Hi Guys,
I have a site with a sonicwall TZ300 and we suspect a few users are wasting their days on the internet. Is there a product I can activate on that router that would give me real time or historical data on where individual workstations go?
↧
can you monitor internet browsing on a sonicwall TZ300?
↧
URGENT - Sonicwall is dropping all VPN connections
So I have one nasty sonicwall. It dropped just about all the VPN connections. It was working fine today but then it started shuddering out. Then eventually boom the sonicwall went down entirley. Internet is up and working but now no VPN what so ever..
I tried contacting sonicwall support not much came of it. In the logs of the sonicwall I'm getting "
IKE Initiator: Remote party Timeout - Retransmitting IKE Request." on every single VPN connection. I have a
NSA 2600 and tried using that to connect to one of the satellite areas VPN works fine. The main sonicwall is taking a huge dump...
Any suggestions would be great!!!
↧
↧
SonicWall to VLAN UniFi - No VLANs on switch...
So I'm adding a separate VLAN at a few different stores for the same company. All of their set ups are similar, SonicWall = Netgear ProSafe = UniFi AP.
Except one store, that was put together by someone previous to the previous IT admin. Which is a daisy chain of 8-port ProSafe switches and that are run as dummy switches (everything was default, including the passwords this morning) and a few completely unmanaged D-Links mixed in.
The other locations I tagged my ports on the switch and it all worked dandy.
But this location had these switches without any configs working fine with their 2 VLANs already. So I added a VLAN on the UniFi AP and the SonicWall and was thinking that it may just be able to do it's thing. But the test device was self-assigning the link-local address so it doesn't seem to be able to get to the DHCP server.
Any help...
↧
Sonicwall access rules
i've just set up a guest Lan on our Sonicwall TZ300
we have a lan interface ip range of 192.168.30. and a guest range on interface X3 of 192.168.29.0
i have set the default rules created as allow from Lan to X3 and deny from X3 to Lan
this all works great and seemingly traffic is only passing one way,
so i set up a file sync from my laptop (connected to Lan Interface) to a file on a nas drive connected to x3 interface, i used synctoy to sync the files and all works as expected files are sync'd accross.
now the strange thing is when i edit the files on the nas the changes also sync back, how can this be if traffic from that interface is blocked,
i created an object for the nas and put another rule in to deny but that also didn't work.
anyone any ideas?
↧
Upload speed drops to .5 mbps when sonicwall soho is plug in
I have an interesting issue that I haven’t seen before. At one of my clients internet connectivity all of the sudden is crawling. In troubleshooting I found that while I’m plugged directly into the arris cable modem with nothing else plugged into it i get 10 mbps upload. But as soon as I plug in the sonicwall soho firewall the upload speed drops to less than .5 mbps. I tested using 4 different speed test sites including Spectrum’s who in this case is the ISP. Nothing has happened or changed. Spectrum did come and replace the cable modem as a result of this issue, but same problem. Download speed maintains 117-118 mbps whether the sonicwall soho is plugged in or not. But as soon as I plug in the soho the upload speed drops from over 10mbps to .5mbos. Any thoughts?
↧
↧
How many L2TP clients can I connect max to Sonicwall L2TP Server?
I am testing VPN wuth the L2TP server of Sonicwall.
How many remote client max do I have ? Is it consuming a license ?
↧
SonicWALL NSA 3650 - Dropped inbound Packets - Code 728
We're seeing a good number of these drop messages on traffic from certain inbound IPs. The drop shows up with the remote public IP as the source, and the SonicWALL NAT public IP as the destination,
Text
DROPPED, Drop Code: 728(Packet dropped - drop bounce same link pkt), Module Id: 25(network), (Ref.Id: _2027_jcpfngDqwpegVtchhke) 1:1) This is NOT the DMZ issue that is mentioned in the SonicWALL knowledge base.
These are all inbound from the WAN with NATs into our LAN. The internet is provided by our colo. We are on a catalyst L3 switch running HSRP with two inbound connections to our switch.
This issue only affects traffic from certain IPs, There is no rhyme or reason as to which IPs are affected, It just happens on random source IPs. and is limited to those IPs. It does not affect all inbound connections,
I've torn down the NAT and...
↧
Is possible in Sonicwall create IKEv2 VPN Server?
It is possible to put Sonicwall as an IKEv2 server and connect Windows/Mac and mobile clients ?
↧
NSA 2650 Geo-IP not working correctly
Hi there I have having an issue with our new NSA 2650 ever since it was installed, and there are a couple issues, but our MSP manages it, and is not sure why this is happening, so I am now taking a look, but wanted to get a 2nd opinion.
So our managed SIEM, Eventlog Analyzer from Manage Engine, is sending us all of these attempts on our firewall, port scans, syn floods, etc.. the alerts you would expect, but what I don't expect is that: 1. the firewall is not Dropping connections from blocked countries, and 2. Our MSP setup a deny rule for all of the blacklisted IP's that we get the alerts from, but days after we see alerts again from the same IP, where the SIEM reports that ports were opened and closed, which is curious why its not being blocked by the GEO-IP filter?
The way we have our rules setup for WAN to LAN is:
1. Deny all - for...
↧
↧
Sonicwall - VPN setup for remote users via windows
Hi
This will be an easy two part query, I just need to identify what needs to be changed on the Sonicwall.
We changed the WAN IP a few weeks back. So the new WAN is on X2 and X1 is used as the failover. Originally, X1 was the main WAN. Since the switch, remote users are still only able to connect via VPN only on X1. They are unable to connect via X2.
1. I just need to know where to check or what needs to be changed so users can access the VPN via the X1 IP address.
2. In relation to above, Webmail users are only able to access their emails via X1 IP address. Again, what do I need to change so that they can access with X2 IP address?
Greatly appreciated, if someone can help. Thanks in advance.
Regards
↧
Setting a Wireless Network for Staff and Guests with UniFi, Dlink and Sonicwall
I need to setup two wireless networks at our offices. One for staff devices (laptops) and another for guests (phones, tablets, laptops). The image above is a depiction of the current network. There are no VLANs configured. Staff desktops, laptops and servers are in the default VLAN.
The "Staff WLAN" is configured and works fine. Our challenge lies with the "Guest WLAN".
I need advice on the best approach to setup the "Guest WLAN" on a different IP range and isolate any devices on this wireless from our corporate LAN. The "Guest WLAN" only requires internet access.
↧
Looking for help with Samsung Ipolis DDNS with a SonicWall TZ 300
Hello,
I am looking for some guidanceon enabling remote viewing of a Samsung DVR "SDR-C5300" through a SonicWall "TZ 300" I am not a true software person as hardware is my general scope. My account with Samsungwhich goes tohttps://ddns.hanwha-security.comcannot see my device once I registered it.
My DVR displays IP 192.168.X.X
Device Port 4520
HTTP port 80
on the interface tab
and on the Port tab it displays
Protocol Type - TCP
Device Port - 4520-4524
UDP Port - 8000 ~ 8160
Unicast/Multicast - UDP-Unicast
Multicast IP - 224.126.X.X
Multicast TTL - 5
HTTP Port 80
*Multi-BrowserSupport :
Device Port 4505~453, HTTP port 80.
Would anyone be willing to help me out on this configuration? Thanks in advance, Mike
↧
Sonicwall NSA 2600 series app signature database not downloaded
Hi All,
Anyone know Sonicwall NSA 2600, how to download/upload manually the signature database to the device ?
Thanks
↧
↧
Sonicwall NSA 2400 Site 2 Site VPN issue
I have a Site 2 Site VPN set up from our Sonicwall NSA 2400 to two separate Cisco ASA 5505 firewalls.
I cannot connect to the other sites until the Cisco first initiates the connection. Is there a way to stop this? I want bi directional traffic to work without first having to make the connection from the other side.
For example. I cannot ping from Site A (Sonicwall) the local IP of the router at Site B (Cisco). However, if I ping Site A from Site B, it successfully connects. Now I am able to ping Site B from Site A.
Any help would be gratefully appreciated. Thanks!
↧
Additional tunnel between Sonicwalls with existing tunnel on same subnet
I have a situation where I have a site to site tunnel to a 192.168.1.x subnet. I have another site with the same subnet and I am trying to come up with a creative way to set up a site to site with that subnet also. My subnet is 192.168.25.x. I don't think this can be done but figured I'd ask. As a work around since both tunnels don't need to be up at the same time was to define the tunnels to each site and then just enable/disable them as necessary but the Sonicwall will not allow two tunnels to be defined if both connect to the same subnet even if one is disabled.
↧
Anyone has an old SonicWall that's never been upgraded to give away or sell S/N?
Got a small business client who went on Amazon to purchase a SonicWall, ended up getting a replacement/upgrade SKU even though I specifically told them not to. Of course I only found out after setting things up and attempting to register.
Called SonicWall and they can't help with the license even if the customer's willing to pay them the difference or add more renewal years. The choice is to either return it, which is apparently a hassle because the unit is already in production, or find an old unit to upgrade from.
I know there are tons of super cheap low model TZ's being sold on places like eBay, but who knows if those have already been through the upgrade program.
So anyone here can kindly give away or sell an old SW serial number/auth code has never been upgraded from? Don't need the physical unit just the numbers so we can claim and...
↧
Sonicwall Firewall question
I have a TZ205. How are the access rules processed , from top to bottom?
I have a rule any service for any source destination. so I can access the internet , so I created the same rule but clicked the deny radio button. I used to have ISA server firewall and I think the rules were processed from top to bottom and I believe if I entered a deny last it would block access.
↧
↧
Did a Windows update break SMA?
Have an older Aventail SRAEX6000, still supported, rebranded as "Dell Secure Mobile Access." Running version 12.0.0.057.
My boss is out of town at a hotel and unable to get VPN tunnel with her Windows 10 laptop. Thought maybe the hotel is blocking IPsec, and so had her connect through a phone hotspot - same problem, no authentication at all.
I made a test user that copied here account, connected fine with a Win 7 system. Connected with my Win 10 laptop. So, I'm thinking it's a version issue, or maybe a recent update to Win10 broke the VPN client.
Sound like symptoms anyone else is seeing?
↧
How do I open port 8080 to allow unifi adoption through sonicwall
Hi,
First time posting :)
We use Unifi AP's that are behind a sonicwall. How do I open port 8080 to allow the adoption to the unifi cloud controller. When I try to nmap -p 8080
↧
Unable to connect to domain shares through Sonicwall VPN
Environment:
Main campus - Windows Server 2012 R2 Standard DC, Sonicwall NSA2600
DC has domain dhcp (not used in remote site) and dns. No WINS.
Remote site - Windows 10 Pro, Sonicwall TZ400
Remote site PCs are joined to domain.
Sonicwall provides DHCP.
Remote site connects to main campus through Sonicwall site to site VPN.
Previously remote users were able to log into their PCs and authenticate to the domain through vpn. They would also receive drive mappings through GPO via vpn.
Recently, end users stopped getting their drive mappings.
I am unable to connect to shares via hostname \\server\share
I am able to connect using IP address \\xx.xx.xx.xx\share
Another symptom I noticed is the network connection says domain.local2 (unauthenticated) internet access.
I completed removed AV and disabled the Windows firewall, issue remains.
I checked DNS...
↧