Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Windows Server 2022 communications across a site-to-site vpn

ngrubbngrubb Newbie ✭
in Mid Range Firewalls

I have Windows servers at 2 sites that are connected via a site-to-site vpn, both firewalls are NSa 2700s running 7.1.3-7015. When I look at All Servers in Server Manager on a server at site A, the Manageability status of all servers at both locations updates immediately with "Online - Performance counters not started." When I do the same on a server at site B, the Manageability status of the servers at site A try to update for about 5 minutes, and then show "Online - Verify WinRM 3.0 service is installed, running, and required firewall ports are open." Is this a firewall issue? I have a rule to allow everything from zone VPN to LAN on both sides. Any suggestion is greatly appreciated.

Category: Mid Range Firewalls
Reply
Tagged:

Answers

  • BWCBWC Cybersecurity Overlord ✭✭✭

    @ngrubb crank up a packet-monitor on both sides with the IPs of both servers and capture only dropped packets, this should give you a hint if the firewall is involved or not. If there is ANY service allowed between them then it's probably not a firewall issue.

    —Michael@BWC

  • ngrubbngrubb Newbie ✭

    Thank you! I had not done packet monitoring between 2 IP address before and that was key.

    Turns out there was a Content Filtering policy on the firewall at site B that was LAN > ALL ZONES that was blocking some of the communications to the VPN zone.

    I disabled the policy and the problem disappeared.

Sign In or Register to comment.