MarkD

Cybersecurity Overlord ✭✭✭
Default Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

MarkD Cybersecurity Overlord ✭✭✭

Badges (12)

4 Year Anniversary100 Comments5 Likes5 Answers3 Year Anniversary5 Helpfuls2 Year AnniversaryFirst AnswerName Dropper10 Comments1 Year AnniversaryFirst Comment

Comments

  • There wont be any ARP or MAC address, but as Arkwright says, can you poll the upstream router via the diagnostic ping and specify the interface
  • I could be wrong, but I would have thought it would be pppoe per vlan not on the physical interface
  • The metric is only a synthetic value between 1-20, used for cost calculation ie you can have multiple routes to a destination via different "COST" links ie :- A 1GB leased line circuit (metric 1) vs a slower VPN ( metric 3) vs a 4G link (metric 10) Metric: 1 This is for highest priority, any number between 1 and 20 can be…
  • Add a routing rule via the Policy section/Routing Rules Source Any Destination Cisco Linksys Network Service Any Nexthop Standard Route Interface X0 gateway "the ip address object of the Linksys 10.1.52.100" metric 1
  • nothing wrong with what you have done but you've missed the fact that the sonicwall does not know about 10.1.53.0/24 you need to add a route back to that network via the router at 10.1.52.100
  • configure the switch with VLAN 10 set the uplink port to switch port mode trunk set the downlink on your Linksys port to switch port mode access switchport access vlan 10 The Linksys then dosent need to understand the VLAN ID, the switch will add this on frames going to the firewall and remove the VLAN ID as it egresses to…
  • P1 and P2 timings are clashing, you've used the "defaults" Change the timings!
  • The IKE SA delete is part of the IPSEC protocol. Check your P1 and P2 timings, Phase 1 should be greater than P2 as the P2 is inside the P1 tunnel. Try 28800sec (8Hr) for P1 and 3600sec (1Hr) for P2 on both sides of the VPN
  • have you thought about backup the config, and flatten the 3700, bring it upto 5161 and build the config from scratch? otherwise you're working backwards You always have the backup if needed, but sounds like the configuration isnt too extesive, and you can always extract parts of the config manually.
  • I'm basing this suggestion on how I know the firewall handles TCP/UDP connection, timeout. - not based on any experience of Quickbooks Specifically I see this with SIP TLS or SIP UDP The site is probably all dynamic content - not much you have control over its speed unless you are on a damp piece of string. And keep in…
  • sounds like the users are not actually doing anything fro a while and with TCP connection timeout is 15 minutes it will close the session. create a rule specifically for the destination and alter the TCP timeout, if you do it globally you risk exhausting the resources on the firewall Increase TCP or UDP connection timeout…
  • The following article provides guidance on useing the MS Authenticator application. This is not Entra MFA - thats a whole different bag. Using TOTP (Multi-Factor Authentication) Using Microsoft Authenticator on SonicWall Next Generation Firewalls
  • Ensure you PC firewall has inbound UDP 514 open to recieve the systlog messages
  • Under access rules you can see the statistics of Policies and No. Hits and last hit. If you want to review the Firewall Logs (action drops) through the Monitor/Logs Under device/log/settings Import the firewall Action Template you can also customize the GI Log events in the same place. I would suggest if you want long term…
  • IKE ID ? not matching What is error code 33 — SonicWall Community