Solved

Odd issues resolving websites after basic Sonicwall installation.

Posted on 2014-01-08
10
3,023 Views
Last Modified: 2014-05-20
Hello,

My problem is that I have purchased a TZ210 for the home to setup a small business. I have Verizon DSL and I was successful in getting them configured so that I had internet. However when I tried to go to ANY other website other than Google.com and Gmail, it would time out. I checked the sonicwall and it was inheriting the DNS IP's from Verizon just like the modem/router would. I then tried changing these to Google's DNS IP's of 8.8.8.8 and 8.8.4.4, This didn't resolve either and I received the same results. I am come to my wits end as well as a couple of my buddies so right the Soniwall is out and the Verizon DSL is reset. I did reassign IP's for them giving the Verizon box 10.0.1.1 with DHCP turned off and the Sonicwall 10.0.1.254. with DHCP on. I have some experience with Sonicwalls but this is the first time I am seeing this.

Thank you for your help.
0
Comment
Question by:Kevin Portell
  • 4
  • 3
  • 2
  • +1
10 Comments
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 39766125
Why does the Verizon box need a LAN IP? I would have thought that it would have been connected to the Sonicwall's WAN port. The Sonicwall would then perform all the necessary network functions for your LAN.
0
 

Author Comment

by:Kevin Portell
ID: 39766286
My apologies. I turned that off and and turned on bridge mode. The problem ensued.
0
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 39766405
The Sonicwall is in bridge mode? Then it can't route...

I suggest restoring the Sonicwall to its normal default configuration and connecting the modem to the WAN port in the normal way, and use the setup guide provided by Sonicwall. Then you can track down the misconfiguration that causing the grief. In fact, resetting the router to factory defaults might clear the error entirely, and allow you to configure it correctly this time around.
0
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

 

Author Comment

by:Kevin Portell
ID: 39766478
No, The modem/router that Verizon gives you is in bridge mode. Not the Sonicwall. That would be silly. I tried using the wizard however nothing worked.

Re-writen:

My problem is that I have purchased a TZ210 for the home to setup a small business. I have Verizon DSL and I was successful in getting them configured so that I had an intentet connection. However when I tried to go to ANY other website other than Google.com and Gmail, it would time out. I checked the sonicwall and it was inheriting the DNS IP's from Verizon just like the modem/router would. I then tried changing these to Google's DNS IP's of 8.8.8.8 and 8.8.4.4, This didn't resolve either and I received the same results. I have come to my wits end as well as a couple of my buddies.  So,  right the Soniwall is out and the Verizon DSL is reset.The Sonicwall has DHCP on and the modem/router is in bridge mode when the sonicwall is connected. I have some experience with Sonicwalls but this is the first time I am seeing this.
0
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 39766570
I thought it was silly too, but I was too polite to say so...

Right, so you have successfully connected the modem to the router. From a computer on the LAN, can you ping 4.2.2.2 successfully? If so, try pinging bbc.co.uk
If that works then DNS is working; however, I suspect that it won't.

In the DNS settings for your ISP on the Sonicwall, reverse the primary and secondary server entries so that the secondary ISP DNS server becomes the first one that the Sonicwall uses; the secondary servers aren't as busy as the primary ones, and every little helps.

From the same computer, open a command prompt and type: ipconfig /all

The gateway and DNS server addresses should be that of the Sonicwall ; if they aren't, change them to that address in the DHCP server configuration page and save the changes. Then release and renew the IP address on each client computer and see if they can access the internet normally.

One other thing to consider: Does Verizon have any particular requirements in regard to devices connected to its network? I ask because here in the UK there is (or was) at least one provider that uses the MAC address of the first device after the modem to identify the connection - this meant that changing the router caused limited or no connectivity until the system caught up with the change.
0
 
LVL 18

Expert Comment

by:Jeremy Weisinger
ID: 39767068
I would run nslookup and verify the sites you're trying to go to are resolved correctly on the client.

If they are then run a tracert on it. See if and where it drops.

If DNS doesn't resolve, check to see where the client is querying. Is it using the SonicWall? Is it using an external DNS server?

If it's the latter then the SonicWall might be blocking DNS outbound.
0
 

Author Comment

by:Kevin Portell
ID: 39769425
Ok, so I can ping 4.2.2.2 and it resolves. I am currently using Googles free public DNS server (8.8.8.8) and everything is pings me however anything via port 80 seems to be blocked. Any features you know that would do this? Also, the nslookup resolves. I have even tried setting the WAN access rules to "Allow all" but same results.
0
 
LVL 25

Accepted Solution

by:
Diverse IT earned 500 total points
ID: 39770796
Hi LBSOverlord,

First off make sure you change WAN > {Anything} from Allow to Deny or Discard.

Let's step back a second here and do a direct-connect test. Connect your computer straight to the modem. Is the problem still there?

Then factory reset the SonicWALL by pressing the button on the back for 10-20 seconds with the power on until the wrench light starts blinking. Setup your computer to 192.168.168.168 and login and run the setup wizard if it doesn't pop-up. Make sure to select DSL and authenticate on the SonicWALL. This should resolve any config anomalies.

You may have to change your MTU settings to the appropriate value. Read this to set them correctly: http://www.experts-exchange.com/A_12615.html

Lastly, I'd allow the DNS to propagate from your ISP, rather than using google's because your ISP's DNS servers should be faster since they're in network.

Let  me know how it goes!
0
 

Author Comment

by:Kevin Portell
ID: 39777643
So, it seems that with PPoE connections (Which Verizon uses) you have to change the Interface MTU to  1492. A bit odd however after doing this for an hour with Sonic wall support (I totally forgot I had) everything worked just fine. However I have noticed that I am getting dropped occasionally for 20 seconds. I have a continuous ping up that I monitor while I am at my desk and I notice that "Requests timed out". I recorded the time between the intuitions and that is how I came to 20 seconds. This happens once about every 2 to 5 minutes. But that is another question for another day. I am just happy to have my Sonicwall working.

Thank you everyone for your help

diverseit, I totally missed your assistance and the link to the MTU information before posting. Thank you!
0
 
LVL 25

Expert Comment

by:Diverse IT
ID: 39778096
I'm glad you got it all straightened out. Thanks for the points!
0

Featured Post

Watch Anatomy of a Wi-Fi Hack On-Demand

In less than a weekend, anyone with Internet access and some free time can become a Wi-Fi MitM to wreak havoc on your network. View our Wi-Fi Expert in an on-demand episode of our Secure Wi-Fi mini-series as he explores the motives, execution, and anatomy of a Wi-Fi hack.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question