Hardware Firewalls

23K

Solutions

20K

Contributors

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have a cyberoam backup file in the form .config file extension. I want to view it in a human readable text that i can compare with others and document. What can I do to have that.
0
On Demand Webinar - Networking for the Cloud Era
LVL 9
On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

I have fortinet 600C with WAN interface connected to AT&T router (1 GigE). We are in process to upgrade AT&T MIS circuit from 1Gig to 10Gig. The speed is going to be throttled to 2Gig. What are my options with Fortinet 600C to get 2Gig link speed? Do we have to get two cables going from AT&T or we have to replace the fortinet? What is recommended or what should we do?
0
I would like to separate hard wired connections from wifi APs.  The purpose is to separate traffic and assign separate class c subnet to each group.  

Equipment used
Watchguard firebox
Qty 2 Uniquiti 24-port Poe+ 500 watts
Qty 10 Uniquiti HD access points.

Separate subnets for each group:

Hardwire users
10.1.1.1/24 on port 1 of Firebox with dchp turned in - hardwired - connects to first Uniquiti switch.  

Wifi access points
10.1.1.2/24 on port 2 of Firebox with dhcp turned on -  WiFi access points - connects to Second switch.

Problem
The second Uniquiti switch that connects the hardware connections  - port 1 disconnects or the ubiquity access points will start missing heart best and disconnect

 Firewall policy set to  any traffic can pass between the the Firebox interface ports 1 and 2.  Ping traffic passes from and to sinners with issue.

If all the devices / hard wire and access points and the two switches - are put into 1 single subnet - no issues.  

Comments would be appreciated.
0
First off let me start with I work with a school system, so I do the bare minimum w/ ASA configuration.

Apparently, different services/companies are starting to use systems w/ CDN so IP addresses change and I can no longer just white-list IP w/ ports. I have to do URL w/ ports. (URL filtering?)

I've been doing my research but having a hard time understanding how to get this all setup. I have a Cisco 5525, and manage it was Cisco ASDM 7.1, I went into -> URL Filtering Services -> selected "Secure Computing SmartFilter Port: 4005" Servers are set to: Inside my internal DNS server, timeout 30, protocol TCP and TCP connections 5.

I haven't done anything else..  I need help, Do have to configure anything on my local DNS? Where to I add the URL's ?
Any help at all is very greatly appreciated and thank you in advance!
Best,
Ron
0
Hi All,

We got Linksys LGS552p switch, and TZ400 Firewall.
behind a "AT&T Modem"  , but we have external IP for the TZ 400.

I need to setup VLANS, 90 for workstations, 20 or servers and 50 for voice.

am I missing any hardware to route between the VLANS?
where should I start with first?


thanks
Jason
0
We have two sites each with a SonicWall on the perimeter.

I have written out the site settings for each location.  In the document I have prepared they are referred to as Main Site and Remote Site.
Every now and then the VPN will stop working.  We go in and check it, change nothing then check the other end, check and change nothing, then at some point it will start working again.
We could be down for a long as 30 minutes.  We are getting frustrated with SonicWall support as they cannot tell us what is causing this problem.    

Would anyone be able to review our setting if I attach them to this question?
Is there an alternative to VPN?  

HELP!

Kevin
0
Hey all, i have an issue that external calls has noise, delayed audio from the external side. Internal calls are fine.
We recently changed from the Telstra supplied modem to a Draytek Modem. All ports have been opened up the same as they were on the Telstra one, all lines and SIP registered straight away, however i have not been able to resolve the noise.
As Draytek have alot more advanced firewall settings, QOS, I'm not sure what feature / settings i need to change to test.
We are running freepbx 2.11.

Thanks
Matt
0
Hello,

I have an ASA 5525X and have been asked to dedicate a portion of the bandwidth for our lead physician. We have a 100MBps pipe and she would need 30MBps dedicated for her use only.

How do I do this? Step by step instructions and commands would be very helpful.

Thank you in advance.
0
Hello,

If I have ASA active/standy and I want to upgrade the iOS version on the primary, do I need to also upgraded on the standby or will it do it on its own.
0
hi ASA 9.1 (4)

make an audio call through ASA - weird on rare occasion i can hear audio. - then same call majority of times no audio.
the call is made from tablet inside lan  to phone on inside on LAN- it goes out ASA through to internet and back in through asa.
sip and h323 and skinny inspect ON. - Ive tried turning off makes no difference.

ports for audio open  8500-8598 UDP - how can it be a port issue if it works on occasion? unless some dynamic port happening?
is it something to do with NAT ?

thanks
0
What does it mean to be "Always On"?
LVL 4
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

I have a list of about 100 IPs I want to block on a SonicWall NSA 240. I see that one can create "Address Objects", but they appear to be either single IPs or ranges of sequential IPs. Is there a way to upload/add a list of IPs even if they are not sequential, and make the one address object? Thanks!
0
my asa 5510 is unable to run post. i am tryping to configure it using putty but it is showing nothing with just a blank screen
0
The product will come with its' operating system only , for training, does palo alto offer the service 30 days evaluation (like Microsoft) when expire you have to re-install it again.
0
my zyxel usg every time that I reboot charge in config one .zysh(I can read this in my logs),never I setup into it a script,then I am worried about this,nothing in the gui appears,I do not see nothing in start up config but couple of moths ago my cpu was working with 70%, it's not usual(no more than 25%, And now after finish configurate again start up config bad appears and the usg use the lastgood config, and l2tp doesn't work at all 'peer connection failed',

Many thanks
0
I opened a case with Sonicwall but no word yet.

I was just curious if anyone had the answer, I know this scarcely requires an expert lol but.....

I booted up a machine with an old NetExtender rev from 2014 and it forced me to update the client when I connected to my NSA 4600  and it installed 8.6.256.

But I can't find any place to download that version, MySonicwall.com only has 8.0.241.
All my equipment is under maintainence and I was curious if anyone had the setup file for that build.

I tried uninstalling NetExtender and downloading setup from my NSA but it just re-installed 8.0.241.

On a related topic can  update the version stored on my NSA 4600 or is that just part of the firmware build.

Thanks,

Ken
0
I need some help. I have a client that has moved into an office and is sharing their space. There is cat5e structured network around the building. There is a router with DHCP turned off providing the buildings owners with an internet connection to their network. What I want to do is connect my client's existing switch and windows server 2012 essentials r2 server (which is both a domain controller and a DHCP server) to the existing router (building owner's router) so that I can share the internet connection to my client. Essentially I will break out all of the ports on the network that my client will be using and connect to my client's switch. That switch then connects to my client's windows server. The existing network and all settings work just no internet connection. The server has two NIC cards if that helps at all. The building owner runs their own windows DHCP and domain controller server. Essentially the only physical connection between the two networks would be through the building owner's router. The router does have available ports. Any suggestions?
0
Dear Experts,

We configured the management ip address for the firepower.

We can see the tab appearing at the top but the button did not appear.

We restarted the firewall and the tab also disappeared.

When we go back to view the ip of the sourcefire, it is there.

How do we get the firepower tab and button to reappear.

Do we need to configure the access-list?
0
Hello.

I got this issue: When I log out of any account, the computer stops pinging. That's probably why I got this error message: "There are currently no logon servers available to process your logon request." After I log in back, it starts pinging immediately.

I am able to log on local and domain admin. I cannot log on any account with cached credentials. We use Windows 7 + Windows 2008.

So is there any setting to make this PC pinging after it logs off?

Any help appreciated.
0
Dear Experts,

I want to activate the FirePower license but how do I do so?

I know I have to configure the IP address but somehow when I did that, it somehow factory resets the whole ASA 5516-X firewall.

How do I get the FirePOWER tab to appear and activate the license?
0
Enroll in August's Course of the Month
LVL 9
Enroll in August's Course of the Month

August's CompTIA IT Fundamentals course includes 19 hours of basic computer principle modules and prepares you for the certification exam. It's free for Premium Members, Team Accounts, and Qualified Experts!

Hi, My concern is that Can i use SRX series Firewall as a Router
0
hello, anyone familiar with RouterOS? I'm trying to passthrough PPTP to my VPN server. Unfortunately I'm not well versed in this particular firewall and its setup.. At the moment I have accept for 1723 and GRE setup but it also requires a NAT command as well.. Any help would be appreciated.
0
Dear All

I have a new Mikrotik cloud core router, I need some help, please.

Interface one - ISP

Interface Two - Network Switch DHCP Scope 192.168.88.**

Interface, 12,11,10 & 9 Brideged together for DL380 Gen 9 NIC Team DHCP Scope? 192.168.89.**

I would like to be able to ping anything in any of the two networks, but I can't seem to figure this part out and need a little help, please.

Thanks
Alex
0
One of our locations has  Sonic wall TZ 300w. There are 2 subnets set up on this appliance :

X0 LAN - 192.168.40.xxx
X3 LAN - 192.168.50.xxx (Mitel 5000)

we need to be able to access the software on the X3 LAN from the primary LAN X0. So far I can ping the Phone subnet but when launching the Mitel software connection failed:

anyone with Mitel experience and sonic wall or any phone system with Sonic wall that can help us set this up? Both X3 and X0 are in the same zone.
0
Recently we added a new TPG IPVPN Connection (MPLS Network with Hosted Firewall) to eth2 on our watchguard but cant get it to work properly (see attached picture)

For some reason i cannot ping any Sydney LAN IP Addresses (on 10.50.2.0/24 network) from QLD Office to Sydney Office.

What do i need to enable / configure on the wathguard so i can ping internal lan addresses from qld office ?

QLD Office LAN is on 10.4.26.0/24 network.
Sydney office LAN is on 10.50.2.0/24 network

From QLD office I can ping 210.10.228.14,210.10.228.13, 10.252.0.6, 10.252.0.5 OK, but if I try to ping the Watchguard LAN IP Address 10.50.2.90 or another device in the same Sydney network from QLD Office it times out. Any ideas ???

Sydney Office Watchguard Configuration is as follows:

I have 3 interfaces setup on my Watchguard x750e firewall with following parameters:

Eth0: IP: 210.10.228.14 (External) - This is connected to a ISP Managed Cisco 1900 Series Router. This is a routed subnet services TPG NBN Conneciton.
Gateway: 210.10.228.13
NetMask:255.255.255.252

Eth1: IP: 10.50.2.90 (Trusted)
Netmask: 255.255.255.0

Eth2: IP: 10.252.0.6 (External) - This is connected to a TPG NTU and is a IPVPN Connection. This also requires RIPv2 and has dynamic routing setup.
Gateway: 10.252.0.5
Netmask: 255.255.255.252
Dynamic Routing Configuration:
1. Enabled Dynamic Routing is enabled.
2. Enable RIP is enabled
Rip Configuration :
router rip
network 10.252.0.4/30
network …
0
I have an Engenius EAP600 which I have configured only for Guest Wifi. I wanted to separate the clients that connect to that AP to only allow internet access and block any kind of local network access. The AP is connected to a Layer3 Cisco Switch which then connects to an ASA-5505 firewall. I'm a little rusty on VLAN could someone help with the commands for the Switch and the ASA to set this up?
0

Hardware Firewalls

23K

Solutions

20K

Contributors

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.