Search results for query: *

We have a WAN with about 15 locations, soon to expand to 30. There's an old Metro Ethernet cloud connecting 11 of them, with routers running EIGRP with each other. We want to replace that with two VPLS/Metro Ethernet clouds. This means each location needs two WAN interfaces--kind of tough since...

Turns out when you tell Windows 7 something like: foo this* that* the first * and the second * have different meanings. The first * means "any character(s)"; the second means "the string that matched the previous regex." Two questions: [ol 1] Is there a way around this stupidity (other than...

I want to build a small Linux server on one of our ESXi hosts, primarily to run a RADIUS server. Simple enough, but our VMware plant is mostly ESXi 5.0, and the first distro I tried--Debian 8--doesn't run on it. The most recent version of Debian that runs on ESXi 5.0 is version 6, which is hard...

Don't know how common this is, but my guess is pretty darn common: A sysadmin reported an intrusion on a fairly well-protected server--it has a private IP address, and no static NAT, so theoretically it would be very difficult for anyone to access it from outside our network. But there was a...

For historical reasons, we have to NAT just one of our networks on its way to a colo. Our network is 10.0.0.0/9, the colo's is 10.240.0.0/22, and most of our networks can go through untranslated--but another customer is using 10.1.0.0/22, so we have to translate that one: our 10.1.x.y <=>...

When I try to connect to http://www.pace-med-apps.com/, or any page under that domain name, I get a "Forbidden" (403) error. I thought the site administrator had just forgotten to set the permissions right, but then I found that at least one of our users accesses the site with no problem. So far...

This is a strange problem that seems peculiar to our ASA5510: When we try to download ISO images from https://www.microsoft.com/Licensing/servicecenter, we either get nothing or we get a download that fails halfway through. If we use the Java-based Download Manager, we never even connect; if we...

I'm trying to link two networks that grew separately. One is addressed 10.[1-9].x.x, the other 10.[0,1,4].x.x. There's overlap in two networks (10.1.0.0 and 10.4.0.0). I haven't done much with NATting, and here it seems like it has to be quasi-symmetrical: e.g., if a host on NetA's 10.1.0.0 is...

This is one of the strangest things I've ever seen. We have a WatchGuard XTM505 firewall providing VPN access through IPSEC tunnels to XTM2x firewalls at about a dozen remote sites. At one site, the XTM22 firewall comes up fine, then stops providing VPN services after 20-40 minutes. Everything...

We tried to run BGP through our WG, with our provider's peer on the external side and our peer on the Trusted port. The BGP session came right up, but traffic did not flow smoothly; there would be a 20- to 30-second stall, then it would flow, then another stall, etc. This was visible with ping...

I've had good and bad experiences with both. The advantages for me are that the ASA is easier to configure from the command line and Cisco's SMARTnet support is better. But the WatchGuard handles FTP with implicit TLS/SSL better and it does BGP. I want to standardize on one or the other. What...

I'm trying to bridge two tunnels between two gateways. I've followed the directions in WatchGuard's docs about tunnel-switching but without success. Tunnel A goes from WatchGuard XTM-21 to WatchGuard XTM505. It works fine. Traffic goes to and from both networks. Tunnel B goes from WatchGuard...

We use a WatchGuard as a firewall and to provide VPN tunnels between our own remote sites and our main network, and between our main network and service provider sites. Now we're trying to connect a remote site to a service provider through our WG, and no luck. Here's a diagram: [Remote...