Solved

Need to forward secondary IP address to private address on SonicWall w/SonicPoints

Posted on 2013-06-18
3
729 Views
Last Modified: 2016-11-23
First, a little background.  I have a new SonicWall TZ-215 and four SonicPoints.  The SonicPoints are connected to a Dell PowerConnect 3548P where they get their Power-Over-Ethernet.  It was my understanding that the SonicPoints would 'find' the TZ firewall and provision themselves.  After several hours and failed attempts at getting this to work, I found this web page which had the answer (http://briandagan.com/fix-configuring-sonicpoint-aps-on-a-sonicwall).  Apparently, if the SonicPoints aren't directly plugged into the SonicWall, they won't be seen by the SonicWall without the workaround above.  The workaround connects the PowerConnect switch (which the SonicPoints are connected to) to the X2 and then bridges the X2 interface to X0 (the LAN interface).  The SonicPoints found the firewall and provisioned themselves just fine.

What does this have to do with forwarding a secondary IP address?  I don't know.  Maybe nothing, but I can't seem to get it to work.  I have 5 public addresses for a multi-tenant building.  The HVAC (Heating and AC) company cannot configure the listening port on their web-based system from port 80 to something else.  We've decided to use a second public IP address and forward port 80 straight to their equipment (still on port 80).  I've used the Pubic Server Wizard and it looks like it did everything it was supposed to do.  I confirmed this by visually verifying what I see in the firewall configuration with the information from this link http://www.experts-exchange.com/Hardware/Networking_Hardware/Firewalls/Q_25016206.html

I've turn Packet Monitoring on and filtered on the 2nd pubic address.  I can see in Packet Monitor that the external public address is being forwarded to the correct internal private IP address (FORWARDED) and using port 80.  When I try to http from an external browser to the 2nd public IP address, it fails.  Accessing the HVAC system from inside the building works fine.

I can't help but think that the 'workaround' for SonicPoints has created this issue.  One reason is because the Public Server Wizard is wanting to direct traffic to the WLAN zone instead of the LAN zone (as configured from the link above).  Once the rule is created, I can't edit it to LAN.  I've tried changing the NAT policy from WLAN to LAN, but that didn't seem to do anything.  I'm pretty desperate to get this work because the grand opening of the building is tomorrow and this has to work.  Any help would be appreciated.
0
Comment
Question by:lrbarrios
  • 3
3 Comments
 

Author Comment

by:lrbarrios
ID: 39257078
UPDATE: I just looked at Packet Monitor again and can see that the internal IP address is responding back to my public IP address here at the home.
	--	X2*	9x.94.2x0.xx	192.168.168.35	IP	TCP	52074,80	FORWARDED	78[78]
	X2*(i)	X1	192.168.168.35	9x.94.2x0.xx	IP	TCP	80,52074	FORWARDED	60[60]

Open in new window


So what's the problem?  Is it the X2 interface which is bridged to X0?
0
 

Accepted Solution

by:
lrbarrios earned 0 total points
ID: 39267252
Turns out that the links I included above worked as advertised.  When I got onsite, I found that I couldn't connect to the HVAC equipment locally via HTTP.  Firefox kept saying 'Connection reset by server' and Internet Explorer just said 'Cannot display this webpage'.  The internal IP address was responding to ping, however.  I asked the HVAC tech to reset their server box.  After it came back up, everything worked fine.  The HVAC equipment could be accessed via the Internet.  It comes back to what I always tell my users... "Have you tried rebooting yet?"
0
 

Author Closing Comment

by:lrbarrios
ID: 39267256
I'm glad I tried to access the HVAC device locally before spending who knows how long trying to fix a firewall configuration that wasn't broken.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
AD FSMO Issues 14 91
E-mail alerts from Cisco ASA Firepower 3 47
Restrict RDP Remote Access through SonicWall 3 95
Sonicwall blocks a site 49 56
Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now