Comments

• "IKE Initiator: Remote party Timeout - Retransmitting IKE Request." This means that the VPN initiator is sending the IKE traffic to the peer gateway, and does not get any response back. This is usually an indication of an ISP issue. The best next step is probably to trace the UDP500/4500 traffic with Packet Monitor. This…

  in VPN ISSUE after changing WAN IP Comment by MustafaA June 2023
• @mimiz , have you changed the Peer Gateway Address config for the site to site VPN, unless it is domain name based?

  in VPN ISSUE after changing WAN IP Comment by MustafaA June 2023
• Hi @iPAK_35 , have you reviewed the following KB article? How can I enable port forwarding and allow access to a server through the SonicWall? https://www.sonicwall.com/support/knowledge-base/how-can-i-enable-port-forwarding-and-allow-access-to-a-server-through-the-sonicwall/170503477349850/

  in I need to Access Hikvision over WAN Comment by MustafaA June 2023
• @Anytech. Likely your source packets are not tagged with the respective VLAN ID. Use the Packet Monitor tool on the firewall, and capture the traffic based on destination IP address. For instance, your computer is on X0:25 subnet and you are pinging a.b.c.d and your Packet Monitor should be filtered based on ICMP and the…

  in VLAN internet Access Comment by MustafaA June 2023
• For Gen7 firewalls this issue (GEN7-39385) is included in the Maintenance Release 7.0.1-5119 (Ref. Release Notes Page 6).

  in Changeip "Network Error"... Anyone? Comment by MustafaA June 2023
• Hi @floteccon Have you added 192.168.10.0/24 to the SSLVPN Client Route settings?

  in Access to Static Route over SSL VPN Comment by MustafaA June 2023
• Hi @Darshil , when you access the websites in question on your Iphone, do you see the SonicWall DPI-SSL certificate? What cert do you see?

  in IOS device shows website is not secure Comment by MustafaA June 2023
• What is the Core 0 utilization of the firewall at the time you are performing rsync/scp?

  in SSL VPN - Way Too Slow Comment by MustafaA May 2023
• To add clarity, the KB article will be updated, highlighting that DPI-SSL is required for HTTPS domains.

  in Trying to block new .zip and .mov domains, following KB, but still not working? Comment by MustafaA May 2023
• @techuser , to block TLDs as described in the following KB article with App Rule/Match Object, DPI-SSL is required for HTTPS domains. https://www.sonicwall.com/support/knowledge-base/how-to-block-http-access-to-top-level-domains-using-application-firewall/170505597962739/#Resolution1

  in Trying to block new .zip and .mov domains, following KB, but still not working? Comment by MustafaA May 2023
• Make sure you have the Allow Access Rule from LAN to the DMZ zone. You can use the Packet Monitor tool to trace the packet flow from your source to the destination which should give you insight about what's happening to your packets.

  in DMZ setup Comment by MustafaA May 2023
• With the App Rule/Match Object combination I was also not able to block img.zip URI. This needs further investigation. As an alternative you can create an FQDN Address Object for *.zip and create a Deny Access Rule using that as destination. I've tested this and it works as expected.

  in Trying to block new .zip and .mov domains, following KB, but still not working? Comment by MustafaA May 2023
• @jdarling , which API endpoint are you using?

  in Garbage in JSON Comment by MustafaA May 2023
• @TCooper , please factory default the unit and enable the build-in wireless to check if SSID is broadcasted. You can use inSSIDer application (or any other useful tool) to see the wireless spectrum of transmissions. Otherwise, you can contact SonicWall Technical Support.

  in TZ300 W - Wireless Controller is down Comment by MustafaA May 2023
• Based on your explanation, the NSa2650 is trying to initiate IPsec VPN connection with NSa4650 which does not have a corresponding IPsec VPN policy for that request.

  in Syslog Error "IKE Initiator : VPN Policy for IKE ID not found" Site to Site VPN NSa 2650--4650 Comment by MustafaA May 2023
More Comments