Improve company productivity with a Business Account.Sign Up

x
?
Solved

Firewall rule problems

Posted on 2013-01-17
4
Medium Priority
?
433 Views
Last Modified: 2013-01-28
We have a Sonicwall NSA 2400...  We were making some tweaks to our Firewall rules and accidentally deleted a WAN->LAN rule and now some of our websites won't connect.  For example my Dropbox service won't connect, https won't connect, and the internet has slowed down a bit.  

Within the logs it looks like it's now dropping connection to Dropbox servers and listing it as Intrusion Prevention.  ALso, we use a website for our Accounting and now that site will not connect over and https connection.  Any ideas on how to get this rule set back up without letting the world in?
0
Comment
Question by:Vontech615
  • 3
4 Comments
 
LVL 9

Expert Comment

by:Sandeep Gupta
ID: 38787199
do you write the changes in FW?

if not then reload in once
0
 
LVL 1

Author Comment

by:Vontech615
ID: 38787206
Well, the deletion was made within the GUI to CLI so I'm assuming it was written to.
0
 
LVL 1

Accepted Solution

by:
Vontech615 earned 0 total points
ID: 38787605
We tracked down a problem.  There were 3 rules related to http,https, & ICMP that were deleted.
 
The rule structure were as follows:

1. DMZ->LAN --- allow:  http, https, ICMP
2.WAN->LAN --- allow:  http, https, ICMP
3.WAN->DMZ --- allow:  http, https, ICMP
0
 
LVL 1

Author Closing Comment

by:Vontech615
ID: 38826134
I was able to solve this problem myself.
0

Featured Post

Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question