Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


My Office firewall (Sonicwall Pro 2040) block everything from my homeoffice

Posted on 2006-05-18
Medium Priority
Last Modified: 2013-11-16
After I installed my new firewall (sonicwall pro 2040) i have problem getting through to my office. The sonicwall find every connection/attempts from my homeoffice as an intrusion, eighter it's a request for a webpage, ftp server or terminal server. The log says it blocks the request because the category is "intrusion prevention" and message "ip spoof dropped" with the explanation "striker attack". I don't have this problem from any other locations, and can't figure out why this happends. My homeoffice firewall is an cyberguard sg530. There is no rule in eighter firewalls that attempts to rewrite the packets.
Question by:Einar63
1 Comment
LVL 20

Accepted Solution

calvinetter earned 1000 total points
ID: 16713218
Do you have a direct link between the offices (ie, a point-to-point T1, etc), so that you're trying to access the branch office internal LAN directly from the home office internal LAN, instead of over the Internet?  Something like the following example?
     Internet                           Internet
        |                                       |
  branch ofc <-- direct link--> home office
  10.1.1.x                             192.168.2.x

If similar to the above, you need to configure a route on the SonicWall so it knows where to route traffic to 192.168.2.x, in addition to firewall rules to allow the home office to access the branch office 10.1.1.x subnet.  Just be aware that if the internal subnets at each office are set w/ overlapping IP ranges, traffic from the home office would have to be NAT'd to a different IP range than the branch office, or the SonicWall will still complain about spoofed IPs, since the SonicWall doesn't like seeing traffic with the same source IP ranges coming in on 2 different interfaces.


Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month15 days, 23 hours left to enroll

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question