• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1139
  • Last Modified:

Sonicwall conversion from standard to enhanced

I have a PRO 2040 Standard (firmware: SonicOS Standard 3.1.6.3-4s) and I just purchased a Sonicwall NSA 3500 Enhanced (firmware: SonicOS Enhanced 5.8.1.0-30o). I have used the Sonicwall Configuration Converter (https://convert.global.sonicwall.com/). After converting the configuration I did receive a few notes indicating that:
1. Transparent mode on WAN->DMZ enabled but no network ranges defined!
     VPN GroupVPN will use SiteA as local IKE ID

     VPN SiteB will use SiteA as local IKE ID

     VPN SiteC will use SiteA as local IKE ID

This is fine, from what I can tell and the response that I have been given from Sonicwall is that it is only indicating what is will use for the loal IKE ID for each of my satellite locations. Can anyone that has seen this issue in the past verify?

2. My second issue is before uploading the converted configuration I was able to access the web interface through X0, but after uploading the converted configuration I am unable to login through the web interface. When consoled into the NSA 3500 I am able to verify:

http mgmt          on
https mgmt        on
ssh mgmt          on
ping mgmt         on
snmp mgmt       on
http user login   on
https user login on

Has anyone had problems access X0 from the web interface? I am also not able to ping the interface. If I configure X4 via console I am able to login through the web interface from X4.

Thank You,
0
TermEcho
Asked:
TermEcho
  • 2
1 Solution
 
packetguyCommented:
If you're running Transparent Mode on the NSA3500, then you can only access the management interface from the LAN side via HTTPS. Can you SSH from the LAN (X0) side?
0
 
TermEchoAuthor Commented:
Packetguy: I have not tried to ssh into X0, but I am unable to access it via http or https. I will try SSH.
0
 
amatson78Commented:
The Sonicwall conversion is aketchy at best. It sounds like somewhere along the way something was corrupted and is not allowing you to access the X0 management interface. If you factory reset can you access the management on X0 again. Then re-import and see if it is broken again. While working at Sonicwall TAC I have seen this a number of times with conversions. Normally best recomendation is when going standard to enhanced build from scratch to ensure nothing becomes corrupted. While maybe only management access now it could get worse later in in full production.
0
 
TermEchoAuthor Commented:
amatson78: Yes I have found that out. Upgrading from a standard to enhanced OS the converter does seem to be sketchy. Next to setting the device back to defaults, converting the Standard configuration with the Sonicwall Converter, and replacing a few firewall rules that did not carry over I am up and running again.

Thank You
0

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now