Below is the message i posted on another forum. I wanted to get some input from here as well if possible:
#############################
Model: NSA2600
Firmware: SonicOS Enhanced 6.1.2.6-27n
I am running this in bridged-mode and running into cases where some devices cannot get get any further than the Sonicwall appliance (cannot reach hosts external to local subnet or sometimes cannot reach a DHCP server on ASA on WAN side of bridge). A reboot will usually cause this issue to disappear for a few days. It then starts to happen again, first a few devices then more and more.
Also, no security services are enabled and firewall is allowing all traffic both ways (ASA is on firewall duty) as i want to narrow this issue down.
A packet capture has showed me the following drop info:
DROPPED, Drop Code: 78, Module Id: 27, (Ref.Id: _1452_rqnke{Ejgem) 2:2)
DROPPED, Drop Code: 61, Module Id: 25, (Ref.Id: _5076_uyHtJcpfngKrRmv) 2:2)
DROPPED, Drop Code: 547, Module Id: 25, (Ref.Id: _4424_uyHtJcpfngKrRmv) 2:2)
#############################
Connection usage is very low all the time. Current 1303, peak 1460 and max 225000 (Maximum SPI Connections, changed from DPI for troubleshooting purposes).
I tried changing some TCP settings to allow for less monitoring/processing and it did not make a difference. I am wanting to basically configure this with as little inspection as possible and basically just let any traffic back and forth without interruption to see if it's something else that maybe causing these issues. Not having much luck so far. But in the meantime, when I take the appliance out of the picture everything works perfectly.
And yes, i do have a current backup and some older backups as well.
#############################
I'm leaning towards an ARP issue as well. Even though it should be a full pass through with the current settings, but the way traffic has been acting i am not convinced. This device currently not used as a firewall, gateway a/v, intrusion prevention or content filter. Any other setting i could change that would inspect traffic at all i turned off. I currently have a NSA 3500 and a TZ210 in other sites configured in the exact same way (consistency across networks), internet>asa>sonicwall in bridged mode>internal networks, these networks have always worked with no issue. I haven't had many good experiences with Sonicwall support in the past but i guess i'll have to contact them again.
There is no consistency in when/what device drops. Could be anything from access to a printer, mobile device, access to NAS, or Windows device. With problematic devices they can access devices on their own subnet fine but will not pass the Sonicwall. Sometimes they cannot reach a device on another network, access the internet or in some cases cannot get a DHCP address for a guest vlan from the ASA. Sometimes it works and sometimes it doesn't. As a 24/7 facility this is very unacceptable.
I currently have it removed and everything is back to normal.
#############################
Sorry if it's a bit messy to read, this is copied from the thread on another site. From what i gathered, reading through endless forums, is that i need Hotfix # 142099. Any input on this is greatly appreciated.
Thanks,
Ryan