SonicWall TZ 170 Lockup
Posted on 2006-04-25
Ok this one is a mystery. ISP installed a simple DSL line with a Netopia 3341 router. They have a WAN IP on the WAN interface and a WAN IP on the LAN interface and passing all traffic to our new SonicWall TZ 170 Firewall 10 Node.
After installing the firewall the customer has to reboot it every morning for everything to work. You cannot ping the outside internal address of the LAN interface of the firewall when it "locks". After rebooting everything is fine. For the most part it seems to do it between 2am and 8 am everyday but sometimes it gets really angry and does it multiple times during the day but rarely maybe once a week.
Ok, now the ISP is blaming the firewall and I almost would agree and I have not replaced it yet BUT the customer says that when they first got the DSL installed by the original ISP they had to reboot the DSL modem every morning as well and then it eventually stopped. They just SWITCHED providers the day we installed the firewall so what gives?
New DSL Netopia modem, new provider, new SonicWall firewall...daily "locks". Oh, and there is LOTS of TCP connection dropped activity coming from an outside IP address that the ISP claims is THEIR provider on ports 445, 135 and 136 just about every minute.
Need ideas here people...