mrshahin

Newbie ✭
Default Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

mrshahin Newbie ✭

About

Username
mrshahin
Joined
Visits
164
Last Active
Roles
Member
Points
17
Badges
4

Badges (4)

1 Year AnniversaryName Dropper10 CommentsFirst Comment

Comments

  • This is my packet capture filter: And this portion of captured packages: How can I know if the source nat is not applying? Thanks
  • @MasterRoshi Hi, I was wonder if you have any suggestion regarding why connection dwont get back to the on-prem Sonicwall!
  • Thank you for your reply, When use the Remote server public IP, I can see that data is going through the AWS tunnel interface but my browser dont show the website and see the error Error Code: INET_E_RESOURCE_NOT_FOUND this is what I see when running a packet capture: *Packet number: 2* Header Values: Bytes captured: 66,…
  • Up Date, I did change the Destnation of Access rule and Oreginal destenation of nat policy from X1 IP to object access of public IP that we and this time the logs show no drop but still unable to access the website: *Packet number: 158* Header Values: Bytes captured: 66, Actual Bytes on the wire: 66 Packet…
  • Should we use X1 IP for the Original Destenation or use the object access that we have created for our second public IP of WAN interface?
  • @MasterRoshi Just wonder if my last NAT policy would cause any problem!! I ask this because of the translated Source and Original destination is set to X0 and X1
  • I think you mean this, I will change the oraginal service also to https
  • @MasterRoshi sorry change it to what? :)
  • @MasterRoshi Thank you for the update, you are right, the traffic is sending down the tunnel, the site 2 site from our Sonicwall to Aws is created from our public ip 194.XX.XX.5 ( WAN ip) and the A record of the Website is 194.XX.XX.66 Can you tel me how to source NAT the traffic ? Thank you
  • UPDATE, We did create the rule from the wizard and when put the web server on LAN, we can access the website, but when put the same webserver in the VPN zone cannot access the website from internet and get message that connection refused. we can access the website on the aws from the LAN What do we need to access the web…
  • @MasterRoshi Thank you for the reply, I did correct my access rule and setup the NAT policy as you suggested, as if web server is on LAN, but still I can not open the website from WAN and get the error that This Site cannot be reached. I also correct the destination as you suggested but still the same issue. This is my…
  • Hi @shiprasahu93 Thank you for the reply as always, Both servers have the same subnet and gw and both are in the same VPC and we are planing to put a firewall in front of this VPC 255.255.240.0 172.31.16.1 Thanks
    in subnets Comment by mrshahin July 12
  • Hi @TKWITS thank you for your reply, You are right, I mean Packet monitor :) I have create a monitor filter and want to know all incoming ports from 2 IP's, should we use 1024-65353 for the source ports or we should just leave it empty? Thanks
    in filter Comment by mrshahin July 7
  • Hi @shiprasahu93 Thank you for your reply, are these steps the correct one ? I have an extra public IP in the same range as the IP that we use for our wan! Thanks
    in outbound nat Comment by mrshahin July 2
  • My problem has been resolved, it was a misconfiguration on my part, correct the issue and everything works,