I'll have to verify, but this unit seems to be hard coded to accept
port 443 on IP addresses on the LAN side.

I can set the remote management port - that is, for the IP address on
the DSL side, I can specify a different port, and have - well above
1024.

A worthy thought, though, and I'll check that tomorrow when I get in.

Kurt

On Wed, Mar 31, 2010 at 17:05, Silvio L. Nisgoski <[email protected]> wrote:
> Maybe I´m late in the discussion, but have you tried changing the ports
> where the httpd of the router is listening, so that it doesn´t conflict with
> those from the sonicwall  ?
>
> ----- Original Message ----- From: "Kurt Buff" <[email protected]>
> To: "NT System Admin Issues" <[email protected]>
> Sent: Tuesday, March 30, 2010 11:20 PM
> Subject: Re: OTish: PPPoA router, anyone?
>
>
> Yep, but I'm not in the UK office, I'm in Redmond. It's a tough nut to
> crack, remotely. It'd be much easier if I were on site.
>
> But....
>
> Ah, you've given me an idea for some of the diagnostics, anyway. The
> firewall management GUI has not revealed anything when I pull an
> audit.
>
> It's a Sidewinder (now Mcafee, something, something something) and I
> can ssh into it and pull a few things out of it that way. Tcpdump, arp
> and all that.
>
> Unfortunately, that probably won't help with the Netgear router itself.
>
> Kurt
>
> On Tue, Mar 30, 2010 at 17:16, Richard Stovall <[email protected]> wrote:
>>
>> You probably know this being as you're a FreeBSD guru and all, but you
>> can get the MAC addresses via arp -a.
>>
>> I have no notions at all about what replacement hardware you should look
>> for.
>>
>> On Tue, Mar 30, 2010 at 7:56 PM, Kurt Buff <[email protected]> wrote:
>>>
>>> All,
>>>
>>> This is probably just whining, so bear with me - though if you have
>>> any insight into the technical issues, I'd surely like to hear it.
>>>
>>> So, I'm putting up a SonicWall SSL VPN unit in our UK office.
>>>
>>> They're way out in the boonies - about 50 SW of London, in the middle
>>> of farms and whatnot - and have a crappy PPPOA ADSL connection.
>>>
>>> Fortunately, BT got them a /29, and I've got a nice firewall for their
>>> office, and they can do OWA and RPC/HTTPS to their Exchange box.
>>>
>>> The Netgear router (it's a DG834, installed about 6-7 years ago, and
>>> I've turned off NAT) is also the PPPOA modem, and has a dynamic
>>> address on the ADSL connection with the /29 sitting the LAN side.
>>>
>>> I put an alias on the firewall, and the DG834 sees both the main IP
>>> address for the firewall and the alias (showing the MAC address as the
>>> same for both, and different than the MAC address for the DG834), when
>>> I query the admin web page for devices that are attached to the LAN,
>>> and it pings the firewall's external addresses just fine, though it
>>> doesn't report back the MAC address when pinging..
>>>
>>> We've also got an IPSec VPN between our offices, so I can connect to
>>> the SSL VPN unit over that.
>>>
>>> Here's the problem: When I try to connect via the public IP address -
>>> https://aaa.bbb.ccc.ddd - I get what looks like the browser popup for
>>> the DG834, not the Sonicwall login page, although I can't actually log
>>> in, probably because of the restrictions I've put in place.
>>>
>>> I've got an email in to the part-time IT guy at the site, so that I
>>> can get the serial number of the unit, in the hopes that by getting
>>> that and registering the unit, I can get the latest firmware for it,
>>> and see if that fixes the problem.
>>>
>>> But, failing that, does anyone have a recommendation for a PPPoA
>>> router to replace this thing - something that will actually be a
>>> router, and not steal packets destined for other units on the subnet?
>>>
>>> Thanks for your indulgence,
>>>
>>> Kurt
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
>>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
>>
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Reply via email to