Solved

Sonicwall conversion from standard to enhanced

Posted on 2011-09-22
4
1,084 Views
Last Modified: 2012-05-12
I have a PRO 2040 Standard (firmware: SonicOS Standard 3.1.6.3-4s) and I just purchased a Sonicwall NSA 3500 Enhanced (firmware: SonicOS Enhanced 5.8.1.0-30o). I have used the Sonicwall Configuration Converter (https://convert.global.sonicwall.com/). After converting the configuration I did receive a few notes indicating that:
1. Transparent mode on WAN->DMZ enabled but no network ranges defined!
     VPN GroupVPN will use SiteA as local IKE ID

     VPN SiteB will use SiteA as local IKE ID

     VPN SiteC will use SiteA as local IKE ID

This is fine, from what I can tell and the response that I have been given from Sonicwall is that it is only indicating what is will use for the loal IKE ID for each of my satellite locations. Can anyone that has seen this issue in the past verify?

2. My second issue is before uploading the converted configuration I was able to access the web interface through X0, but after uploading the converted configuration I am unable to login through the web interface. When consoled into the NSA 3500 I am able to verify:

http mgmt          on
https mgmt        on
ssh mgmt          on
ping mgmt         on
snmp mgmt       on
http user login   on
https user login on

Has anyone had problems access X0 from the web interface? I am also not able to ping the interface. If I configure X4 via console I am able to login through the web interface from X4.

Thank You,
0
Comment
Question by:TermEcho
  • 2
4 Comments
 
LVL 11

Expert Comment

by:packetguy
ID: 36582052
If you're running Transparent Mode on the NSA3500, then you can only access the management interface from the LAN side via HTTPS. Can you SSH from the LAN (X0) side?
0
 

Author Comment

by:TermEcho
ID: 36582584
Packetguy: I have not tried to ssh into X0, but I am unable to access it via http or https. I will try SSH.
0
 
LVL 8

Accepted Solution

by:
amatson78 earned 500 total points
ID: 36584771
The Sonicwall conversion is aketchy at best. It sounds like somewhere along the way something was corrupted and is not allowing you to access the X0 management interface. If you factory reset can you access the management on X0 again. Then re-import and see if it is broken again. While working at Sonicwall TAC I have seen this a number of times with conversions. Normally best recomendation is when going standard to enhanced build from scratch to ensure nothing becomes corrupted. While maybe only management access now it could get worse later in in full production.
0
 

Author Closing Comment

by:TermEcho
ID: 36600789
amatson78: Yes I have found that out. Upgrading from a standard to enhanced OS the converter does seem to be sketchy. Next to setting the device back to defaults, converting the Standard configuration with the Sonicwall Converter, and replacing a few firewall rules that did not carry over I am up and running again.

Thank You
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this increasingly digital world, security hacks are no longer just a threat, but a reality. As we've witnessed with Target's big identity hack 2013, Heartbleed in 2015, and now Cloudbleed, companies and their leaders need to prepare for the unthi…
It’s the first day of March, the weather is starting to warm up and the excitement of the upcoming St. Patrick’s Day holiday can be felt throughout the world.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question