My Office firewall (Sonicwall Pro 2040) block everything from my homeoffice

Posted on 2006-05-18
Last Modified: 2013-11-16
After I installed my new firewall (sonicwall pro 2040) i have problem getting through to my office. The sonicwall find every connection/attempts from my homeoffice as an intrusion, eighter it's a request for a webpage, ftp server or terminal server. The log says it blocks the request because the category is "intrusion prevention" and message "ip spoof dropped" with the explanation "striker attack". I don't have this problem from any other locations, and can't figure out why this happends. My homeoffice firewall is an cyberguard sg530. There is no rule in eighter firewalls that attempts to rewrite the packets.
Question by:Einar63
    1 Comment
    LVL 20

    Accepted Solution

    Do you have a direct link between the offices (ie, a point-to-point T1, etc), so that you're trying to access the branch office internal LAN directly from the home office internal LAN, instead of over the Internet?  Something like the following example?
         Internet                           Internet
            |                                       |
      branch ofc <-- direct link--> home office
      10.1.1.x                             192.168.2.x

    If similar to the above, you need to configure a route on the SonicWall so it knows where to route traffic to 192.168.2.x, in addition to firewall rules to allow the home office to access the branch office 10.1.1.x subnet.  Just be aware that if the internal subnets at each office are set w/ overlapping IP ranges, traffic from the home office would have to be NAT'd to a different IP range than the branch office, or the SonicWall will still complain about spoofed IPs, since the SonicWall doesn't like seeing traffic with the same source IP ranges coming in on 2 different interfaces.


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Security Threats Are You Missing?

    Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

    Suggested Solutions

    Title # Comments Views Activity
    Changes to my firewall 9 47
    VPN client software 7 38
    Cisco ASA 1 49
    Sonicwall Traffic 17 68
    Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now