Knowledge Base – Sangfor Support Center

Articles

[AF] AF7.3 is connected to Session Initiation Protocol, Session Initiation Protocol cannot display AF access Info because TLS protocol is not supported

[AF] AF8.0.51 is configured with SSL VPN. After access, the resources of the Local intranet Interfaces and sangforvpn branch cannot be accessed

[AF] AF8.0.59 inter-tunnel routing configuration does not take effect

[AF] AF8069, SSL VPN EC client will automatically log out 5 minutes after access

[AF] After acl is enabled lan->wan, the intranet host still cannot access the Internet

[AF] After AF 8.0.59 is connected to the Syslog server, logs are generated but not sent to the Syslog server normally

[AF] After AF and Local are connected to IPSEC VPN, access to OA System is slow

[AF] After AF cutover, the customer OA System interface is submitted, and the log prompts that the parameter 403 is returned. It was normal before the replacement.

[AF] After application control prohibits port 445, logs accessing port 445 can still be seen in the Network logs

[AF] After configuring NAT, access to the intranet WEB server fails, but intranet access is normal

[AF] After configuring the Anti-Tampering 2.0 Policies, the website Home cannot be accessed

[AF] After connecting to sangfor vpn, the console cannot log in due to routing conflicts

[AF] After dialing in AF8.0.55 version SSL VPN, resources cannot be accessed

[AF] After enabling Link Aggregation, Sessions is still out of sync

[AF] After establishing VPN with third-party connection (standard IPSec), data is not accessible

[AF] After Layer 2 deploying AF, the intranet PC cannot Obtain IP address through DHCP

[AF] After logging into SSL VPN, you cannot click on the resource link to open it because the application path is not added correctly

[AF] After PDLAN is connected to VPN, the virtual IP of the intranet resources cannot be accessed. The virtual IP is 1.1.1.1

[AF] After restoring the backup machine password, the password error is still displayed when logging in. The host machine has synchronized the password.

[AF] After the new architecture is launched, the number Sessions drops suddenly from time to time: it does not support the optical-to-electrical environment

[AF] After the third-party connection tunnel is established, mutual access is unavailable

[AF] After uninstalling the Linux anti-tampering client, an error message appears when executing a command

[AF] After updating the authorization and Restart the device, the device Not activated and the authorization process is abnormal

[AF] After upgrading from version 8.0.2 to version 8.0.45, the new Policies Layer 3 prompt configuration check is abnormal

[AF] After upgrading the client, some PCs on the same Network Segment segment cannot log in

[AF] After upgrading to 8035, only 16 address information can be configured in IPSec VPN phase 2

[AF] After upgrading to AF8.0.2, VPN connection failed. System fault System reported OUT IP invalid. Multi-line settings were enabled but multi-line was not configured.

[AF] After using AF to replace other vendors' Local, the ERP system cannot be accessed from the public System

[AF] Aggregation port cannot be selected when Interfaces configured

[AF] Anti-Tamper 2.0 Windows client protection does not work, explorer.exe has been added to the Whitelist

[AF] AntiAPT is displayed in the packet loss mark of the direct log

[AF] Application control Policies cannot be synchronized to the external data center

[AF] Application control Policies denial port does not take effect due to application identification Policies in the first place

[AF] Application control Policies does not take effect and domain names are released

[AF] Application control Policies does not take effect because Objects Network object is added to the Whitelist

[AF] Application control Policies does not take effect due to management IP restriction

[AF] Application control Policies does not take effect when direct pass is enabled

[AF] Application control Policies does not take effect when GRE protocol encapsulation

[AF] Application control Policies prompts that the application control serial number is Not activated

[AF] Application control policy based on domain name does not take effect

[AF] Application control restriction on external network access to internal network Services does not take effect

[AF] Application filtering IP shows inaccurate application control Policies configuration issues

[AF] Application Hiding HTTP headers failed because filtering HTTP headers is not enabled

[AF] Authentication System when User Import: The path cannot be empty

[AF] Bandwidth Management does not take effect, but the flow control is not a problem when Bandwidth Management is transferred to AC

[AF] Bandwidth Management does not work for single IP restrictions due to configuration issues

[AF] Bandwidth Management exclusion Policies does not take effect

[AF] Bandwidth Management is not effective and the IP is added to the Whitelist

[AF] BGP peer cannot learn local Layer 3

[AF] Brute force cracking triggers IP Blocking. Click query log is empty.

[AF] Business Asset Security has no data for User Security, but attack summary has data

[AF] Business Asset Security IP appears in Policies Zones configuration error

[AF] Business Asset Security prompt server "No security policy configured"

[AF] Business risk: WebShell backdoor compromise occurs. Check Backdoor to see if Logs has been rejected.

[AF] Check the application control policy log error: Hard disk is less than 32G and is not supported

[AF] Check whether Policies application control policy is invalid or conflicting

[AF] Click on SSL VPN and get an error: Please configure the "Deployment" of SSL VPN first

[AF] Client upgrade inspection error: "shell execute failed"

[AF] Command Injection rule ID and adding exceptions do not work

[AF] Concurrent Sessions have data for 24 hours and long connections cause

[AF] Configuration of inter-tunnel NAT prompts an error: No record corresponding to the proxy subnet Network Segment 172.16.2.0 can be found in the Subnet IP pool!

[AF] Configuration of inter-tunnel NAT prompts an error: There is no branch Virtual IP Pool with the same Netmask available, please add it in the Virtual IP Pool!

[AF] Configure WAF policy after 8035 to prevent Policies brute Brute-force attack protection, use xhack to simulate the attack and show that the attack is successful

[AF] Configuring Policies does not display the next hop Interfaces

[AF] Connection Control does not take effect, TCP reset is not checked

[AF] Custom Services import error message "Return value is 14, import terminated"

[AF] Custom URL is not recognized correctly and is recognized as other

[AF] Custom WAF Signature rules

[AF] Data is not accessible. Accessing SANGFORVPN via dial-in SSL VPN is unsuccessful.

[AF] Decryption decrypt the business published by the intranet server due to Objects configuration error

[AF] Dedicated GeoLocation Blocking exception after configuring regional access control

[AF] Destination address mapping is unavailable, but bidirectional address mapping is normal: Layer 3 conflict causes

[AF] Destination NAT is not effective and the number of connections is full due to long connections

[AF] Direct Interfaces AF cannot ping the interface IP, security awareness linkage IP Blocking

[AF] DNS Mapping does not take effect when DNS over HTTPS

[AF] Domain name application control Policies does not take effect

[AF] Domain names added to AF Blacklist are not effective because DNS lookup does not go through AF

[AF] Dual machines, active and standby, both active and standby machines prompt the local host, the other end is unknown

[AF] Dynamic public network using webagent prompts "DLAN_SUPPORT..returncode=111"

[AF] Email alarm is configured, but Interfaces failure does not send alarm emails: Policies detection needs to be configured

[AF] Email alert configuration uses 365 mailbox to report an error prompting identity authentication failure

[AF] Email alert: Cannot receive alert email: Email anti-spam rejection

[AF] Enabled arbitrary behavior IP Blocking, Network not linked

[AF] Enabling Email Protection in special environments where VLAN inconsistencies in round-trip traffic occur

[AF] Error in Services via AF MAC address in dual-machine environment MAC Address

[AF] Error Interfaces IP: Conflict with the IP segment of VPN virtual network card, please reconfigure

[AF] Error message when setting custom VPN Interfaces IP: Conflict with Virtual IP Pool

[AF] Even though ssh Policies is disabled based on application-based ACL policy, the server still generates ssh Logs

[AF] Example of configuring rules for password cracking and weak password detection after 8035

[AF] External network users cannot access the video Services through the AF external network Interfaces IP plus port client setting restrictions

[AF] Failed to add an IPV6 Interfaces AF VLAN interface through API

[AF] Failed to log in to the console via SSL VPN. The manageable IP Address is not available.

[AF] Floating Layer 3 causes the active/standby switchover time to be too long

[AF] Flow control does not work in scenarios with multiple lines.

[AF] Frequent offline access to BBC: Network environment limits large packets, leading to negotiation retransmission

[AF] Global blocking blacklist is not effective

[AF] GRE access to the peer address is unavailable – caused by the peer detection mechanism

[AF] Group User Import CSV prompts error "Address conflict or illegal format"

[AF] High availability HA Policy cannot read all Interfaces

[AF] Hot events cannot be submitted after clicking on immediate protection

[AF] How to configure web password blasting for https data above AF8.0.35

[AF] How to Local in to the standby machine through the host management address in a dual-machine deployment of a firewall

[AF] How to modify the percentage of automatic log deletion in the Logs data center

[AF] How to prevent SQL injection attacks against a single source IP

[AF] How to troubleshoot the lack of add user and delete buttons in VPN user management

[AF] How to turn off the privacy protocol option on the WEB login interface in AF8.0.8 version

[AF] If the Bandwidth Management a single user exceeds the upper limit, the sum of the Bandwidth Management of multiple lines needs to be calculated

[AF] In a dual-machine deployment environment, the NGAF manager interface crashes when the intranet user logs in

[AF] In a multi-exit environment, Policies specifies that a certain Network Segment only uses a certain Interfaces. If the Interfaces line is unplugged, it will switch to other exits.

[AF] In IE11, the Administrators selects U-KEY and clicks Generate Certificate, but Certificate cannot be opened

[AF] In version 7.5.1, third-party connection settings cannot select multiple lines

[AF] Incorrect address database causes Policies Layer 3 to fail to take effect, resulting in Network interruption

[AF] Inspection failed: decompression inspection report is abnormal

[AF] Interfaces configuration 1.1.1.1 prompts conflict with vlan0

[AF] Interfaces detection of DHCP interface Link State Detection shows fault

[AF] Abnormal Interface Throughput Graph and Slow Intranet Access

[AF] Interfaces identification anomaly causes the selected Interfaces the aggregate Interfaces to fail to display

[AF] Interfaces linkage causes the backend ifconfig to not see Interfaces

[AF] Intranet addresses cannot access public network services published by DNAT. Configure bidirectional NAT to achieve this

[AF] Intranet computers can access the domain name of the software enterprise WeChat, but mobile phones cannot – DNS cache problem

[AF] Intranet monitoring AF has the behavior of Scheduled Active Scan the server

[AF] Intranet PC mail client reports an error "The remote host forcibly closed an existing connection"

[AF] Intranet terminals randomly lose access to the Internet. Changing the IP address on the terminal will restore access to the Internet.

[AF] IP Address are IP Blocking and blocked, and many attack logs are Logs

[AF] IP Whitelist is not effective — caused by a single IP being associated with multiple domain names

[AF] IPS and Network functions cannot be used because the Security Databases serial number is not opened

[AF] IPS missed detection: Intelligent IPS did not enable automatic identification of HTTP port

[AF] IPS Policies actions are inconsistent with data Logs logging

[AF] IPS Policies is set to deny, and the blasting log shows success

[AF] IPS protection client Medium IP Endpoint protection Logs security log

[AF] IPSEC Phase II connection failed and the interested stream does not match

[AF] IPSEC VPN and Huawei Cloud failed to connect because Huawei Cloud does not support publishing multiple communication Network Segment at one time.

[AF] IPSEC VPN cannot be established, ESP packet not received: NATT penetration is not configured

[AF] IPSEC VPN connection failed, System fault log reports: "Please confirm whether the domain name is correct"

[AF] IPSec VPN not working due to key error | Invalid data packet received

[AF] IPv4 NAT Policies in the IPv4 address translation policy are unavailable.

[AF] IPV6 directional direct access does not work, global direct access works

[AF] IPv6 reply packet does not match the Sessions – Advanced settings affect

[AF] Kaspersky causes an Monitor message when opening the monitoring module

[AF] LDAP synchronization failed. The LDAP server Services organization structure was not selected.

[AF] Linux anti-tampering client shows that the unprotected server memory usage is too high

[AF] Load Policies Layer 3 is not effective. Interfaces selection Policies error

[AF] Local ACL Logs Policies restricts the login to the console and does not take effect

[AF] Local is directly connected to a router via a dedicated Layer 3 and cannot learn the MAC address of the other end.

[AF] Local lost the security module log, but the corresponding IP Blocking was recorded in the Logs

[AF] Local master-master deployment with inconsistent back-and-forth paths – customer Network environment issues (analysis)

[AF] Local Network Objects module opens slowly and needs to wait for 7-8 seconds

[AF] Local writes a domain name-based application control Policies, but it cannot match

[AF] Logging Options center settings cannot be configured in the log settings interface

[AF] Map the server to the public network, and the access will jump to the NGAF manager

[AF] Modify Interfaces error: Interfaces ETH0 is referenced by VPN Interfaces and cannot be set as WAN attribute

[AF] NAT configuration is incomplete

[AF] NAT configuration is still blocked by application control policy after enabling ACL by default

[AF] NAT64 conversion does not take effect and conflicts with IPV6 address conversion

[AF] National encryption equipment version 7.5.5, ipsec vpn module prompts that the encryption card Not activated or damaged

[AF] Network card conflict causes virtual IP to not Obtain after SSL VPN dial-in

[AF] Network caused by incorrect configuration of the next hop of policy routing

[AF] Network does not match the [security protection Policies]

[AF] Network Objects – No data Medium server identification

[AF] Network Policies action configuration is allowed, but the Logs shows the action is denied

[AF] Network Policies action is denied, but Suspicious Traffic action is allowed

[AF] New architecture 8051 successfully connected to Alibaba Cloud IPSEC VPN, but mutual access failed

[AF] New architecture Link State Detection failure: the reply packet matches the full mapping

[AF] New architecture secondary penetration environment causes packet forwarding errors

[AF] No line selection in the first phase configuration of IPSec VPN line exit

[AF] No permission to view shared keys Administrators not using an administrator account

[AF] No port mapping was done, but there was still a prompt for an external-internal DOS attack

[AF] No response when clicking Save the first phase configuration under VPN module

[AF] Normally add the public network IP of Attack Map, and check the blank after adding.

[AF] Obtain address obtained from AF DHCP cannot be connected to the Internet

[AF] One of Local AF and Juniper firewall connection failed

[AF] Open the direct log prompt "Evasion"

[AF] OSPF Network configuration publishes Network Segment, but no network segments are generated in the Interfaces configuration

[AF] PDLAN cannot connect and reports an error: the user has been disabled

[AF] PDLAN cannot connect to the headquarters, prompting that the headquarters serial number is full

[AF] PDLAN cannot connect to the headquarters. There is no such user in the headquarters user list.

[AF] PDLAN dials into AF headquarters and reports an error message: "The headquarters has not set the local end to enable the virtual IP"

[AF] PDLAN installation exception: Kingsoft NetShield is not closed and prompts installation conflict

[AF] Policies Layer 3 causes Source NAT to have no matching data

[AF] Policies Layer 3 does not take effect due to incorrect destination address configuration

[AF] Policies Layer 3 does not take effect due to incorrect source Zones configuration

[AF] Port mapping failure case 1: Server restricted access

[AF] Protocol exception module interception of abnormal access through AF business

[AF] Replacing the Local management address fails to ping the gateway, resulting in an inability to manage devices

[AF] Report in User Security prompts zombie host IP in Logs cannot find Network type Logs

[AF] Routing between tunnels is unavailable and routing is not enabled

[AF] Routing Priority issue when inter-tunnel routing is not effective

[AF] Rule base upgrade failed: Front-end device limitation

[AF] SANGFOR VPN cannot be connected because the VPN transmission mode is not supported and the peer version is too low

[AF] sangfor vpn connection failed, System log prompts: The Network Segment of the other end to be connected conflicts with the Network Segment that the local end has already connected to

[AF] sangforVPN cannot be connected, System reports: Medium is no user in the headquarters user list

[AF] sangforvpn cannot connect to the branch connection webagent address error

[AF] sangforvpn System failure system fault log error line is not activated

[AF] sangforVPN's pre-shared key is correct but it still prompts that the key is wrong

[AF] Security protection Policies does not take effect due to inconsistent Interfaces types

[AF] Security Rule Info Cannot Be Found Based on Rule ID Due to Filter Condition Error

[AF] Sensitive address conflict between the two branches of sangfor vpn, and they need to access each other. After configuring the inter-tunnel routing, it does not work.

[AF] Server risk function prompts that Services server is not protected

[AF] Service Policies exception after adding policy routing

[AF] Service Policies the application control policy allows specific addresses to be connected in both directions

[AF] Session Initiation Protocol detected that Local intranet port was using the intranet DNS lookup malicious domain names

[AF] Setting VPN error prompts that the main Webagent conflicts with the headquarters Webagent

[AF] SNMP data needs to Obtain MAC By SNMP if cross-layer 3 MAC identification fails

[AF] Some Authentication users cannot be synchronized to AF Groups/Users via LDAP

[AF] Some intranet IPs are abnormally connected to the Internet, virtual IP and intranet conflicts

[AF] Some Logs Policies application control policy logging are empty

[AF] Some malicious domain names accessed unblocked DNS Services and were whitelisted

[AF] Some operation logs are missing in Syslog

[AF] Some users cannot watch the training video because the traffic exceeds the bandwidth limit

[AF] Source and destination IP inversion in IPS client protection log

[AF] Source NAT cannot select the intranet Zones

[AF] Source NAT configuration static translation error: The source address range that can be traced is larger than the target address

[AF] SQL missed judgment: Enable the function SQL Injection preventing SQL injection misjudgment

[AF] SSL decryption is Decryption, but there is still no WAF log alarm during the test. The Zones selection is wrong

[AF] SSL VPN cannot access resources, System log error [PIPD] create tcp listener failed! pipd should be restarted

[AF] SSL VPN cannot Obtain virtual IP Address when publishing L3 resources

[AF] SSL VPN release: Inaccessible internal network resourcesDeployment configuration error

[AF] SSL VPN resources cannot be accessed in multiple penetration scenarios

[AF] SSL VPN single-arm deployment releases the internal network port management address as l3vpn resources cannot be accessed

[AF] SSL VPN webagent cannot log in and prompts Medium there is no valid IP Address in the IP file

[AF] SSL VPN webagent cannot log in and prompts that there is no valid IP Address in the IP file and the DNS lookup is unsuccessful

[AF] SSO User Security log, Syslog user name shows null

[AF] Standard IPSEC establishment failed: Aggressive mode cannot find a matching peer ID

[AF] Standard IPSEC establishment failed: The payload length field is greater than the actual length of the payload. This may be a residual packet or a decryption failure. Please check whether the algorithm and pre-shared key are configured correctly.

[AF] Static Layer 3 is not effective, and the Layer 3 status is invalid.

[AF] System fault log contains a large number of "Device already Sensitive (identification conflict)" alarm Logs

[AF] System fault log reports an error "[DHCP] Reserved IP [x.x.x.x] is not in the IP pool and has been disabled"

[AF] System fault log reports error "[DHCP] IP pool is tight"

[AF] System log report: Sensitive rule update that is not completed, and the data will not search for rules

[AF] System log reports "Failed to set SMTP server address"

[AF] The 4009 port of the public IP connected to the branch was not monitored, resulting in the failure of SANGFOR VPN establishment

[AF] The application control Policies interception of the attacker IP in the attacker map does not take effect, but the attacker IP can still be seen attacking the server

[AF] The attack trend before 3 months Medium AF export Report is 0

[AF] The blacklist interception objects of global blocking and interception are not fixed

[AF] The built-in data center does not have application control to allow log disk size to be less than 32G

[AF] The built-in data center prompts "You do not have permission to view Logs"

[AF] The Business Asset Security Summary operation suggestions for business security are "Block" and "Block"

[AF] The client's FIN ACK response is too slow, resulting in an abnormal application control Policies match

[AF] The console cannot be logged in using http login

[AF] The console cannot be logged in. Only using Firefox browser cannot log in

[AF] The console cannot log in because the computer IP conflicts with the device login IP

[AF] The console cannot log in because the login port is mapped

[AF] The console cannot log in because the TLS protocol is not supported

+ 497 Articles

Show Remaining Articles