TKWITS Community Legend ✭✭✭✭✭
Reactions
Comments
-
Did you click the Configure button on the Portshield page..?
-
"So Cisco is being used for long time we cant remove from our LAN." A device in use 'for a long time' means that no one has had the gumption to question its existence and necessity. I've pulled plenty of Cisco routers out because they weren't needed, and clients have said 'why was it there in the first place if it wasn't…
-
"What sort of settings make an endpoint aware of 'nat in play'?" Typically a PBX or phone will have a setting to tell it if it is behind a NAT device and what the external public IP of the NAT is. Is the endpoint on the latest firmware? What is the endpoint?
-
Port mirroring is port mirroring, no matter what product the traffic ends up in... my previous comment is still relevant.
-
Be sure you have documented what was done or else you'll run into this again and not know how it was 'fixed'...
-
You could also just set the ISP provided modem to bridge mode. Any DSL/PPPoE connection I've ever had to do with a Sonicwall I've simply used the ISP modem in bridge mode and static'd the Sonicwall. It's better than a double NAT.
-
Semantics... I suppose no one asked if you had DISABLED the auto-create rules in the Zones... because that isn't DELETING.
-
I have been running this on a standalone TZ570 for almost a week without issue. In response to MITATONGE: I am not going to try a downgrade on a production system These tests all pass successfully Not Applicable (standalone) DIAG page works normally I can enable and adjust the Max Events per Second field Not currently…
-
What firmware are you running? Generally, using SIP Transformations on a Sonicwall is NOT recommended. Using Consistent NAT on the VoIP page is though. Have you gone through the articles? Have you contacted your ISP to ensure they don't have SIP ALG turned on on their equipment. Make sure your SIP endpoint is aware of the…
-
Is the Cisco Router absolutely necessary? A Sonicwall expects to have a publicly routable IP address on its WAN interface and may not perform as expected without a direct connection to the internet.
-
AJISHLAL provided you the answer. I am not familiar with Fortigates, but a quick web search would point you toward the VPN \ IPSec Tunnels page. Edit the tunnel in question and double check the settings, specifically the IKE ID used. Since the ISP changed you from PPPOE to DHCP, did you receive a new IP address? We can…
-
@xdmfanboy The download center has been funky before. If youre not seeing them there try looking under Tenant Products, clicking the serial number of an appropriate device, then click the Firmware tab.
-
You cant (really shouldnt) have a destination port that is also a source (your second example). I'd try something more simple first, a 1 to 1 mirror (e.g. source port 1, destination port 19). How are you verifying the capture? Wireshark?
-
Did you update the VPN tunnel config to match the new ISP information? What is your log saying about the VPN connection? PSK mismatch? Have you done any troubleshooting?
-
I wouldn't use a destination port that has been configured for anything. You should be using an unconfigured port as the destination. Disclaimer I dont use Sonicwall switches.