Quantcast
Channel: Network Security - Recent Threads
Viewing all 531 articles
Browse latest View live

Migrating to Sonicwall TZ300

$
0
0

Hi,

We have 2 projects coming up the include the migrating from 2 old firewalls to a TZ300.

My question is, can I migrate the configs of  the old firewalls,  a Cisco ASA 5505  and a Watchguard XTM 505 to the TZ300?

I've had a look at  //migratetool.global.sonicwall.com/ and both old firewalls appear to be available as a source but the TZ300 is not as a destination.  Is this possible or is this a setup from scratch?

Thanks

Alex




Multiple, simultaneous VPN connections TZ-105

$
0
0

Hi,

Our company has a SonicWall TZ-105 and we have a working VPN using the GlobalVPN client.

However, we recently discovered that, if one remote user is already logged in, another user (at a different location) cannot log in. The GlobalVPN client simply says: "error."

I assume I have a configuration problem.  I have not been able to find reliable guidance for making two (or more) simultaneous VPN connections.

Can someone point me in the right direction?

Failover traffic question

$
0
0

Primary WAN X1

Secondary WAN X2

I have basic failover working but would like to limit which computers on the network can access X2 when X1 fails. Do I do this via a route or firewall rule?

Thanks

Migrating from TZ170 to TZ215

$
0
0

I am replacing a TZ170, with a TZ215. On the TZ170, I have all my office subnets, with the sites MPLS router as the gateway.

I don't see where to add this on the TZ215.


I have one office, that shares our internet access. It comes into the main office via the mpls network, and connects to my LAN switch. Then the LAN connects to the sonicwall, and goes out to the internet.

With the TZ215, the remote office cannot get to email, or to the internet.

How can I add this remote office subnet, to the trusted zones.

Do I need to run another cable from my LAN switch to the sonicwall to lets say port x6, and put the mpls router as the gateway for this port? (and create a new trusted zone)

Or am I missing something simple, and making this too complicated?

Thanks,

Brian

Two lan on the same interface X0

$
0
0

Hello.

I know your response : why you dont use VLAN ??? = TIME

My major problem was TIME. I work for my company since 8 month, and the network was a "spaghetti plate" = network plug not identified, switch at 4 meter high above a 24/7 CNC.

My company stop production just 2 time in a year so.

What i want to do, is to make a secondary subnet (or more) on X0 LAN to prepare my network to migrate to VLAN.

I have interface free, but i dont know ih i can connect it on the same "switch group" for my new subnet.

Thanks for your responses.

Secure Upgrade changeover?

$
0
0

I've done this before, but it's been long enough since the last time that I've forgotten. When I register my new firewall, at what point does the old one get deactivated? Can I register the new one now, so I can do a firmware update while I'm getting it set up, but not actually install it until I'm sure it's ready to go? (It could be a week or two before I get a chance to take it to the datacenter at another location.) I can't lose any functionality on the old one in the meantime.

launch gvc before logon

$
0
0

Is it possible to launch sonicwall global vpn client before logon on windows 7 and windows 10 pcs?  I have looked and looked but have only seen a few instances for xp.

Internal Error with RDP

$
0
0

Hi

I Have Just Upgraded to windows 10.

I use SWVC 4.9.4.0.306 to connect to windows server 2012, which worked fine in windows7 .

SWVC connects but When I try to RDP I receive an Internal error and Iam able to connect to the server fine with in the network but not outside of the network. 

 


Sonicwall NSA2600 - Randomly Dropping Traffic

$
0
0

Below is the message i posted on another forum. I wanted to get some input from here as well if possible:

#############################

Model: NSA2600

Firmware: SonicOS Enhanced 6.1.2.6-27n

I am running this in bridged-mode and running into cases where some devices cannot get get any further than the Sonicwall appliance (cannot reach hosts external to local subnet or sometimes cannot reach a DHCP server on ASA on WAN side of bridge). A reboot will usually cause this issue to disappear for a few days. It then starts to happen again, first a few devices then more and more.

Also, no security services are enabled and firewall is allowing all traffic both ways (ASA is on firewall duty) as i want to narrow this issue down.

A packet capture has showed me the following drop info:

DROPPED, Drop Code: 78, Module Id: 27, (Ref.Id: _1452_rqnke{Ejgem) 2:2)

DROPPED, Drop Code: 61, Module Id: 25, (Ref.Id: _5076_uyHtJcpfngKrRmv) 2:2)

DROPPED, Drop Code: 547, Module Id: 25, (Ref.Id: _4424_uyHtJcpfngKrRmv) 2:2)

#############################

Connection usage is very low all the time. Current 1303, peak 1460 and max 225000 (Maximum SPI Connections, changed from  DPI for troubleshooting purposes).

I tried changing some TCP settings to allow for less monitoring/processing and it did not make a difference. I am wanting to basically configure this with as little inspection as possible and basically just let any traffic back and forth without interruption to see if it's something else that maybe causing these issues. Not having much luck so far. But in the meantime, when I take the appliance out of the picture everything works perfectly.

And yes, i do have a current backup and some older backups as well.

#############################

I'm leaning towards an ARP issue as well. Even though it should be a full pass through with the current settings, but the way traffic has been acting i am not convinced. This device currently not used as a firewall, gateway a/v, intrusion prevention or content filter. Any other setting i could change that would inspect traffic at all i turned off. I currently have a NSA 3500 and a TZ210 in other sites configured in the exact same way (consistency across networks), internet>asa>sonicwall in bridged mode>internal networks, these networks have always worked with no issue. I haven't had many good experiences with Sonicwall support in the past but i guess i'll have to contact them again.

There is no consistency in when/what device drops. Could be anything from access to a printer, mobile device, access to NAS, or Windows device. With problematic devices they can access devices on their own subnet fine but will not pass the Sonicwall. Sometimes they cannot reach a device on another network, access the internet or in some cases cannot get a DHCP address for a guest vlan from the ASA. Sometimes it works and sometimes it doesn't. As a 24/7 facility this is very unacceptable.

I currently have it removed and everything is back to normal.

#############################

Sorry if it's a bit messy to read, this is copied from the thread on another site. From what i gathered, reading through endless forums, is that i need Hotfix # 142099. Any input on this is greatly appreciated.

Thanks,

Ryan

Limit SSL VPN access from specific MAC/IPs

$
0
0

I currently have SSL VPN set up with only two users that connect to it.  I am wondering if there is any way to limit the connection so they can only access from a certain location.  When setting up the SSL VPN it creates a firewall rule to allow any traffic but it does not allow me to edit the source location in this rule for a created group.

Sonicwall TZ205
SonicOS 5.9.1.5-16o

Does the monitor station PC need security software?

$
0
0

Hello. I am setting up a SonicWall in my home for the first time, and I am wondering - do I put security software on the monitoring station PC? Also, do the various laptops that will then connect to the network also need security software? Thanks.

Create groups for guest services

$
0
0

Hello Dell Community !

I would like to create groups for my guests on my SonicWall TZ-215, but i don't see any guest account in the group creation pop-up.

It is possible to do it by any method ? And if yes, how to do it ?

NSA 2600 terrible Internet speed with firmware 6.2.x.x or newer

$
0
0

We recently purchased a Sonicpoint ACe to add to a customer that has an existing NSA 2600 and a SonicPoint NDR.  In order to work the ACe with the NSA 2600, it is required to have firmware at 6.2 or above.  Current firmware is 6.1.2.3-20n.  This is the latest "General Release" available for the NSA 2600, and it is from August of 2014.  We tried 3 different versions, 6.2.2.2-19n, 6.2.2.1-14n, and 6.2.2.0-12n.  All three of these versions of firmware are listed as "Early Release", and seemed to work fine, make us able to connect, configure and use the ACe.  But we learned soon that the Internet speed was slow, and some sites would not load at all.  Thank goodness we had backups of the settings from 6.1.2.3-20n as we had to revert to that firmware to bring back the proper Internet speed.

So what do we do?  Throw in the towel and return the ACe and get an older, refurbished NDR?  Seems like Dell/Sonicwall is really dropping the ball here in not making a version of firmware that will support their own newer product AND function properly!  

voice System through site to site vpn

$
0
0

dears.

i want to make site to site vpn and also connect the two voice systems (cisco) between both branches 

using NSA250m firewall. if i establish the site to site vpn and the and match the voice system IP in the local network in VPN settings is it enough to communicate withe the site b voice system ??? 

SonicPoint N2 showing unresponsive when connected to a switch.

$
0
0

We are setting up a new network in a new office and are having some issues with the SonicPoints being unresponsive.

We are using a NSA-2600 as our router/firewall. The NSA is using firmware 6.2.2.2.19. X0 is our LAN and X1 is our WAN. X7 is our WLAN and we have 4 SonicPoints.

When I connect a AP directly to X7 it shows operational in the SonicOS. I have X0(LAN) connected to our switches. I created a bridge between X7(WLAN) and X0(Lan) and connected the other 3 AP's to our switch but they show un-responsive.

My thought was the bridge would allow the AP's to reach the SonicWALL but that does not seem to be the case.

We have a 5 story building with switching on floor 1 and floor 5. I also tried connecting an AP to the switch on the 5th floor and still nothing.

Any ideas on what I am doing wrong and how to resolve it?


validate VPN settings

$
0
0

Looking to ensure I've picked correct new VPN settings for NSA 3500/3600 to other SonicWall devices. Any significant changes I should make??

Phase 1: IKEv2, Group 14, AES-256, SHA-256, 28800

Phase 2: ESP, AES-256, SHA-256, 28800, PFS Group 14

Have been using: (these are carryovers from when we used to have Ciscos etc. at the other end)

Phase 1: IKE/Main Mode, Group 2, 3DES, MD5, 38800

Phase 2: ESP, 3DES, MD5, 3600

Main motivator is to not use SHA-1, and to have a balance of speed and security.

Thank you, Tom

Hub and spoke VPN with a dedicated public IP other than the WAN IP

$
0
0

I have searched for weeks trying to find a resolution to this issue with no luck. I am stumped as to why the SonicWALL NSA E5500 is incapable of having two separate public IP addresses on the same WAN interface.

This is easily implemented on a Cisco router. I need to assign second IP to function as the hub for multiple VPNs that tunnel through to access a host device. They run beautifully on the WatchGuard with an interface so polished it intuitively makes sense.

I have read everything using ARP, Zones, NAT, Address Objects and the list goes on. It's like swimming in a vast ocean of bits and pieces. None of the IPSEC tunnels need to route to one another. They are point-to-point so the remote sites can access a warehouse SQL server to run reports.

I don't wish for this to appear as a complaint session. It's more like frustration and I feel like I am at a dead end.

I realize the existing public IP on the assigned WAN interface could easily be used, but there are a variety of technical issues that will not allow this.

Can anybody shed light on this or get me off to the right direction. Thank you all and have a great weekend.

ISP says router is running Open DNS

$
0
0

Hey, I recieved a email from my ISP saying that my router is running an Open DNS.

How do i disable this on my router?

TZ 100W

current Firmware - SonicOS Enhanced 5.8.1.13-1o

 

 

The IP listed below could potentially participate in a Open DNS DDOS
attack. This IP is assigned to your connection. This problem is possibly caused
by a misconfiguration on the router or a service left open by accident.

incident details:

IP:

timestamp: 11/FEB/16 04:13:01 AM GMT

threat: Open DNS

source port: 53



CVE-2015-7547 glibc vulnerability on SRA series

$
0
0

Does the recently patched glibc vulnerability (CVE-2015-7547) apply to SRA series products? See  

NSA2600 SSL VPN

$
0
0

Hello,


i use the firmware 6.1.2.6-27n, but i can't found the option "Enable Server Cipher Preference" under SSL VPN --> Server Settings page


Is this a Bug  or a Feature? Where can I change the Cipher.


Regards

FoXeRMP

Viewing all 531 articles
Browse latest View live


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>