Solved

RWW with SonicWall

Posted on 2006-11-20
28
893 Views
Last Modified: 2012-06-27
I am having problems connecting to remote computers/servers using RWW? I can access RWW and login to the main page, but cannot connect to any computers.
I am running behind a SonicWall TZ 170 Which I had to reset because the Tech that installed it, left and took the logon credentials with him, I am not sure if this problem is directly related to the firewall or a SBS configuration issue. I ran CIECW wizard multiple times and cannot seem to gain any ground, I was able to connect internally via RWW after the firewall reset and now all of a sudden I can't even do that, but I can connect using RD internally. At this point my head is starting to spin And I am running out of ideas. Any guidance will be greatly appreciated!!!!!!!


Thank you


0
Comment
Question by:ssnyds
  • 16
  • 12
28 Comments
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17983585
Well, let's start by looking at your IPCONFIG /ALL from the server.  Because if you can't use RWW internally then we need to find out why.

Jeff
TechSoEasy
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17983595
FYI, the following ports should be open on your Sonicwall:

25 - SMTP
443 - HTTPS (for RWW and OWA)
444 - SharePoint
1723 - PPTP VPN
3389 - RDP for remote administration
4125 - Remote Web Workplace

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17983762
First off Thank you for the timely response Tech,

Here is the ipconfig, there are some strange characters in here I am not used to seeing,

Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\Administrator>cd\

C:\>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : UTEK-SERVER
   Primary Dns Suffix  . . . . . . . : unives.local
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : Yes
   WINS Proxy Enabled. . . . . . . . : Yes
   DNS Suffix Search List. . . . . . : unives.local

Ethernet adapter Server Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme 5751 Gigabit Controlle
r
   Physical Address. . . . . . . . . : 00-13-20-09-90-74
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 10.183.142.2
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   IP Address. . . . . . . . . . . . : fe80::213:20ff:fe09:9074%6
   Default Gateway . . . . . . . . . : 10.183.142.1
   DNS Servers . . . . . . . . . . . : 10.183.142.2
                                       fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   Primary WINS Server . . . . . . . : 10.183.142.2

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : FF-FF-FF-FF-FF-FF-FF-FF
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : fe80::ffff:ffff:fffd%5
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Automatic Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 0A-B7-8E-02
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : fe80::5efe:10.183.142.2%2
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Disabled

C:\>
  I am going to check the ports now
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17983897
YIKES...

That wonderful IPV6 stuff...

You should ONLY have your Server's IP address listed for DNS.  Also, you can only have a single IP address assigned to your NIC.  Otherwise the SBS wizards don't work, and if you can't use the wizards you can't configure your server properly.

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984116
AHHH,

Direction please, I am getting burned out!!!!! HELLPP
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984206
Ok I walked away and cleared my head, any Ideas how I am ending up with the extra configs??
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984208
I am only using one Nic
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17984212
Well, I'm not entirely sure what those Pseudo-Interfaces are all about... but for your basic Network Interface, open up Network Connections and then the properties of the Network Interface.

Remove the IPV6 DNS entries, as well as the additional IP address entry from Internet Protocol (TCP/IP) > Advanced Settings.

Jeff
TechSoEasy
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17984218
Toredo Tunnelling:  http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/teredo.mspx

See if IPV6 is installed in Add/Remove Windows Components Network Components.  If it is... get rid of it.

Jeff
TechSoEasy

0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984334
IPV6 is now uninstalled  however I could not find any DNS entries for this?
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984338
I have the nic set for the sonicwall ip address, using the nic as it's own gateway, with the sonic as DNS server
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17984381
No, you should have the NIC's DNS entry set as the SBS's (10.183.142.2) with the Sonicwall's IP as the gateway.

Then you need to have your ISP's DNS IP's available to use in the CEICW as the Forwarders.

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984407
Here is what I have

TCP/IP Properties

IP Address 10.183.142.2
Subnet Mask 255.0.0.0
Default 10.183.142.1  (firewall IP)


Primary DNS

10.183.142.2.

I also have ISP Primary and Secondary DNS set up in CEICW
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17984410
BTW if you get me through this you will get an xtra fin :)
0
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17984733
Why are you using a subnet mask of 255.0.0.0?  Use 255.255.255.0 instead... you don't need that many available IPs.

Also, please post the complete IPCONFIG /ALL it's much easier for me to evaluate that.

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17988629
That subnet mask was automatically entered for some reason, when I changed it I got an outside of scope warning. here is the new ipconfig /all

Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\Administrator>cd\

C:\>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : UTEK-SERVER
   Primary Dns Suffix  . . . . . . . : unives.local
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : Yes
   WINS Proxy Enabled. . . . . . . . : Yes
   DNS Suffix Search List. . . . . . : unives.local

Ethernet adapter Server Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme 5751 Gigabit Controlle
r
   Physical Address. . . . . . . . . : 00-13-20-09-90-74
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 10.183.142.2
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Default Gateway . . . . . . . . . : 10.183.142.1
   DNS Servers . . . . . . . . . . . : 10.183.142.2
   Primary WINS Server . . . . . . . : 10.183.142.2

C:\>^V
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17988914
I change the subnet to 255.255.255.0
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17990961
Okay, that looks much better!  Now run the CEICW again and make sure that you don't skip any sections by selecting "Do not change".  Also, make sure that you enable RWW on the Web Services Screen.

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17991070
Okay, I ran CEICW again and reset everything, making sure that RWW was endabled, I still cannot connect to remote clients or servers, internally, OWA however is working.???
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17991173
But you are getting to the RWW main menu?

When you joined your workstations to your domain, did you use http://UTEK-SERVER/connectcomputer?

Do you have other servers on your network?

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17991243
Yes I can get to the main menu, and yes I did join the domain using http://connectcomputer (unjoined and rejoined again last night) this is a single server network.
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17991604
Please advise what the EXACT error you are receiving when trying to connect to a workstation's desktop.

Jeff
TechSoEasy

0
 
LVL 1

Author Comment

by:ssnyds
ID: 17991688
Windows Internet Explorer (Header)




Connectivity to the remote computer could not be established. Ensure that the remote computer is on and connected to the Windows Small Business Network
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17991708
I can connect to clients and server using RDC internally, but not externally, external connections just ainta happenin thing





Scott
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 17992061
Well, that's an easy one... you don't have port 4125 open on your router and pointed to your SBS.

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17992111
therein lies the problem, I am using sonicwall enhanced and I have not found port forwarding anywhere, I had to create access rules, which I did, from WAN to LAN  using Primary WanIP with Remote Services (4125) to LAN Ip (10.183.142.2)
0
 
LVL 74

Accepted Solution

by:
Jeffrey Kane - TechSoEasy earned 500 total points
ID: 17992165
Well, then, download the Admin guide or the NAT Configuration Guide and learn how to configure it:  http://www.sonicwall.com/support/tz170_documentation.html

Or, remove the SonicOS Enhanced and revert back to Standard which is much easier to configure and will at least get you going for now.

Jeff
TechSoEasy
0
 
LVL 1

Author Comment

by:ssnyds
ID: 17992258
Jeff,

Thank you for your patience and time, I will let you know how I make out


Scott
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

I’m often asked about newer and larger USB drives connected to SBS2008 and 2011 failing Windows Server Backup vs the older USB drives not failing. As disk space continues to grow and drive technology change SBS2008 and some SBS2011 end up with the f…
You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade.  That can be fixed so it 'works around' agai…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now