Solved

Odd issues resolving websites after basic Sonicwall installation.

Posted on 2014-01-08
10
2,857 Views
Last Modified: 2014-05-20
Hello,

My problem is that I have purchased a TZ210 for the home to setup a small business. I have Verizon DSL and I was successful in getting them configured so that I had internet. However when I tried to go to ANY other website other than Google.com and Gmail, it would time out. I checked the sonicwall and it was inheriting the DNS IP's from Verizon just like the modem/router would. I then tried changing these to Google's DNS IP's of 8.8.8.8 and 8.8.4.4, This didn't resolve either and I received the same results. I am come to my wits end as well as a couple of my buddies so right the Soniwall is out and the Verizon DSL is reset. I did reassign IP's for them giving the Verizon box 10.0.1.1 with DHCP turned off and the Sonicwall 10.0.1.254. with DHCP on. I have some experience with Sonicwalls but this is the first time I am seeing this.

Thank you for your help.
0
Comment
Question by:Kevin Portell
  • 4
  • 3
  • 2
  • +1
10 Comments
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 39766125
Why does the Verizon box need a LAN IP? I would have thought that it would have been connected to the Sonicwall's WAN port. The Sonicwall would then perform all the necessary network functions for your LAN.
0
 

Author Comment

by:Kevin Portell
ID: 39766286
My apologies. I turned that off and and turned on bridge mode. The problem ensued.
0
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 39766405
The Sonicwall is in bridge mode? Then it can't route...

I suggest restoring the Sonicwall to its normal default configuration and connecting the modem to the WAN port in the normal way, and use the setup guide provided by Sonicwall. Then you can track down the misconfiguration that causing the grief. In fact, resetting the router to factory defaults might clear the error entirely, and allow you to configure it correctly this time around.
0
 

Author Comment

by:Kevin Portell
ID: 39766478
No, The modem/router that Verizon gives you is in bridge mode. Not the Sonicwall. That would be silly. I tried using the wizard however nothing worked.

Re-writen:

My problem is that I have purchased a TZ210 for the home to setup a small business. I have Verizon DSL and I was successful in getting them configured so that I had an intentet connection. However when I tried to go to ANY other website other than Google.com and Gmail, it would time out. I checked the sonicwall and it was inheriting the DNS IP's from Verizon just like the modem/router would. I then tried changing these to Google's DNS IP's of 8.8.8.8 and 8.8.4.4, This didn't resolve either and I received the same results. I have come to my wits end as well as a couple of my buddies.  So,  right the Soniwall is out and the Verizon DSL is reset.The Sonicwall has DHCP on and the modem/router is in bridge mode when the sonicwall is connected. I have some experience with Sonicwalls but this is the first time I am seeing this.
0
 
LVL 15

Expert Comment

by:Perarduaadastra
ID: 39766570
I thought it was silly too, but I was too polite to say so...

Right, so you have successfully connected the modem to the router. From a computer on the LAN, can you ping 4.2.2.2 successfully? If so, try pinging bbc.co.uk
If that works then DNS is working; however, I suspect that it won't.

In the DNS settings for your ISP on the Sonicwall, reverse the primary and secondary server entries so that the secondary ISP DNS server becomes the first one that the Sonicwall uses; the secondary servers aren't as busy as the primary ones, and every little helps.

From the same computer, open a command prompt and type: ipconfig /all

The gateway and DNS server addresses should be that of the Sonicwall ; if they aren't, change them to that address in the DHCP server configuration page and save the changes. Then release and renew the IP address on each client computer and see if they can access the internet normally.

One other thing to consider: Does Verizon have any particular requirements in regard to devices connected to its network? I ask because here in the UK there is (or was) at least one provider that uses the MAC address of the first device after the modem to identify the connection - this meant that changing the router caused limited or no connectivity until the system caught up with the change.
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 
LVL 18

Expert Comment

by:Jeremy Weisinger
ID: 39767068
I would run nslookup and verify the sites you're trying to go to are resolved correctly on the client.

If they are then run a tracert on it. See if and where it drops.

If DNS doesn't resolve, check to see where the client is querying. Is it using the SonicWall? Is it using an external DNS server?

If it's the latter then the SonicWall might be blocking DNS outbound.
0
 

Author Comment

by:Kevin Portell
ID: 39769425
Ok, so I can ping 4.2.2.2 and it resolves. I am currently using Googles free public DNS server (8.8.8.8) and everything is pings me however anything via port 80 seems to be blocked. Any features you know that would do this? Also, the nslookup resolves. I have even tried setting the WAN access rules to "Allow all" but same results.
0
 
LVL 24

Accepted Solution

by:
diverseit earned 500 total points
ID: 39770796
Hi LBSOverlord,

First off make sure you change WAN > {Anything} from Allow to Deny or Discard.

Let's step back a second here and do a direct-connect test. Connect your computer straight to the modem. Is the problem still there?

Then factory reset the SonicWALL by pressing the button on the back for 10-20 seconds with the power on until the wrench light starts blinking. Setup your computer to 192.168.168.168 and login and run the setup wizard if it doesn't pop-up. Make sure to select DSL and authenticate on the SonicWALL. This should resolve any config anomalies.

You may have to change your MTU settings to the appropriate value. Read this to set them correctly: http://www.experts-exchange.com/A_12615.html

Lastly, I'd allow the DNS to propagate from your ISP, rather than using google's because your ISP's DNS servers should be faster since they're in network.

Let  me know how it goes!
0
 

Author Comment

by:Kevin Portell
ID: 39777643
So, it seems that with PPoE connections (Which Verizon uses) you have to change the Interface MTU to  1492. A bit odd however after doing this for an hour with Sonic wall support (I totally forgot I had) everything worked just fine. However I have noticed that I am getting dropped occasionally for 20 seconds. I have a continuous ping up that I monitor while I am at my desk and I notice that "Requests timed out". I recorded the time between the intuitions and that is how I came to 20 seconds. This happens once about every 2 to 5 minutes. But that is another question for another day. I am just happy to have my Sonicwall working.

Thank you everyone for your help

diverseit, I totally missed your assistance and the link to the MTU information before posting. Thank you!
0
 
LVL 24

Expert Comment

by:diverseit
ID: 39778096
I'm glad you got it all straightened out. Thanks for the points!
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Join & Write a Comment

Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now