TKWITS Community Legend ✭✭✭✭✭
Reactions
Comments
-
Share some sanitized screenshots of the tunnel config, and a brief description of the address objects used.
-
To expand on Arkwrights reply: Some implementations of firewalls will be more sensitive to things like sequence randomization. While it's likely part of a published spec, not every manufacturer follows specs, and not every admin keeps firmware / OS / software up to date to meet said specs. Vent: The internet is the wild…
-
I suggest translating any local traffic to single address. Remote side can be to multiple IPs in a group. A note, when you enable NAT on the VPN tunnel, it will automatically create the appropriate NAT rules. You don't need to manually create them.
-
Did you enable 'enable management traffic' on the rule? or the same in the VPN tunnel config?
-
Is the 'Cheer Gym' address object a range of IPs in the SSLVPN zone? Might help to rename that to something clearer. Is the 'internal' network you are trying to access remotely on the Sonicwall's X0 interface? Than use 'X0 Subnet' instead of 'LAN Subnets'. Do you have an internal DNS server? Than use the internal DNS…
-
Read the discussions below: https://community.sonicwall.com/technology-and-support/discussion/comment/22565 https://community.sonicwall.com/technology-and-support/discussion/5488/port-scan-detected-how-to-whitelist If disabling IPS fixed your problem, than IPS is the source of your issue. Add an exception to IPS for your…
-
Show us sanitized screenshots of the relevant configuration pages. Are your SSLVPN Client Routes correct?
-
See the discussion here: https://community.sonicwall.com/technology-and-support/discussion/5540/2-subnets-on-the-same-interface-whitout-using-vlans It can be done with VLAN interfaces with appropriate static ARP entries, static routes, and rules.
-
Have you searched the web at all? https://www.sonicwall.com/support/knowledge-base/how-can-i-enable-port-forwarding-and-allow-access-to-a-server-through-the-sonicwall/170503477349850
-
If you are talking about making the 'WAN GroupVPN' policy IKEv2, than you will be disappointed. You cannot
-
"any steps or article for the same?" Did you search the web? "Also how will i transfer the users from old policy to new policy of VPN." Up to you. Either you'll have to do it manually on all your user PCs or provide them instructions on how to do it.
-
Your post is rather rambling. What exactly is your issue?
-
Like Arkwright said, run a packet capture on your Windows server. Don't forget to adjust the built-in Windows Firewall. On a side note a Sonicwall will not capture its own syslog traffic unless you tell it to in the packet capture settings.
-
It's like we've gone back to the days of Win 9x file transfer time estimates…
-
For others looking for reference: The lack of Lets Encrypt / ACME support with Sonicwall has been a pain point for us for years now. Can @Vivek or @Community Manager chime in?