Sonicwall TZ215 nat policy

I put in a new sonicwall and the wan static ip is set and the lan ip is set and working.  We have several servers on the opt network.  We are able to get out to the internet on the opt network.  We are having trouble getting packets back in the opt network.

I can see in the logs that rdp, ping, and the software that tries to connect to the ip addresses on the opt network are being blocked.

Any suggestions on the policy I need to get the wan to talk to the opt network would be excellent.
cnesupportAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
cnesupportConnect With a Mentor Author Commented:
Got the issue resolved. I had to create a bunch of custom nat policies and route statements.
0
 
Greg HejlPrincipal ConsultantCommented:
run the wizard on each server, this will open up the ports you need to each server IP.

the wizard is in the top right corner
0
 
cnesupportAuthor Commented:
Tried that but it isn't just simple port forwarding that needs to be done.
0
Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

 
Greg HejlPrincipal ConsultantCommented:
create service objects for the ports you need opened and apply those to the service group used in the nat policies that was created when you ran the wizard.

you may also need to adjust your IDS policy for the opt network, it may be set to block low level threats (icmp, etc)

i would not expose rdp directly on a public ip - use a vpn connection instead
0
 
ZTeckCommented:
Have you tried to convert the OPT port as a DMZ zone? The, tried again. It maybe simple but can be over looked.
0
 
Greg HejlPrincipal ConsultantCommented:
Did my answer not direct you to your solution?  an assist would have been appropriate....
0
 
cnesupportAuthor Commented:
I had the issue resolved before you posted that.  I just had not been back here to post about it.  Also I had to manually create everything the wizard did not create the policies I needed in this instance.
0
 
cnesupportAuthor Commented:
Found solution on my own.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.