Unresponsive Web UI. Cannot manage device with solution

July 1, 2018, 11:14 am

≫ Next: WatchGuard User Forum's down

≪ Previous: port blocking policy

$

0

0

So I had sent out a pre-configured box to a client site that should have been ready to go. The onsite contact was going to install it for me the next weekend but something came up and they could not do the work. So it ended up sitting there for over a month.

Now the other day we had the chance to get it up and running and it all worked out of the box for the most part. IP for the interfaces was perfect, branch office VPN connections that were pre-configured came up properly and all indications were that everything was working fine. But I could not get into the management. I could not login to SSL vpn. I could not get any of the watchguard management server tools to connect and I could not connect to the web-UI remotely or from their local trusted subnet. It just gave me connection refused errors. When doing tests with telnet client...

---

WatchGuard User Forum's down

July 2, 2018, 12:11 pm

≫ Next: Watchguard Firebox blocking port 3000 internally from subnet

≪ Previous: Unresponsive Web UI. Cannot manage device with solution

$

0

0

Anyone else unable to access the WatchGuard Forums?

I get a 500 - Internal server error message.

Watchguard Firebox blocking port 3000 internally from subnet

July 5, 2018, 12:21 pm

≫ Next: HTTP proxy (Watchguard) and Office 365 updates blasted our internet

≪ Previous: WatchGuard User Forum's down

$

0

0

We just purchased some new timeclocks, and for the life of me I can't get them to communicate with the server software if they're not on the same subnet.

Our Watchguard Firebox M470 is complaining about the communication with this type of error:

2018-07-05 12:11:47 Deny 192.168.1.2 192.168.3.100 3000/tcp 56261 3000 1-Trusted Firebox invalid 47 128 (Internal Policy) proc_id="firewall" rc="101" msg_id="3000-0148" tcp_info="offset 5 A 2921750932 win 37115"

(IPs changed to protect the innocent) 192.168.2.2 is the server at the main office, running the software and 192.168.3.100 is the remote device.

Port 3000 is not on the blocked ports list, and I've tried to create a policy to allow communication, but nothing works. I can ping the device and see its internal web port, but 3000 remains blocked. The timeclock here at the main office...

HTTP proxy (Watchguard) and Office 365 updates blasted our internet

July 6, 2018, 11:44 am

≫ Next: You can check out WatchGuard's new MFA solution with the AuthPoint Beta Program!

≪ Previous: Watchguard Firebox blocking port 3000 internally from subnet

$

0

0

Fun story:

Earlier this week came in to a saturated WAN link, the cause being many connections to officecdn.microsoft.com.edgesuite.com, from our Watchguard. The requests originated from 3 of our workstations who are piloting O365.

Anyways there was a huge amount of these connections being initiated and downloading. WAN link 100% saturated but, network traffic on the LAN was normal.

Turns out it was the HTTP proxy on the Watchguard trying to download this large O365 2016 update... over and over and over again until there was no bandwidth left. Started on Sunday, Monday was a holiday so nobody noticed until Tuesday when the internet was crawling.

Anyways, I added an exception in the HTTP proxy for officecdn.microsoft.com.edgesuite.net which immediately dropped the number of connections down to 3 (one for each workstation as it should be)...

You can check out WatchGuard's new MFA solution with the AuthPoint Beta Program!

July 9, 2018, 12:43 pm

≫ Next: Watchguard won't allow RDP

≪ Previous: HTTP proxy (Watchguard) and Office 365 updates blasted our internet

$

0

0

We are just a few weeks away from launching WatchGuard AuthPoint, our Multi-Factor Authentication solution on WatchGuard Cloud!It's a simple, secure and cost-effective cloud-based MFA solution, enabling MFA on your VPN, Cloud Applications, and Windows Logon.

For anyone interested in taking an early look at the solution, the AuthPoint Beta Program is now open for enrollment! Additional info and the steps to sign up can be found here, as well as on our Beta Programs Page

And of course, please let us know what you think :)

Watchguard won't allow RDP

July 10, 2018, 10:50 am

≫ Next: Do I need faster broadband ?

≪ Previous: You can check out WatchGuard's new MFA solution with the AuthPoint Beta Program!

$

0

0

I've got an XTM 22 at one site, and a software provider uses RDP and FTP to connect to the server there to perform maintenance on the database.  They've had a change in IP address, so I altered the rule allowing the connection, but the RDP traffic is still blocked. I checked the config history to make sure the new config is applied, and it is. I'm flummoxed! 

Do I need faster broadband ?

July 11, 2018, 3:48 am

≫ Next: Interfaces watchguard firewall and vlans.

≪ Previous: Watchguard won't allow RDP

$

0

0

We are moving to a new office (from a shared office) and have the opportunity to order a new broadband connection.

We have a WatchGuard T70 fire box (I am not fully up to speed with it yet) and just wondered is there are way to find out if our current connection is sufficient as a baseline to work from.

Interfaces watchguard firewall and vlans.

July 13, 2018, 8:24 am

≫ Next: Allowing FB Messenger while blocking Facebook

≪ Previous: Do I need faster broadband ?

$

0

0

Hello All,

So I am just asking the community so I dont need to start from scratch. (resetting my FW)

I need to switch my trusted interface to a vlan without losing access to the management interface which is currently the trusted interface.

Am I going to lose access to the management interface when I make this change?

Any assistance appreciated.

Thanks!

---

Allowing FB Messenger while blocking Facebook

July 15, 2018, 6:43 pm

≫ Next: Ways to be a part of WatchGuard’s Cyber Threat Intelligence Community

≪ Previous: Interfaces watchguard firewall and vlans.

$

0

0

I have a Watchguard Firebox T10, I am trying to block facebook and only allow the messenger.

I've tried denying facebook.com and allowing messenger.com in exceptions, it works however the messenger log on text field just keeps loading unable to proceed.

Thank you, I'm still a noob at this.

Ways to be a part of WatchGuard’s Cyber Threat Intelligence Community

July 17, 2018, 11:28 am

≫ Next: watchguard kaspersky antivirus update unknown error 54

≪ Previous: Allowing FB Messenger while blocking Facebook

$

0

0

In a previous post on the general standard on sharing information about Cyber Threat Intelligence (CTI) the main theme mostly surrounded the idea that collaboration, and allowing great minds to work together to continue pushing research and development, is what keeps the world moving forward.

To that idea, and should it be something anyone is interested in, I wanted to share that if you’re a WatchGuard Firebox customer our recent blog post details a way that you can contribute to our Cyber Threat Intelligence Community. In the Global Settings options on the Firebox, there is an option to opt in to share device feedback. It's simple and of course completely optional, but it is a change that can help better track malware and network attack trends.
* Should there be any concerns about exposing sensitive or business data, fear not. The...

watchguard kaspersky antivirus update unknown error 54

July 19, 2018, 6:11 am

≫ Next: WatchGuard AP320 not on a T15?

≪ Previous: Ways to be a part of WatchGuard’s Cyber Threat Intelligence Community

$

0

0

Hello everyone, 

we are having a big issue, Kaspersky update on watchguard mail scanning system is been failing with 'unknown error 54' for the last few days. 

Anyone know why this is happening ?

WatchGuard AP320 not on a T15?

July 22, 2018, 4:34 pm

≫ Next: Mucho Improvemento to the AP320 (its called the 325)

≪ Previous: watchguard kaspersky antivirus update unknown error 54

$

0

0

We have a few AP320s (few hundred). At a facility one of our tech's was on site to deploy a T15 and hang an AP320 from it. AP320 simply would not connect...a known good device. After a few hours of trying to default the AP (was used prior and defaulting them is a joke)... and get it to connect and come out of "configuration" we ran out an AP120 and it fired right up.

Plug the AP320 into an M400 and it fires right up, connects and configures....hmmmmmm....yes I know the 320 costs as much as the T15 - but any one other than me see this?

Mucho Improvemento to the AP320 (its called the 325)

July 25, 2018, 5:07 pm

≫ Next: Watchguard XTM 525 - ExpressVPN or Anonymous vpn for media streaming

≪ Previous: WatchGuard AP320 not on a T15?

$

0

0

We have a boat load of AP 320s. They are a solid AP, do their job, easily managed...blah blah blah. The ceiling mount system SUCKED as bad as any AP could have ever dreamed of sucking to mount (barely) to a grid.

Today we got our first batch of AP325's! First thing I noticed is the box was heavy...very heavy. Well, the AP is at least three times the weight of the AP320...it also has a very kick ass solid system to mount to a drop ceiling grid with three giant pins in the rear of the AP...very good improvement. Plus, I like the weight just because.

We shall see in the coming days how the coverage and fast-roam is as compared to the 320's...but, seems they have a solid product this this AP....

Watchguard XTM 525 - ExpressVPN or Anonymous vpn for media streaming

July 25, 2018, 9:12 pm

≫ Next: M300 with GatewayAntivirus

≪ Previous: Mucho Improvemento to the AP320 (its called the 325)

$

0

0

Hi there, to begin I'm trying to setup a Firebox XTM 525 with the latest Fireware 12.xx for my home network.  I initially set it up with pfsense, but I wanted to see if I could make use of the native OS/software for this appliance.

Is it possible to setup one of the optional interfaces on this appliance to use ExpressVPN?  I would like to set this up for my media streaming devices for geo restrictions. 

I thought of doing this on a separate dd-wrt based router, but the vpn throughput speeds that I was able to achieve using my watchguard hardware running pfsense through an expressvpn connection was pretty amazing.

Thank you!

M300 with GatewayAntivirus

July 26, 2018, 5:12 am

≫ Next: Using Watchguard VPN with SSL on with an iPad

≪ Previous: Watchguard XTM 525 - ExpressVPN or Anonymous vpn for media streaming

$

0

0

Hi folks,

Quick question, hopefully...

We use gateway antivirus, tested as working using the EICAR test. Following this post on spiceworks: LINK would gateway antivirus, which I believe scans file inbound, catch this?

Best,

Jim

---

Using Watchguard VPN with SSL on with an iPad

July 26, 2018, 11:46 am

≫ Next: Allow AV software internet access on otherwise blocked PC with a Watchguard fire

≪ Previous: M300 with GatewayAntivirus

$

0

0

Has anyone had any success connecting an iPad to a Watchguard VPN with SSL on an iPad. Any links that I have found have expired, and I can't find any information for it on Watchguard's site. We have an M200 at the main office. We have the client installed on our Windows based machines, but I'm trying to allow our iPad users to have similar access.

Allow AV software internet access on otherwise blocked PC with a Watchguard fire

July 27, 2018, 8:30 am

≫ Next: YouTube is now "Chat"?

≪ Previous: Using Watchguard VPN with SSL on with an iPad

$

0

0

Hi

We have a number of PC's on a customers network that are blocked from the internet using a security group and a Watchguard T70. The trouble is this also interferes with windows updates and AV updates etc. Is there an easy way to allow the AV through the Watchguard and any other bits of software that we may require.

FYI this is set up so a user is blocked ,not the PC as it is occasionally used by various people who need access.

Also, now this may be Watchguard 101, but how do we get the watchguard HTTPS cert for the proxy install on PC's as soon as they logon to the domain e.g. by group policy or we could do it manually if I knew how to get to it.

Many Thanks

YouTube is now "Chat"?

July 27, 2018, 11:24 am

≫ Next: Watchguard firebox filter DNS responses? (i.e. protected against rebind attacks)

≪ Previous: Allow AV software internet access on otherwise blocked PC with a Watchguard fire

$

0

0

Playing in one of our lounges where we have some shared access devices that are used primarily by outside staff (credentialed medical staff who are not 1040) - for a while we have been blocking all IM style applications via App Control - specifically blocking all "Instant Messanger's" within a policy specifically for the VLAN the computers are on. For some reason this policy is also blocking YouTube. It is not blocked in the Web Filter policies in any way via HTTP or S. The odd thing out, proven is the application control.

WatchGuard claims App control for IM will not block YouTube....well, it does. Drops the connection...what am I missing????

Watchguard firebox filter DNS responses? (i.e. protected against rebind attacks)

July 30, 2018, 4:20 am

≫ Next: Fireware v12.2 released July 30th

≪ Previous: YouTube is now "Chat"?

$

0

0

Is it possible to filter dns responses?  

I can see the proxy actions allow for blocking requests based on FQDN or regex, but how about if i want to block the result. i.e. if an external DNS server returns a local/private address (192.168.x.x) then drop it.

Fireware v12.2 released July 30th

July 31, 2018, 8:49 am

≫ Next: Fireware v12.2 released July 30th, not for XTM models

≪ Previous: Watchguard firebox filter DNS responses? (i.e. protected against rebind attacks)

$

0

0

Fireware v12.2 was released July 30th.

Gregg