Solved

Sonicwall SSL-VPN 2000 Time Keeps Changing

Posted on 2014-10-07
3
389 Views
Last Modified: 2014-10-08
We have a Sonicwall SSL-VPN 2000 that is currently in prodcution for some legacy users/software. Every now and then, the device will get hung up and we'll have to reboot it. Upon reboot, it will give us an error about the time being out of sync with Active Directory.

When I go to the time page, the time is always 10 minutes ahead of the actual time. I've tried syncing to various ntp servers but it stays 10 minutes ahead. If I manually change the time, it works until the next hangup/reboot.

Is there a setting I can change to make the time fall in line automatically with the ntp servers?
Is the SSL-VPN somehow picking up time from somewhere that is 10 minutes ahead?
Do I look fat in this dress?
0
Comment
Question by:Paul Wagner
  • 2
3 Comments
 
LVL 38

Accepted Solution

by:
Aaron Tomosky earned 500 total points
ID: 40369209
add your dc as the time server, make sure to check the box "Only use custom NTP servers". you should see it in the log as a "firewall event"

Here is one of my log events, I changed the ip of my dc to xx

10/08/2014 12:12:03.752      Notice      Firewall Event      System time updated based on response from NTP server                    Received reply from NTP server 10.xx
.xx.xx. Update system time from 10/0
8/2014 12:12:03.336 to 10/08/2014 12
:12:03.752
0
 
LVL 3

Author Closing Comment

by:Paul Wagner
ID: 40369267
Exactly what I needed. Didn't even think of using my AD/DC server as the address. Thought it had to be some government ntp thing. Face-palm. Thanks for the help!
0
 
LVL 38

Expert Comment

by:Aaron Tomosky
ID: 40369346
I've always heard that the AD/DC should have a external time source, and then everything else should point to it. If you virtualize, you can point your hosts to the dc and then your vms to the host to avoid a ton of things hitting your dc.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Sonicwall VPN 17 60
Sonicwall SSO 11 40
need rec's for prioritizing bandwidth for new voip system 12 57
Gateway Resilience 4 16
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now