Sonicwall TZ215 nat policy

I put in a new sonicwall and the wan static ip is set and the lan ip is set and working.  We have several servers on the opt network.  We are able to get out to the internet on the opt network.  We are having trouble getting packets back in the opt network.

I can see in the logs that rdp, ping, and the software that tries to connect to the ip addresses on the opt network are being blocked.

Any suggestions on the policy I need to get the wan to talk to the opt network would be excellent.
cnesupportAsked:
Who is Participating?
 
cnesupportAuthor Commented:
Got the issue resolved. I had to create a bunch of custom nat policies and route statements.
0
 
Greg HejlPrincipal ConsultantCommented:
run the wizard on each server, this will open up the ports you need to each server IP.

the wizard is in the top right corner
0
 
cnesupportAuthor Commented:
Tried that but it isn't just simple port forwarding that needs to be done.
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
Greg HejlPrincipal ConsultantCommented:
create service objects for the ports you need opened and apply those to the service group used in the nat policies that was created when you ran the wizard.

you may also need to adjust your IDS policy for the opt network, it may be set to block low level threats (icmp, etc)

i would not expose rdp directly on a public ip - use a vpn connection instead
0
 
ZTeckCommented:
Have you tried to convert the OPT port as a DMZ zone? The, tried again. It maybe simple but can be over looked.
0
 
Greg HejlPrincipal ConsultantCommented:
Did my answer not direct you to your solution?  an assist would have been appropriate....
0
 
cnesupportAuthor Commented:
I had the issue resolved before you posted that.  I just had not been back here to post about it.  Also I had to manually create everything the wizard did not create the policies I needed in this instance.
0
 
cnesupportAuthor Commented:
Found solution on my own.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.