Menu

Twizz728

Newbie ✭
Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Twizz728 Newbie ✭

Badges (8)

First Answer3 Year Anniversary2 Year Anniversary10 CommentsName Dropper1 Year AnniversaryFirst CommentPhotogenic
See More

Reactions

0 Promote 0 Helpful 0 Like 0 Spam 0 Abuse

Comments

  • @Frank_P This is how I have mine setup. I have my internal secure LAN on X0, WAN X1, Guest WiFi using the WiFi zone assignment on X6. I just ensure that there are no rules allowing X6 to X0, but I did have to create a rule to allow connections from my X6 guest interface to a specific IP on the X0 interface for a copier…
    in Setting up an "internet-only" WiFi AP on a physical interface/port. Comment by Twizz728 November 2023
  • @Arkwright, So the references to X6 is not saying that packets are trying to go to or come from X6 to the X0 interface? I'm just curious because the two interfaces do not have trust and I would assume that they wouldn't try to connect or send packets to one another. Thanks!
    in Unknown Ether type ingress dropping packets Comment by Twizz728 November 2023
  • @Arkwright The capture filter is only looking for traffic coming from an IP on my network. I've not filtered out ports or destination. I'm looking for any packets that are dropped. In my case it seems like packets are being dropped intermittently. I'm not for sure if this is a Firewall issue. They can access the site some…
    in Unknown Ether type ingress dropping packets Comment by Twizz728 November 2023
  • @Arkwright No I want to see all the traffic from a particular IP, but I couldn't understand why X6 was even in the equation. The X0 interface is my LAN and X6 is my Public network and they are segmented, so I don't know why X6 is even showing up in the packet monitor. I'm not for sure if the SonicWALL is the issue in my…
    in Unknown Ether type ingress dropping packets Comment by Twizz728 November 2023
  • @LEE_S2022 I'm curious about this myself. I have a VPN gateway that is connecting my site to a vendors site and now the vendor site is failing connection requests. I can't ping the vendor site and when I look through the packet monitor I'm seeing packets being dropped with the error code similar to yours. Ethernet Header…
    in Unknown Ether type ingress Comment by Twizz728 October 2023
  • @TonyA & @BWC I've re-enabled my app control and gone into the configurations and set up the app control exclusion list to use the IPS exclusion list and it seems to be working for now. Hopefully this did the trick. Thank you both so much for all your help!
    in How to allow Endpoint to completely bypass firewall Comment by Twizz728 October 2023
  • @TonyA I went in and disabled app control and it's now connecting. I'm going to try to determine what is causing it to drop through the app control. @BWC
    in How to allow Endpoint to completely bypass firewall Comment by Twizz728 October 2023
  • Hey Michael @BWC , Yeah I went in and checked the rule I set up. I also attached the rule for the WAN - New Zone and the New Zone - Wan rules.
    in How to allow Endpoint to completely bypass firewall Comment by Twizz728 October 2023
  • Hey @BWC I had never used that feature on the SonicWALL before. Great to know it's there. I setup the packet capture and I can see where packets are being dropped, and on one specific entry I can see where packets originating from my endpoint going out to the server for the streaming service is being dropped. It's showing…
    in How to allow Endpoint to completely bypass firewall Comment by Twizz728 October 2023
  • Hey @BWC I created a separate zone and disabled all of the security features, the endpoint is on its own interface with its own subnet, and I created 2 rules, one from WAN to the new zone and one from the new zone to the WAN and made sure to allow any port, any service, and to disable any of the security services…
    in How to allow Endpoint to completely bypass firewall Comment by Twizz728 October 2023
  • @MustafaA There is only 1 endpoint at the facility that needs these special permissions setup. I could put the endpoint on it's own interface with its own subnet so that the communication to other devices is limited. I can create a new zone where nothing is blocked or inspected to see if it works, unless there is a way to…
    in How to allow Endpoint to completely bypass firewall Comment by Twizz728 October 2023
  • @andyoeft I'm still researching this issue. If you found a way please let me know, but I believe the only solution currently is to do what @Ajishlal mentioned above and that was to Install a WAN switch in front of the Sonicwall and connect the two ISP connections from the same subnet, then on the Sonicwall, assign a static…
    in Setting up secondary WAN with same subnet? Comment by Twizz728 September 2023
  • @MitatOnge the list that is provided to me is just a link that someone else provides. I may be able to see if there is a list of separation of URLs and IPs. I can check on that, but it sounds like Botnet filtering is the way to go.
    in Blocking IP/URLs with a TZ400 Comment by Twizz728 September 2023
  • @MitatOnge I'm fine with it not being discoverable. I will be the only one setting up the connections to the copier with the IP, but my main concern was not that there is an access rule from the Business LAN to the Guest network that if there was a breach in security on the network that someone may use some type of…
    in How to share a printer from one network to another Comment by Twizz728 September 2023
  • @MitatOnge When I setup the dynamic botnet list I get an error. I'm pointing it to a txt file with around 2000 URL/IPs
    in Blocking IP/URLs with a TZ400 Comment by Twizz728 September 2023