Quantcast
Channel: SonicWall
Viewing all 2641 articles
Browse latest View live

SonicWall SSL Certificates

February 12, 2020, 8:33 am
$
0
0

I have a SonicWall TZ600 that the users have to logon with a username to access the internet. I have an SSL certificate installed on the SonicWall that should bypass the The problem is that I get a lot of complaints that the user doesn't get the the logon page but first goes to a certificate bypass page. For instance here is what Chrome has:

This server could not prove that it is 192.168.200.1; its security certificate is from www.ywamdayspring.org. This may be caused by a misconfiguration or an attacker intercepting your connection.

Proceed to 192.168.200.1 (unsafe)

Other browsers show something similar. There are also many occasions when they get to the logon page and put in the correct information and it just returns to the logon page. Please understand this isn't all the time, many times it works as it's supposed to.

How can I get the...

Search

NetExtender attempts to run login scripts twice

February 13, 2020, 8:11 am
$
0
0

SonicWALL NSA 2600; currently on SonicOS Enhanced 6.5.4.5-53n

Installed NetExtender (NE) on a computer; enabled "Attempt to run login scripts". When user is at login screen, they hit "connect" icon in bottom-right corner, then presented with Windows domain login, then with NE login. User enters login credentials in both login prompts and gets to the desktop.

We open File Explorer, and we can see all his drives mapped. However, another "DOS" window pops-up, asking if they want to reconnect the drives. If we close the cmd window, the user is all set.

How do we make it that this second attempt to run login script doesn't happen?

Thanks.

SSL VPN Limitation on TZ600 ? ?

February 13, 2020, 11:25 am
$
0
0

I have a TZ600 in use, working fine for the most part.  The issue that I have is that we have two remote users that will originate from the same public IP address.  We can only get one of them to work at a time.  Whenever the second one logs into the appliance, the first one is disconnected.

Is there a limitation within the UTM SSL VPN environment that only allows a single connection at a time from the same source Interface?

Thanks.

Todd

ISP kills VPN, says it's not their issue

February 13, 2020, 11:37 am
$
0
0

I have a user who uses a different ISP that we have at our office; we have a SonicWall NSA4600 and typically use the Global VPN Client. We are 99% sure the issue is with the ISP because if the user connects from a mobile hotspot or other location, it works. 

So how on earth do you convince the support droids at the ISP that the issue is at their end? 

One interesting thing I've never seen before: If the user connects to the VPN on their normal ISP, it connects normally for 15 seconds and then disconnects - except the firewall still shows the user as logged on, so the user cannot reconnect until the session times out or is manually killed. 

SonicWall - "Maximum Events Per Second" - What happens to those 'exceeded' data?

February 13, 2020, 12:59 pm
$
0
0

In SonicWall's Syslog Servers setting, if enabled the 'Maximum Events Per Second' to 1,000 and if there’s a sudden spike that triggered i.e. 2,000 events in one second, what would really happen to those 'exceeded' 1,000 events?
Would the Log Management solution still receive and see all those 2,000 events or would those 'exceeded' 1,000 events not gonna be sent to the Log Management server?

How to filter SonicWall syslog not to include selective network interface(s)?

February 13, 2020, 1:17 pm
$
0
0

In SonicWall's syslog settings, is there a way not to send any events that's from a specific network interface?
i.e. guest wifi vlan interface.
(not likely always need to see what's happening to the mobile devices connected to the guest wifi network)

Upgrading SonicWall with minimal disruption

February 14, 2020, 6:38 am
$
0
0

We're replacing our NSA2650 with a new 3650.  I have several existing tunnels, will these VPNs transfer over?

Multiple LANS to single WAN?

February 14, 2020, 11:07 am
$
0
0

Hello,

SonicWall noob here, now responsible for taking our existing NSA 2600 and configuring it to accommodate a completely separate network.

On X0 we have our existing LAN with a 172.16.x.x address. X1 is our WAN with our public IP. X2 is our DMZ interface with 192.168.x.x address. I thought I could use X3 for a 2nd LAN and possibly setup some routing or other solution to let that tie into the WAN but have been completely unsuccessful.

I have all allocated a dedicated switch for this new network and all clients are hardwired to it. Tied a port from that switch to X3 and set an IP in a different subnet. I have setup access rules to allow in both directions between WAN and X3 and also attempted to setup some routing policies with no luck.

Can someone point me in the right direction?

Thanks

Search

Config import

February 17, 2020, 8:52 am
$
0
0

Hi,

Any problems with importing a config file from a TZ100 into a TZ600?

Thanks

Sonicwall Connecting to Azure Stack

February 17, 2020, 6:25 pm
$
0
0

Hi,

I have a TZ 300 wireless-AC, running SonicOS Enhanced 6.5.4.4-44n.

Our cloud provider is moving to Azure Stack, I need to setup a site to Azure Stack connection. I have done this to Azure before, but it seems the requirements for Azure Stack VPN are different and more secure.

According to this page:
https://docs.microsoft.com/en-us/azure-stack/user/azure-stack-vpn-gateway-settings?view=azs-1910

Its phase 2 security that Sonicwall doesn't have. Sonicwall Phase 2, only supports ESP and AH. Where Azure Stack requires IKE in this phase as well.

If there is a way around this considering I have done it in Azure (difference changes)

Thank you,

Rich

SIEM misunderstanding Sonicwall Firewall Logs

February 18, 2020, 3:13 am
$
0
0

Hi - question about a strange log situation re Sonicwall firewalls. When an unwanted packet comes in, the firewall logs a "Connection opened", and then immediately following a "Connection closed" - instead of simply logging that the connection was refused or the packet was dropped.

Not sure if this is related, but in the Sonicwall log event reference guide it states:

TCP IP Layered-Data Packet Processing and SonicOS Log Event Handling In specific cases of multi-layer packet processing, a TCP connection initially logged as "open," will be rejected by a deeper layer of packet processing. In these cases, the connection request has not been forwarded by the SonicWALL security appliance, and the initial Connection Open SonicOS log event message should be ignored in favor of the TCP Connection Dropped log event message.

So before dropping an...

SonicWALL for home security.

February 18, 2020, 11:39 am
$
0
0

Has anyone setup a SonicWALL TZ at home for your personal connectivity? If so how are you finding it? and whats the cheapest way to get a licence for it?

Thanks

Rob

GVC WiFi performance problem

February 18, 2020, 1:31 pm
$
0
0

Hi folks,

I'v encountered a new (to me) problem with the GVC client on certain laptops. A client complained to me that WiFi download performance on his HP Envy laptop degrades severely after he starts the GVC client to connect with his office. WiFi download speeds slow to about 1 Mbs after the GVC is opened. This condition persists even after the tunnel is closed and the app is closed. The only way to restore normal performance is to reboot the computer. Oddly, upload speeds are not affected. Wired connections are not affected either.

I duplicated this behavior on a cheap Lenovo Thinkpad we use around the shop. My personal Surface is not affected in this way.

The Lenovo uses Realtek wireless hardware. The HP uses Intel. My Surface uses Marvell Avastart hardware. The Lenovo and HP run Windows 10 1909 with the latest updates. My Surface is...

Log Management solution (i.e. for syslog server) useful?

February 19, 2020, 9:22 am
$
0
0

Is Log Management solution (i.e. syslog server) useful for collecting/investigating the syslog from multiple routers during the period any router(s) went offline (cannot be connected) for any reason?

For example, when a router cannot be connected (not matter due to WAN or VPN connection), this router's syslog cannot be sent to the syslog server due to lost of Internet connection during the disconnection.

Even if after the Internet connection is restored, there's no guarantee if this router's syslog would still be sent to the syslog server later. This router's syslog might even be lost if the device had to be rebooted or maybe was crashed or something got corrupted.

If this is the case, the only way to investigate what and why really happened to this router would have to physically connect to this device to retrieve the log file (if it...

Access Rules

February 19, 2020, 6:54 pm
$
0
0

Someone please 'splain me this:

I'm looking at access rules in a brand new TZ300P. The only rules are the default rules and those created automatically when I have created new zones for wireless VAPs. I'm looking at WAN to LAN rules, and there are two rules, one for v4 and one for v6. For both rules All services from Any source to Any destination are Denied. Okay I get that, but I expected corresponding rules Allowing HTTP and HTTPS from the WAN to travel to the LAN zone.

So my question is, given the existing rules, how are LAN devices able to access the Internet? I don't think I understand how Access Rules work at all.

Search

SonicWALL TZ300 SSL VPN access

February 20, 2020, 8:10 am
$
0
0

Hello. I have inherited a TZ300 sonicwall and I'm in the process of trying to use the built in VPN to allow remote users access to or LAN. From all that I have read I should be using the SSL VPN and so I have followed the tutorials for set up. I'm able to successfully connect with NetExtender but I'm doing something wrong because I'm not able to even ping the network resources while running NetExtender.

I have updated the Firewall Firmware to 6.5.4.5-53n and using the latest version of NetExtender. I have created a local user account on the Firewall and granted the user account access to LAN Subnets under VPN. The SSLVPN to LAN access rules are already set up but maybe I'm missing something there? I created the SSL VPN Port range per the Sonicwall instructions.

I'm not a network guy and so I'm learning as I go along. We're a small...

SonicWall Routing Questing for WAPs

February 20, 2020, 9:03 am
$
0
0

I have a new ISP on my X2 interface and I'm trying to figure out the way to route all traffic from my WAPs (really the devices connected to the WAPs) through the X2 interface. 

I'm assuming that just using the ip's of the WAPs and routing those to X2 wouldn't work as the devices connected get different ip's right?

It sounds like I would have to create a zone and add the X2 interface to that zone right?  But would that then mess up my failover and load balancing? Don't both interfaces have to be a part of the WAN zone?

TZ300P SSLVPN Users Authentication Failed

February 21, 2020, 6:07 am
$
0
0

I am opening a support ticket with SonicWall but am asking here as well.

I just replaced a TZ215W with a TZ300P. On the new firewall I duplicated SSLVPN users who were successfully connecting to the old firewall. These are SonicWall local users, not domain users, same as was configured on the old firewall.

With the old TZ215, we were using NetExtender because the SonicWall Mobile Connect app simply would not work. With the new firewall, NetExtender is no longer supported so I am using the Mobile Connect app.

Here is my issue: When connecting from the Mobile Connect app (on MacOS haven't tested the Windows version yet) using a SonicWall local SSLVPN user account, authentication fails every time, and I know the password is correct because I reset it in the firewall, using copy and paste, and pasted it into the Mobil Connect settings. I have...

Sonicwall is Visible to Internet

February 21, 2020, 8:22 am
$
0
0

Another Admin was attempting to allow a firewalled device connect to the internet.  He succeeded, but in doing so, my Sonicwall TZ400W is now accessible to the internet.  

I can type the Public facing IP and I am presented with a login page, where before I was not.  

I need to change this.   Is there a specific rule, I should be looking for?  

SonicWall VPN Tunnel to AWS VPC

February 21, 2020, 10:26 am
$
0
0

Hello,

I have a freshly configured NSA 3600 with a very simple setup for our small company. I have setup the AWS site to site connection using the integrated AWS account feature in the SonicWall. Both tunnels that are created show as "UP" but is absolutely no traffic. I have checked and access rules seemed to have been auto created, so not sure where to go from there.

I have since removed the tunnels created by that integrated AWS feature and manually created the tunnels, again making sure the static route and access rules are present. Still no change.

I have solved this problem once before on a 2600, but everything here looks in order. Any advice? 

Viewing all 2641 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>