Solved

Sonicwall conversion from standard to enhanced

Posted on 2011-09-22
4
1,091 Views
Last Modified: 2012-05-12
I have a PRO 2040 Standard (firmware: SonicOS Standard 3.1.6.3-4s) and I just purchased a Sonicwall NSA 3500 Enhanced (firmware: SonicOS Enhanced 5.8.1.0-30o). I have used the Sonicwall Configuration Converter (https://convert.global.sonicwall.com/). After converting the configuration I did receive a few notes indicating that:
1. Transparent mode on WAN->DMZ enabled but no network ranges defined!
     VPN GroupVPN will use SiteA as local IKE ID

     VPN SiteB will use SiteA as local IKE ID

     VPN SiteC will use SiteA as local IKE ID

This is fine, from what I can tell and the response that I have been given from Sonicwall is that it is only indicating what is will use for the loal IKE ID for each of my satellite locations. Can anyone that has seen this issue in the past verify?

2. My second issue is before uploading the converted configuration I was able to access the web interface through X0, but after uploading the converted configuration I am unable to login through the web interface. When consoled into the NSA 3500 I am able to verify:

http mgmt          on
https mgmt        on
ssh mgmt          on
ping mgmt         on
snmp mgmt       on
http user login   on
https user login on

Has anyone had problems access X0 from the web interface? I am also not able to ping the interface. If I configure X4 via console I am able to login through the web interface from X4.

Thank You,
0
Comment
Question by:TermEcho
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 11

Expert Comment

by:packetguy
ID: 36582052
If you're running Transparent Mode on the NSA3500, then you can only access the management interface from the LAN side via HTTPS. Can you SSH from the LAN (X0) side?
0
 

Author Comment

by:TermEcho
ID: 36582584
Packetguy: I have not tried to ssh into X0, but I am unable to access it via http or https. I will try SSH.
0
 
LVL 8

Accepted Solution

by:
amatson78 earned 500 total points
ID: 36584771
The Sonicwall conversion is aketchy at best. It sounds like somewhere along the way something was corrupted and is not allowing you to access the X0 management interface. If you factory reset can you access the management on X0 again. Then re-import and see if it is broken again. While working at Sonicwall TAC I have seen this a number of times with conversions. Normally best recomendation is when going standard to enhanced build from scratch to ensure nothing becomes corrupted. While maybe only management access now it could get worse later in in full production.
0
 

Author Closing Comment

by:TermEcho
ID: 36600789
amatson78: Yes I have found that out. Upgrading from a standard to enhanced OS the converter does seem to be sketchy. Next to setting the device back to defaults, converting the Standard configuration with the Sonicwall Converter, and replacing a few firewall rules that did not carry over I am up and running again.

Thank You
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many old projects have bad code, but the budget doesn't exist to rewrite the codebase. You can update this code to be safer by introducing contemporary input validation, sanitation, and safer database queries.
No single Antivirus application (despite claims by manufacturers) will catch or protect you from all Virus / Malware or Spyware threats. That doesn't stop you from further protecting yourself however - and this article is to show you how.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question