Search found 37 matches

by SECOIT GmbH
16 May 2020, 10:53
Forum: SG Discussions
Topic: Which URL filter is Clavister using?
Replies: 1
Views: 1012

Which URL filter is Clavister using?

Im wondering which URL filter Clavister is using so I could report wrongly qualified URLs to that company.
(I'm kind of expecting this is not done in-house, is it?)

Thanks,
Michael
by SECOIT GmbH
09 Mar 2020, 10:02
Forum: SG Discussions
Topic: "User Agent" filtering and https
Replies: 0
Views: 4997

"User Agent" filtering and https

Hi All, I haven't tried yet but somebody might already have: I'm looking into user agent filtering which has been introduced cOS Core 13.00.01. Since basically all web traffic is now https (for example a bigger customer the last 7 days are 91.41% https according to their log server I just checked) I...
by SECOIT GmbH
17 Jan 2020, 12:10
Forum: SG Discussions
Topic: IPSec tunnel monitoring fails
Replies: 1
Views: 1449

IPSec tunnel monitoring fails

Hi All, I have a customer with two nearby sites. The main traffic between both sites goes via a 24 GHz wireless point to point connection. For this connection I have added a static route in "main" on both sites. So far so good. Since it is important both site can communicate any time I added a VPN I...
by SECOIT GmbH
19 Dec 2019, 09:52
Forum: Feature Requests / Product Enhancements
Topic: Improve "Connections" GUI page
Replies: 2
Views: 1021

Re: Improve "Connections" GUI page

Thank you, Fredrik! One more I noticed since using the connections tab more often: When using a full text filter it gets deleted when hitting the refresh button. It would be great if the filter would stay. Otherwise right now (example): use the main filter to filter for UDP, then full-text for 5060 ...
by SECOIT GmbH
25 Nov 2019, 14:36
Forum: Feature Requests / Product Enhancements
Topic: Improve "Connections" GUI page
Replies: 2
Views: 1021

Improve "Connections" GUI page

Hi Clavister team,

with cOS Core v13 the "Connections" page looks a lot nicer but... I still miss two important features:
1. Allow sorting by column
2. Filter by "Total Transferred", e. g. larger than 1 GiB.

In case your devs find some spare time... ;)

Thanks,
Michael
by SECOIT GmbH
02 Feb 2019, 21:31
Forum: SG Discussions
Topic: HA master/slave IPs and public IPv4/30
Replies: 5
Views: 2106

Re: HA master/slave IPs and public IPv4/30

Hi Peter, Many thanks! I wasn't aware that the Master/Slave private IP addresses can be "invalid" (in terms of not in the IP subnet as defined within "Interface -> General -> IPv4 -> Network"). So that's good to know! Will using such an "invalid" IP address require to disable heartbeats on this inte...
by SECOIT GmbH
11 Jan 2019, 22:13
Forum: SG Discussions
Topic: HA master/slave IPs and public IPv4/30
Replies: 5
Views: 2106

HA master/slave IPs and public IPv4/30

Hi all, How can I properly set HA addresses on the WAN side if an ISP assigns a IPv4/30 subnet? For example the network is 22.0.0.0/30 so that's only one usable address for the customer: 22.0.0.0 - network 22.0.0.1 - provider's gateway / next hop 22.0.0.2 - customer device 22.0.0.3 - broadcast When ...
by SECOIT GmbH
06 Sep 2018, 21:53
Forum: Feature Requests / Product Enhancements
Topic: More control over IDP
Replies: 5
Views: 3806

Re: More control over IDP

Hi Peter,

Many thanks for consolidating and adding the new requests. I appreciate the time and effort you put into this.

Best Regards,
Michael
by SECOIT GmbH
29 Aug 2018, 11:11
Forum: SG Discussions
Topic: Client access VPN recommendation
Replies: 7
Views: 6524

Re: Client access VPN recommendation

Hi Peter, Many thanks again for guiding me to IKEv2. Never used it before you suggested it since I always used OpenVPN whenever possible. Since I use IKEv2 with several setups now I really like it and I even started replacing OpenVPN setups on other firewall gateways with IKEv2. It's just so much fa...
by SECOIT GmbH
29 Aug 2018, 11:00
Forum: Feature Requests / Product Enhancements
Topic: More control over IDP
Replies: 5
Views: 3806

More control over IDP

Hi Clavister team, It would be great to add a little more control over the IDP feature. Currently it's kind of a "all or nothing" setup, which means it's very difficult to have control over individual rules since it's mainly controlled via siganture groups. One example with HTTPS. Reading through si...