Solved

Firewall rule problems

Posted on 2013-01-17
4
420 Views
Last Modified: 2013-01-28
We have a Sonicwall NSA 2400...  We were making some tweaks to our Firewall rules and accidentally deleted a WAN->LAN rule and now some of our websites won't connect.  For example my Dropbox service won't connect, https won't connect, and the internet has slowed down a bit.  

Within the logs it looks like it's now dropping connection to Dropbox servers and listing it as Intrusion Prevention.  ALso, we use a website for our Accounting and now that site will not connect over and https connection.  Any ideas on how to get this rule set back up without letting the world in?
0
Comment
Question by:Vontech615
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 9

Expert Comment

by:Sandeep Gupta
ID: 38787199
do you write the changes in FW?

if not then reload in once
0
 
LVL 1

Author Comment

by:Vontech615
ID: 38787206
Well, the deletion was made within the GUI to CLI so I'm assuming it was written to.
0
 
LVL 1

Accepted Solution

by:
Vontech615 earned 0 total points
ID: 38787605
We tracked down a problem.  There were 3 rules related to http,https, & ICMP that were deleted.
 
The rule structure were as follows:

1. DMZ->LAN --- allow:  http, https, ICMP
2.WAN->LAN --- allow:  http, https, ICMP
3.WAN->DMZ --- allow:  http, https, ICMP
0
 
LVL 1

Author Closing Comment

by:Vontech615
ID: 38826134
I was able to solve this problem myself.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question