Quantcast
Channel: SonicWall
Viewing all 2641 articles
Browse latest View live

Force LDAP Login Sonicwall NSA250

October 8, 2018, 1:34 pm
$
0
0

Perhaps an odd question, but is there any way to force LDAP login when attempting to connect to a network resource (as defined in the sonicwall)? That is, let's say I have a Windows Terminal Server that I only want to allow access to users who authenticate via LDAP first (rather than let the whole Internet have access to it), is this possible (without VPN)? 

I have LDAP working for VPN connections but I'm stumped about how to create an event to collect LDAP credentials via the firewall. Any help with this would be most appreciated. Thank you!

Search

Where could I find the VPN installation for the 64 bit client?

October 9, 2018, 9:29 am

SonicWall CFS Default Action - Change Wording

October 9, 2018, 10:33 am
$
0
0

When I setup a SW for customers I change the pop up screen when it blocks a site. Take out the line that says "administrator has blocked the site" user are made at me, so I change to say "site has been blocked by Company Name SonicWall" the owner likes it as they see their name, users see the company firewall blocked them. I leave all the needed info of what category. I am working on a new TZ400 with 6.5 firmware, I found the place to change the wording but there is no Save to change the editing.

Where can this be done?

Thanks

SonicWall Popup for Blocked Sites - not working

October 10, 2018, 4:15 pm
$
0
0

Working on a new TZ400 and have a few sites blocked. When user tries to go to them, one is Facebook. The browser spins awhile and then returns "This Page cannot be displayed". So it is blocked but much better when the popup comes up stating why, the administrator or I change to Company name has blocked. I noticed this on a customers new TZ400 last month but they said as long as the site was blocked they were OK with it. So today I am setting up for our shop, we have never had anything blocked but the powers above me gave some sites to block. I would much rather the users see the popup instead of wondering if something is wrong with internet and come ask me. So I ask SW support, they did not have a direct answer but said that is would do the popup if we had one of these DPI-SSH or DPI-SSL license, which we do not and never have for...

SRA RDP Language settings

October 10, 2018, 4:53 pm
$
0
0

We have a few users who connected with the SSLVPN client, then RDP to a server using an application shortcut.

When they use the SRA Bookmark Terminal Server feature to access the RDP Server application the only draw back seems to be the lack of keyboard language detection.

Wondering if anyone knows a way to get the feature working.

We can work around this by having them continuing to use the SSPVPN and RDP, or by having them use the SRA and connect to the desktop instead of an application as a work around.  

Xmas tree packet originating from server

October 11, 2018, 7:52 am
$
0
0

I have a sonicwall that is dropping one Xmas tree packet at the same time everyday. the packet originaates from my server xxx.xxx.xxx.1 with a destination of xxx.xxx.xxx.168 which is the sonicwall (default gateway) what would send these packets?

Sonicwall DPI-SSL and Guest Wifi (Ubiquiti)

October 11, 2018, 9:02 am
$
0
0

I have recently gotten the license to enable DPI-SSL and Capture ATP on my sonicwall. I pushed out the SSL cert from the sonicwall into my domain using GPO and see it appearing on the machines within the network. We currently use Ubiquiti access points along with a guest network for all devices that are not managed by IT. 

Considering that everything is running through the firewall, will users on the guest network have SSL issues since the cert hasn't been applied? Is there a way around this?

SonicWALL - Giving an entire VLAN access to one device on another VLAN

October 11, 2018, 10:20 am
$
0
0

We're adding some new wireless devices to our network that need to be separated from the network, BUT need access to information on one server.

The diagram they sent me requests separate physical wireless access points, but I don't know how reasonable that is as I'm in a pretty large building with UniFi APs everywhere.  I'm looking to setup VLANs to segregate the new devices and hopefully that would be good enough.

Current Network: VLAN1 10.10.99.1/24
New Devices: VLAN10 10.10.100.1/24

VLAN10 needs access to Server at 10.10.99.99

Do I just need a Route Policy giving access to that VLAN to the one server or is there going to be something more to configure?

Search

Netextender access will not allow access to Random Servers

October 12, 2018, 8:39 am
$
0
0

Got a strange one here (aren't they all !!??) All of a sudden, a couple of our servers will no longer allow us to connect using Remote Desktop (MSTSC) via our SonicWALL and Netextender. It's NOT the serversthemselves (I don't think) because we CAN get tothem on our internal network. Cannot ping the IP address or by name. Nothing has changed other than *maybe* a few Windows updates...but the same updates were applied to all other servers and we have no issues there. Two different people connecting via Netextender having issues...but here's the REALLY strange issue...not the same servers! I can get to servers 1 & 2, not 3 while the other guy can get to 2 & 3 and not 1.

I've checked everything I can think of in SonicWALL...there *was* an upgrade to latest firmware a few days ago but the problem existed prior to that upgrade.

Ideas?

Can I do intervlan routing on Sonicwall?

October 13, 2018, 2:53 pm
$
0
0

I have a NSA2600 Sonicwall and two layer 2 switches on my network. I have three vlans 10,20 and 30. Vlan 10 for general data, vlan 20 for guest wifi and Vlan 30 for security cameras and nvr. I want to be able to see the nvr from vlan 10 which is my general data vlan. How can i do that?

Thank you,

Sonicwall Client Address Exhausted

October 14, 2018, 6:36 am
$
0
0

I have a Sonicwall with NExtextender that I have been using for years with no problems.  Recently, I changed from DHCP for most of my users to Static IP addresses (long story).  Since that time (about 2 months), when I try to connect using NetExtender, I get the message the the IP Address in the pool is exhausted.  

About 2 weeks ago it worked for three days, then went back to being exhausted .  The Sonicwall is NOT the DHCP server.

I have plenty of available addresses, and my lease time is only 4 hours.  Any help will be appreciated.

Outlook emails stuck in Outlook while connected to SonicWall Global VPN

October 14, 2018, 11:13 am
$
0
0

Outlook 2010/2013 using Cached Exchnahe Mode

SonicWall TZ-400: Global WAN VPN configured with Split Tunnels.

Global VPN Client (GVC) installations: 4.9.x on Windows 7 Pro x64, v5.0.x on Windows 10 x64

Users can receive inbound email, and users can send email without attachments. Emails with attachments seems to be the culprit. The first email that has an attachment, even a small sized one, gets stuck oi the Outlook Outbox, and prevents subsequent emails from being sent out (even those emails with no attachments).

Note: Some users have SW appliance at their homes and they have no problems with sending Outlook email with attachments. So only issue with SW GVC.

Thoughts on how to continue troubleshooting?

Sonicwall connects ...but not completely

October 16, 2018, 2:28 am
$
0
0

So after a problem where my Sonicwall wouldn't connect, I fixed a setting on my appliance.  Now it connects, and I get an IP address, but I can't ping any other addresses on my target internet.  Here's an ipconfig :

PPP adapter SonicWall NetExtender:

  Connection-specific DNS Suffix . : rci.local
  IPv4 Address. . . . . . . . . . . : 192.168.10.220
  Subnet Mask . . . . . . . . . . . : 255.255.255.255
  Default Gateway . . . . . . . . . :

but if I try to ping ANY address on my network (even 192.168.10.1 which should be my default gateway, but it isn't showing that), it times out.  Is there another setting that I'm missing?  

Thank you

Cannot ping one server connected with Netextender

October 16, 2018, 7:51 am
$
0
0

Sonicwall NSA2600, Netextender client (both latest version/firmware) We can access pretty much everything we need remotely except for one particular server.  (We use Remote Desktop for server administration from  home.)  Cannot ping by name or IP address of one server in the server group.  This server IS included in the appropriate range.

This *used* to work...It seemed to stop after a group of Windows updates were applied...but not certain of this.

Remote Desktop is active...we can remote into another server and then open a remote desktop window to the affected server successfully.

Server has been rebooted.

Any ideas?

Sonicwall NSA 2650 Geo-IP issues

October 16, 2018, 11:46 am
$
0
0

So i am having an issue with my sonicwall where countries that i have blocked, still show up in the logs as running port scans, but not sure why, because we have it in stealth mode, and to block/deny that traffic.

I ever have started creating a blacklist group for these IP addresses and some of them even though they are in the blacklist o get a report from my SIEM that the same IP is port scanning, and my SIEM actually shows ports being opened and closed as well, nothing ever gets passed the firewall, but it shouldn't even report this, all i should see on the sonicwall is connection blocked, which i do see as well.

All i get 5 to 10 of these a day, and they keep closing my ticket at Dell, because they say the firewalls are behaving as expected, which clearly they are not.

Have any of you ran into this situation? I was trying to get the...

Search

SonicWALL Global VPN Client won't run or uninstall, safe to remove via registry?

October 16, 2018, 1:01 pm
$
0
0

I support remote users that use the SonicWALL Global VPN Client to connect to our SonicWALL router device. These users are then given an IP address via DHCP.

I have a user that has a Windows 10 Pro machine that has a failed SonicWALL client. Just one day it stopped working.

There are no recovery points to restore the machine back to.

The error is that, when the GVC starts up and tries to connect to a pre-existing connection profile, it says "The connection requires the use of the SonicWALL Virtual Adapter, however this adapter cannot be found. It may have been disabled or uninstalled. Please check your network configuration."

The SonicWALL VPN adapter does not show up in the list of network connections, nor does it show up in Device Manager (even with hidden items showing).

The GVC client is not listed in the Add or Remove Programs listing...

SonicWall and DPI-SSL Security Question

October 16, 2018, 8:03 pm
$
0
0

I ask a question last week about the SonicWall not giving the Pop Up about a site being blocked, The answer was if it is a https site that it would only block the site but no pop up unless I had the DPI-SSL license, which I do not. So I have been doing some reading on here and am getting the understanding that without the DPI-SSL the SonicWall is only blocking https sites but not scanning for Malware ... Virus....

I have always gone with the Comprehensive Security Suite on customer SonicWall. So when I look under the Security Services and Anti-Spyware / Gateway Anti-virus I see now that it is just Http .... With more / most sites going to https we this leaves a big hole open. I don't understand why the Https is not included in the Security Suite .. well of course I do know, the DPI-SSL is another money maker. But crazy not to have it...

Sonicwall Firewall - Proof

October 17, 2018, 6:11 am
$
0
0

I've now had another client that has let 'microsoft - SCAM' technical support into their network because they don't have a firewall.  I assure them the Sonicwall is up and running and that a fake foreign tech cannot put in a physical firewall via a remote session.

What is the easiest and non-technical way to provide proof the firewall is up and running?

Note that the virus protection software shows that a firewall is turned off which confuses them.

Suggestions?

Thanks, Darryl

How to certify/re-certify in SonicWALL as an end user

October 17, 2018, 7:54 am
$
0
0

I have a SonicWALL certification that is set to expire soon.  The notification I received advised me to visit the SonicWALL University website. Once there, I clicked on the link to login using a mysonicwall.com account.   That leads to nowhere.  I contacted SonicWALL and they said that SonicWALL University is only for resellers.  So, how does an end user certify/re-certify?

Sonicwall MultiHome Server Site-To-Site VPN Question

October 17, 2018, 8:40 am
$
0
0

Hi all,

I am trying to do something new for a client I have never performed before. We have a client has onsite domain controller sitting behind a Sonicwall on their side of the network. Their internal subnet is 192.168.41.x and it connects to our data center over a site-to-site VPN tunnel. The data center also has a Sonicwall. The client network of 192.168.41.x currently translates to 172.16.200.x which the data center see it as. The reason for the NATing is because the Data Center Sonicwall already has a 192.168.41.x in in another unrelated VPN tunnel. This setup works perfect with no problem. Refer to my screenshot of the current setup network map.


Something new we are trying to do is spin up a VM domain controller in the data center for this particular client. Their onsite domain controller will be retired eventually. However because...

Viewing all 2641 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>