August 27, 2014, 9:49 am
$
0
0

Shrewsoft client connects with tunnel enabled and i get an ip address in the appropriate range. However, i cannot ping anything on the domain. Any help would be greatly appreciated.

DropBox breaks when loading via Watchguard Firewall

August 28, 2014, 9:01 am
$
0
0

We have a direct link to a drop box file that doesn't work when going through the HTTP proxy. I checked traffic monitor and saw that everything was being allowed through.

When we try to load the drop box link, IE errors out with "This page can't be displayed".

If I try from my machine, which is on an unrestricted packet filter, it works fine.

We are using watchguard OS version 11.9.1.B451786

I found this:

http://www.en3py.net/english/blog/11/watchguard-https-dpi-and-dropbox.php

It allows the site to load, but not correctly. I just see a white background and text.

Watchguard XTM Limitation on "Specify Allowed Resources"

August 28, 2014, 2:54 pm
$
0
0

I have recently encountered this issue on an XTM 860 and an XTM 535. One is running v11.8 and the other v11.9.1. Wehn setting up allowed resouces for Routed VPN traffic, I have discovered that I can only specify 19 resources. If I specify more than that, resources 20, 21, 22 etc. are not accessible. I have verified this by moving some of them from the top of the list to bottom and vice versa. any beyond number 19 do not work.

Has anyone else encountered this or know a work-around? I have considered the "Allow access to networks connected through Trusted, Optional and VLANs" option, but not all of these resources are connected, some are addresses on other Watchguard BOVPN devices, etc. I really need to be able to specify more than 19 resources. Any thoughts?

Interface Sensor Not working in PRTG for Watchguard X750e

August 29, 2014, 2:17 am
$
0
0
I am adding a sensor in PRTG to monitor bandwidth on

interfaces of my WatchGuard X750e Firewall. It detects interfaces as

connnected and up but when I add them, it shows them Down with Error: No

Such Name ; SNMP Error 2.

I am adding a sensor in PRTG to monitor bandwidth on

interfaces of my WatchGuard X750e Firewall. It detects interfaces as

connnected and up but when I add them, it shows them Down with Error: No

Such Name ; SNMP Error 2.

Creating a template from the configuration of a device.

August 29, 2014, 2:20 am
$
0
0

hi

wont bore you with details here but, in short I successfully managed to bin our management server and all the settings etc with it.

I ended up recreating and resetting up from afresh, problem is I lost our device configuration template.

To recreate the template, by hand will take a while, can I create a new template but from the configuration of another device. So clone a device or save the config of a device as a template? Bin what I don't want keep what I do wand and voila.

Running XTM Fireware 11.9.1 on all 16 devices and management server.

Thanks Spicers (of the watchguard variety).

Watchguard guest wireless access

September 2, 2014, 1:23 pm
$
0
0

I have a WatchGuard XTM2 device that I am having problems with the guest wifi access on.  I am able to connect to the guest wifi but can't do anything beyond that.  In the traffic monitor I keep getting "2014-09-02 16:18:14 Deny 192.168.20.101 192.168.20.255 netbios-ns/udp 137 137 ath6 Firebox Access from wireless guest network is denied 78 128 (Internal Policy) proc_id="firewall" rc="101".  I have WG-Wireless-Guest enabled for HTTP and HTTP-proxy.  What amI missing here?

Search

watchguard BOVPN force all internet out hub

September 8, 2014, 1:44 pm
$
0
0

I want to setup a client with a hub and spoke VPN. There will be 5 spokes. I want to make sure I understand how to get all the spokes to route their internet traffic through the hub. Each site has a min of 50MB Internet connection with 100MB at the HUB.

The hub is a watchguard XTM 550 in cluster mode. The spokes are Adtran Netvanta 4430's. We've tested that the VPN's works great. Each spoke can get back to the hub as well as the other spokes due to the 10.1.0.0/16. The problem is all internet goes out the spokes (Adtran) internet connection directly. We need to monitor and manage the internet traffic using the watchguard at the hub.

There are articles on the watchguard site on how to do this but they assume watchguards on both ends of the VPN Tunnel.

My first thought is to simply change the tunnel routes for the remote spokes to...

deny only web http/https web traffic and allow whole the rest

September 10, 2014, 2:29 am
$
0
0

hello, 

I have a XTM510 with 11.9 firmware.

I would like to deny only web http/https web traffic and allow whole the rest, apply to a specific subnet.

Because I want to deny web but I have to use tools such as teamviewer and AV updates, etc..

How can I do this? thx

email hosted by Gmail is being blocked

September 11, 2014, 12:14 pm
$
0
0

My company uses email of Gmail. But it seems like the firewall is blocking it for some reason. When i use at home emails can be received but at office I do not receive anything. I am a new user of WatchGuard. Can anyone please suggest where to look and what could be the problem?

Thanks in Advance

VPN went down Watchguard

September 12, 2014, 1:26 pm
$
0
0

Hi all,

I have a problem with a VPN connection between 2 watchguard firewalls.

Without anyone changing or doing something the VPN went 2 between 2 sites and never came back, here`s a log from the Diagnostic menu

Text
*** WG Diagnostic Report for Gateway "Boothen to Mossfield" ***Created On: Fri Sep 12 21:16:03 2014[Gateway Summary] Gateway "Boothen to Mossfield" contains "1" gateway endpoint(s). Gateway Endpoint #1 (name "Boothen to Mossfield") Enabled Mode: Main PFS: Disabled AlwaysUP: Disabled DPD: Enabled Keepalive: Disabled Local ID<->Remote ID: {IP_ADDR(212.57.225.200) <-> IP_ADDR(195.62.203.185)} Local GW_IP<->Remote GW_IP: {192.168.1.250 <-> 195.62.203.185} Outgoing Interface: eth0 (ifIndex=4) ifMark=0x10000 linkStatus=0 (0:unknown, 1:down, 2:up)[Tunnel Summary] "2" tunnel(s) are found using the previous gateway Name: "Sapphire" Enabled PFS:...<-><-><-><->

Watchguard XTM-21 Wireless access point

September 18, 2014, 9:25 am
$
0
0

We need a stronger wireless signal at the far end of our office.  Does watchguard have a compatible WAP,?  Is it possible to connect a 3rd party WAP to boos the signal?

Thanks!

whatchguard - mail alert when mobile VPN session starts

September 19, 2014, 2:47 am
$
0
0

hello,

is it possible to send a mail when a mobile VPN starts a session?

XTM510, with 11.9 firmware

thx

VPN Internet Issue

September 24, 2014, 10:27 am
$
0
0

A few months ago we switched our firewall from an E-soft to a Watchguard.

After the switch I have had some users inform me that when they get on the VPN that they would be kicked off the internet. It is not consistent on which users get kicked off the internet and the IP address varies. The VPN is controlled through our 2003 server and is set up as the DHCP controller.

Any suggestions are welcomed.

Search

Watchguard XTM510 - No data in logging or reporting server

September 30, 2014, 4:55 pm
$
0
0

I have a Watchguard XTM510 set up as our main firewall, and everything else seems to be working fine, but I cannot get it to log anything to the logging server, nor is there any data in the Reporting server.

Everything looks like it's connecting; the web interface sees the XTM510, and seems to connect, but there is just no data.

  • Tried updating everything (currently on 11.9.3 on the box and WSM, but older versions had the same issue
  • Uninstalling and reinstalling log and report servers, no effect
  • The logging and report servers are installed and configured
  • Postgres server is running
  • There's no Windows firewall in the way
  • The web interface sees the XTM and connects
  • No errors in the Event Viewer

  • I've checked options to log actions on several policies

I have been beating my head on this for two days, out of ideas, and would appreciate some...

Dual stack IPv6 configuration on watchguard firewall

October 1, 2014, 7:37 am
$
0
0

We have a Watchguard XTM 510 running Fireware XTM 11.9.3 which has IPv6 support. We have recently been upgraded by our ISP to dual stack and have an assigned Global /64 scope for our use. I have been racking my brain on how to config the firewall for using the scope on our internal network. Originally i set up a ULA scope to use internally but have recently read that you should not do this with IPv6. The watchguard does not support IPv6 NAT anyway. Since there is no NAT, how do i configure the IPv6 addresses on the Watchguard External and Internal inferfaces so that the internal devices know where the gateway is. My intention is to use MS DHCPv6 for address allocation, so we will be using stateful configuration.

I attempted to put a static IPv6 on the external interface, and then put a second static IPv6 on the internal interface, but...

watchguard - dimension & server center

October 2, 2014, 6:37 am
$
0
0

hello,

I have a XTM510 with fw 10.9.3 

Can I totally replace SERVER CENTER with DIMENSION ?

thx

can RDP throughput be improved?

October 3, 2014, 10:38 am
$
0
0

I cannot get our total RDP traffic to exceed 1Mbps - I put limits on the other traffic in hopes of feeding our RDP connections; the limits work fine but RDP stays at 1Mbps, when one location has 23Mbps total, normally 21Mbps available.

This happens whether I use RDP, leave the traffic using the Outgoing policy, create a new policy using TCP, etc - always all connections to our terminal servers, whether it's 3 connections or 15, together grab only 1Mbps max.  I've also played with minimum bandwidth and it makes no difference.  We have three locations with Watchguard XTM25 firewalls all connecting to a Vyatta router in our hosting company's datacenter.  Two locations have 3Mbps, the other has 23Mbps.

Watchguard XTM 515: Log all traffic on a specific proxy

October 6, 2014, 2:55 pm
$
0
0

I set up an HTTP and an HTTPS proxy on the watchguard to handle the traffic from one specific user on the network. I tested it and it works fine. But now I would like to set up logging  for all activity going through this proxy, and make sure it is permanently saved somewhere. How can I do this?

Viewing all 1338 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>