I am currently using a tz300.
I am currently running 2 vpn tunnels on the sonicwall. If the sonicwall restarts or for some reason power gets cut and has to be turned back on, the VPN tunnels do not seem to come back up by themselves.
To make it work, I have to click on edit on each VPN tunnel and click on "OK" to re-establish a connection. Is there a way to make this re-establish a connection automatically?
I'm attempting to setup an SSLVPN connection to a client's TZ105. Actually I have set it up and can connect to it, but once connected I cannot ping any devices on the LAN behind the firewall.
I just setup an SSLVPN to another client's TZ300 earlier today. I compared the settings, and except for the fact that the TZ300 has a few additional options, both are exactly the same. Most importantly, the SSLVPN user is a member of the SSLVPN services group, and the Client Settings Client Routing option is set to Firewalled subnets.
But it gets more complicated: I've re-created the Mobile Connect client several times while trying to figure this out. On two occasions when I connected, for about 30 seconds I was able to ping a device on the remote LAN, then the responses stopped and I was unable to ping anything.
There is a firmware upgrade...
I am trying to setup a site to site VPN (IKEv2) (from sonicwall NSA 2500) to a Cisco box.
All parameters match, except Cisco wants a parameter
PRF Algorithms
it is suggesting SHA/SHA256 and insists on one value.
when we try establish a VPN, I get "No Proposal Chosen"
Sonicwall has no documentation about PRF
Any idea how/if PRF algorithm can be specified on Sonicwall site to site VPN ?
I am looking to clean up my Log files by working on my SSO Bypass settings. I wonder if any of you have gone through and worked on this.
If you have any tips on how you did this that would be great.
Here are the error types I am getting.
02/25/2020 09:21:52 - 986 - Users - Information - ###.###.###.###, 55744, X0 - 54.236.3.169, 443, X1 - tcp - Unknown user, authentication by SSO agent ###.###.###.### - User login denied - not allowed by Policy rule
I'm doing some testing on my TZ 300 currently. I'm getting a TZ 600 but for this week I wanted to utilize higher throughput. I turned off a bunch of security services including IPS and got the speeds I wanted. But after a week I noticed performance declining. Could it be that the SonicWall was being hammered from the outside? I've turned back on all security services and while throughoupt is reduced it doesn't take as long as it was to get to the SonicWall dashboard from a browser.
The logs aren't showing me anything significant. Additional changes to the SonicWall were turning on load balancing and routing wireless traffic over on to my X2 connection.
Sonicwall Analyser (the recent one, Sonicwall Analytics) provides the good amount of reports for Applications, Connections, Sessions etc. Does any of these reports can be used to detect the data exfiltration(insider attack)? Are there any such report that Sonicwall provides to identify the data breaches.
in the Appflow logs, what should i be looking for when it comes to taking action with the information displayed as such.
I took over a few networks from a different company. They did not provide the sonicwall logins, but I have the mysonicwall login.
I am dreading factory restoring all the sonicwalls. As there are VLANs etc.. Is there a way for me to either backup or control the sonicwall from the mysonicwall page?
Thank you
Have just installed an SRA410 appliance, and I am very new to this device.
I want to ensure each of the 3 users get the same IP address each time they log in. At the moment, the device is configured for DHCP and a small range. Where do I look for this setting? Suggestions?
I'm looking into the possibility of enabling the dynamic botnet list server option. It appears that I need to work with a third-party list provider? I've read bout MineMeld from Palo Alto Networks. Apparently this will work with the Sonicwall? Done anyone have experience with implementing this?
I have a handful of remote sites with very minimal use (1-2 users, limited hours). I plan to place sonicwall soho 250's at these sites and connect them via site-to-site VPNs. My big question: can I just force all internet traffic through the VPN to utilize the advanced security services I subscribe to on my 2650 instead of paying for them all separately on the 250's? I'd like to get appliance only 250's, then route everything over the VPN and out the 2650. Any reason not to do this?
Hello all,
I have an issue that is pretty basic, but I don't quite understand how to do it.
Here is my setup: I have a Sonic firewall that is connected to a Cisco Switch
X6 is connected to our wireless VLAN on the switch
X3 is connected to our camera system VLAN on the switch
The camera system is just a bunch of cameras on a PoE switch.
All I want to do is be able to access those cameras with a laptop on the WLAN by IP. I guess I have to forward the traffic somehow.
I work for a very small company and inherited the responsibility of doing this with little experience. I have very basic networking skills. I don't understand all the options there are on the firewall (to me, it should be as easy as "allow this traffic to go here", but there are so many options, and I guess it isn't that simple). Any help would be appreciated. Thank you so much.
Hi. I recently have been testing SSL VPN on our Sonicwall NSA2600 unit. So far so good on the basics. With the account I am testing, I can remote desktop into a PC off of a mobile hotspot. What I am trying to figure out is how block my users who will being using SSLVPN from browsing the Internet on the machine initiating the SSL VPN connection.
All I want them to do is SSL VPN in and remote desktop on the LAN. I turned on Tunnel Mode Enable All, and then tried a SSLVPN to WAN rule to deny traffic. That didn't seem to do it. I can still get to Google and when I do "What is my IP?" I get the IPv6 address of the mobile hotspot not my Sonicwall IPv4 WAN address. Has anyone here performed this successfully on their Sonicwall?
Hi,
I have a Sonicwall NSA 2600 Series, and I have to open the 1433 to get remote access to our sql server what I must to do?, the remote access will be just for 3 specific addresses.
Hello, everyone!
Guys, we have a publication of OWA Exchange 2010.
We are having many attempts to brute force and consequently blocking users accounts.
If we block port 443 to close OWA we stop other Exchange services, such as autodiscover... etc.
Is there anything we can do to stop these sonicwall-level attacks?
Has anyone been through this?
The model is an NSA 2600 - firmware 6.5.4.5-53n
Cleaning up some a previous admin that had HA units in all locations.....but they were never set up as HA units. Literally plugged into power for 3 years, but never plugged into the internet connection(s). We have a need for a unit at a new location, didn't know if I could use one of the HA units.
It does say 'SONICWALL TZ600 HIGH AVAILABILITY' at MySonicWALL.com. The current license expires in a little less than a month.
I'm guessing not, but wanted to check. Thanks!
Is there a list of expansion port modules for the tz600?
I'm hoping to find a 1gig fiber module.
Hello All,
We are trying to move from our current MFA we use with Sonicwall SSL-VPN to Microsoft MFA.
I was following this tutorial
I found an issue when looking at this in that I cannot access the "Virtual office" to see the Q code I need to scan in the Microsoft authentication app. I should be able to get this via the https://myfirewall:4433 but I receive a timeout error. our VPN is using a different port so I had tried this url with that port attached just in case but i got nothing. Also I have users still connected so I am trying to test this without kicking them off if possible.
I thought I would see if anyone had any ideas before I annoy support :)
Cheers
I am trying to import a certificate into my Sonicwall TZ 600. I had an earlier issue with a certificate and had to delete it out. Now when I try to import a new one I get an error message. Error: CA Certifcate has been loaded before.
I had an email support case in with Sonicwall but wanted to see if anybody else has seen this.
Thanks,
These are the instructions that I have been following pretty much.
Hi,
I'm setting up SSLVPN on our Sonicwall TZ400 running 6.5.4.4-44n as we're hit the maximum number of Global VPN clients the Sonicwall will support, and need more for our Coronavirus disaster planning.
I've got everything working using the NetExtender 9.0.274 client except I can't access remote LAN subnet from it.
What I'm done/checked so far:
In the SSLVPN Default Device Profile in Client Routes I have the "Data Subnets" network object group added. This object contains our 4 Data LANs (192.168.100.0/24, 192.168.2.0/24, 192.168.3.0/24 and 10.0.0.0/24).
In the Users group accessing SSLVPN (All RADIUS Users) I've added group "SSLVPN Services" and within VPN Access added "Data Subnets" network object group.
Within Access Rules, rules have automatically been created both for SSLVPN to LAN and LAN to SSLVPN for our 4 subnets. All services and...