Solved

Enable ping and tracert through sonicwall

Posted on 2009-05-13
6
5,131 Views
Last Modified: 2013-11-29
I would like to know what rules I need to create to allow a tracert through a sonicwall tz170.
There is a default service for ping but not for tracert.
0
Comment
Question by:kallatech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 2

Expert Comment

by:JMorganRead
ID: 24377910
You have to allow outgoing UDP messages to ports 33434 through 33534 as well as allow outgoing ICMP echo requests.  I'm not sure what the exact syntax is for your sonicwall, but that's the gist of what you need to do.  That will let Windows and *nix tracerts through the firewall.  Hope this helps :)
0
 

Author Comment

by:kallatech
ID: 24378680
There is a service in the sonicwall called echo is that what you are talking about?
I created a service using udp and put in the port range you suggested.
I then did the astrerik to asterik allow when setting up the rule.
Are you saying I also need to do this for icmp and the echo service?
0
 
LVL 2

Accepted Solution

by:
JMorganRead earned 125 total points
ID: 24381229
Right.  We don't have the exact setup - - I have a different model of SonicWall, but you need to set up an access rule which allows incoming or outgoing (as appropriate to which way you want to trace) echo service on ports 33434 to 33534.
0
Get Database Help Now w/ Support & Database Audit

Keeping your database environment tuned, optimized and high-performance is key to achieving business goals. If your database goes down, so does your business. Percona experts have a long history of helping enterprises ensure their databases are running smoothly.

 

Author Comment

by:kallatech
ID: 24383717
I also created a rule that allows any service in and any service out would that not do that same thing or does the sonicwall require a specfic rule?

Here is my understand of what you are telling me I create a rule using the echo service that runs on the port range you gave me using icmp and that should allow tracert in and out?
0
 

Author Comment

by:kallatech
ID: 24383761
I created a rule that uses the echo service and did the asterisk to asterik allow.
I also created a rule that allows icmp 1 through the port range you gave me with the asterisk to asterik allow.

Is this all I need?
0
 
LVL 2

Expert Comment

by:JMorganRead
ID: 24386550
Yes, should be.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A few months ago I attended the Rocky Mountain IPv6 Summit which was a two-day educational event; it was the 3rd annual conference held here in Denver, Colorado that was held at the Hyatt Regency Denver at the Colorado Convention Center. It was an e…
This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

631 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question