At 01:35 PM 5/28/2002 -0500, you wrote:
>I'd love to know what misconfiguration allows me to get at 172.16.x.x
>255.255.0.0 for all internal servers and IP's in every range except one
>single address. Even removing all restricting rules and enabling * for
>source and destination and setting everything to enabled by default still
>leaves me with this one address totally unreachable, even though the
>sonicwall itself can ping it when I hit the management page through the VPN.
I had a user set up some different routes in a batch file. I have also
seen some software to this on there own. Just making sure the
configurations are set in windows is one step. Checking them out with the
netstat command is something else.
I had to setup a proxy server to get access to one Excel Phone Switch that
did not have a way to set a gateway IP. Worked great. More then one way to
get to a machine and find the problem.
If it is down to that One address then I would say it is not the firewall
but the machine with everything open. If you change the IP address to
something else does the problem move to were you can't get to that IP?
>Deleted all rules and set default allow for everything in every direction,
>and that one is still unreachable. Reloaded firmware, went forward and
>backward in firmware versions, rebooted sonicwall, nothing I do seems to
>address this problem. Changed network cards on the server in question just
>to see - swapped it with one of the servers that *was* visible and reachable
>through VPN, and the problem stuck with the IP address, not the card or MAC
>address... Recreated the VPN policy, etc. No matter what, the other 30
>servers on the 172.16.1.x private internal network are accessible except for
>172.16.1.4...
>
>Considering how many issues I've had with this particular Pro-VX lately, I'm
>more inclined to think it's not misconfiguration, but something with the
>sonicwall. My random rebooting problem still happens, and I've gone 12 days
>now without getting an answer at all from Sonicwall, and this after
>purchasing the extended support...
Is there a Lemon Law for Firewall's? I would be on SW to replace the
Unit, Having one reboot randomly is a manufacture defect if you ask
me. There is no reason for the unit to re-boot ( unless you don't have it
plugged into a UPS ) have you tried a different UPS? I have seen a few
bad ones over the years.
>It seems that no matter what firmware version I try to use, I have something
>that's flakey. Various firmware versions seem to fix one problem, but
>introduce another... Gets rather frustrating. I don't have a single public
>server in my DMZ, all are outside of my firewall, because I can't trust the
>firewall to be running, and I had too much down time of my servers because
>of these issues of the unreliability of the sonicwall. So about the only
>real use I've gotten from this Pro-VX so far is that I can limit the
>outbound users as far as content and sites... But I could've done that more
>reliably using my old Windows 2000 NAT server if I would have tossed ISA
>server on it.
That sucks that you have your machines on the net like that.
>I know many people who use various flavors of Sonicwall products, and every
>single one I personally know has issues and problems, that usually only are
>resolved when someone at Sonicwall actually wakes up, checks email, and
>replaces a faulty unit. Even in the lists here, I hear more negative than
>positive... I like the unit, even with it's limitations as far as
>configuration goes compared to a PIX or something, but no matter how much
>something appeals to you, if it doesn't work and you can't get someone from
>the company to do something to try to help, about all you can do is make
>sure that you and all of your customers avoid that problem vendor...
I have seen the power supplies go out. I have even had one crap out on me
in the middle of reconfiguration. Other then that I have been happy with
the Sonicwalls. My SOHO-10 with VPN - still does a great Job for
me. Just installed a TELE3 last week does was easy. When the Client is
up for VPN in a few Weeks will help him with that.
>Anyone here want to chime in with how great their luck has been so far with
>Sonicwall? I'd really like to hear that someone has them and has had no
>issues. Would be nice to know that *somewhere* out there are boxes that
>don't fail even the most basic setups.
>
>John
---
[This E-mail scanned for viruses by Declude/F-Prot AV]
===================================================================================================
To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email put the
following: unsubscribe sonicwall your_name
The archive of this list is at http://www.mail-archive.com/sonicwall%40peake.com/
