Sonicwall issue

Posted on 2009-05-06
Medium Priority
Last Modified: 2012-05-06
I have to sociwall tz 170's at two locations same company running a box to box vpn, it works great and has been for years.Recently customer has employed a piece of softwre that lets them receive quotes via the net.the configuration of the program are basically just a web address to companys website.When the customer logs in to the software from either location (both locations have their on internet provider) the software may run for 10 minutes then say no internet connection.Have loaded software on multiple pc's at each site same problem.Load it on my pc at my office runs great.Have loaded it on remote workstations (outside office)also works great. Talked to software vender several times and they say possible caching problem in router.The sonicwalls are the same in both locations using default configuration other than vpn settings. the sonicwalls seem to be the common demonator at both locations any ideas what i might try, maybe disable caching of some sort in sonicwall.
Question by:scoot63
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
LVL 12

Expert Comment

ID: 24322752
the firewall may detect that the traffic is inbound from an inside location and kill it due to anti-spoofing built into your firewall. Check out anti-spoofing info on your specific box.

Expert Comment

ID: 24338878
check to see if the software is using a DNS name, it likely is.  I would then enter a row in the hosts file for the internal PC to see if that helps, point the external name to the internal server IP.

internal server IP  external web site          companyabc.com

You just want to fool the system to not go outside the firewall to get to internal services.

If you have an internal DNS server you can also fix it there.

Accepted Solution

KevinCovert earned 1500 total points
ID: 24339151
I think I might have misunderstood your question, is the web site that the quotes retrieved from outside both of the networks?  If it is outside the network, I would disable caching first.  But past that I would also try disabling the spyware/AV services on the firewall (if purchased w sonicwall) ONLY temporarily though.  I think there is a white list you can add to those features if it does in fact cure the issue.
Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more


Expert Comment

ID: 24355438
Did you get a resolution to your issue?

Author Comment

ID: 24355505
Sorry i have not tried anything yet we have to work on this thing after hours as to not disrupt their day.Will try to work on it one night this week.please do not close question yet.

Author Closing Comment

ID: 31578730
We went into ARP caching and cleared it this has resolved the issue apparently.Had read some posts on other sites about ARP poisoning ? When we cleared it, it retained a couple of entrys that had to do with our vpn but all other were cleared.Didnt really see anything in there that looked suspicious and really wouldnt have known if it were.Clearing this didnt appear to have any ill effects on anything.

Expert Comment

ID: 24494285
Glad you got this cleared up!


Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
Suggested Courses
Course of the Month10 days, 18 hours left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question