shultis

Newbie ✭
Avatar

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

shultis Newbie ✭

Badges (7)

2 Year Anniversary1 Year Anniversary5 Likes10 CommentsName DropperPhotogenicFirst Comment

Comments

  • Update: Tried a different brand of firewall and it's not getting DHCP either.
  • I have updated the configuration on one of the TZs, (screenshot below) DPD was already enabled -- disabled the "enable NAT traversal" setting -- reduced the DPD setting from 600 seconds to 100 seconds I let the connection sit between each change and the connection is still dropping, and a ping from the remote machine…
  • Thanks for the response. Is it necessary to have a NAT rule on the customer gateway? If the sonicwall is supposed to be initiating the connection, and does so when traffic is generated, why would the inbound UDP port be necessary. It's not an option for some of our end users. If the VPN connection can't stay up without…
  • I've done some digging into this, and I have a theory, based on the evidence I've collected, which I'm hoping someone can confirm. It took longer than it should have to figure this out, because support had said this error should only be seen when the firewall reboots. What i should have done is read the actual error, and…
  • the firewall is running: SonicOS Enhanced 6.5.4.8-86n--HFGEN6-2470-1n There are 2 domains that are not resolving that I'm removing from that group, however a non-resolving FQDN shouldn't generate a policy not found error, should it?
  • Any ideas here?
  • Saravanan, Thank you for the quick response. Does the sonicwall not log a hardware failover? Scott
  • Updating this: DHCP on the firewall comes from 2 pools. Users are assigned addresses from both pools. Logs on the firewall are showing "DHCP Server: Resources of this pool ran out" Lease time is 120 min. Is there any reason not to add a third DHCP pool? Currently the firewall says there are 228 addresses configured There…
  • Any update on this? And while we're waiting, what's the process for submitting a feature request to Sonicwall?
  • Interesting... but I'm seeing a lot of "Not supported in NSM 2.0" so I'm thinking we're not going to be signing up for the beta. NMS on-prem 2.1 or whatever comes next may have the features we need. No workflow in 2.0. I guess you have to have priorities and stick to them. "NSM On-prem will be offered on EXSi, Hyper-V, KVM…
  • Good to know... it would have been nice to have someone from Sonicwall chime in on this. At the very least, it would be good to get the documentation changed so you don't go hunting for pages that aren't in the release. Sadly, we don't have the option for NSM, we need an on prem solution, so we're stuck with this for the…
  • So I keep digging on this, and I'm hoping someone can point me in the right direction. In this document: I found this: When I look at my GMS implementation, I see this: So where is the System | Certificates page? This document is written for v9.2 and I checked and I'm running v9.2. The only place I can find that references…
  • We're trying to implement LDAP authentication for GMS using SSL and are getting this error: SSL Error: CA Certificate is not present in the server certificate chain. Please go to System > Certificates screen to import the server certificate. Alternatively use the keytool command to import the server certificate. Is there…
  • Found a product from Titania called Nipper that creates a pretty impressive report from a sonicwall settings file. It's fairly pricey, but if you need a report on firewall rules for compliance, this makes it simple and concise.
  • After enabling keep-alive on one side of the site to site VPN, and confirming it was off on the other side, we started seeing much more frequent drops on the connection, impacting a majority of users. I have disabled the keep-alive and things appear to be back to normal. I have opened a ticket with support, but any insight…