?
Solved

Sonicwall NSA 2400 + whitelist a URL not on port 80

Posted on 2016-07-27
3
Medium Priority
?
70 Views
Last Modified: 2016-10-03
Hi,

User has a college website which they need to access which is coming in on port 2103 (http://ezproxy.hiscollege.com:2103)

I have added the URL to the default policy whitelist but the browser still cannot load it. SonicWALL is not giving an error, there is just a standard page not loaded message, but I know that the reason it is being blocked is because of the firewall as this URL is available when outside the network.

Is there a specific way to allow access to a non-default port in a URL?

Thanks in advance for advice.
0
Comment
Question by:mewtd
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 20

Expert Comment

by:carlmd
ID: 41733040
Are you saying that users can access this url when on a public network outside the college, and coming throught the WAN of the Sonicwall, but cannot access it when on the LAN?
0
 

Author Comment

by:mewtd
ID: 41733787
Hi carlmd,
It's a work lan, and user is trying to access a college url for course work, submit project etc.
If I take him off the lan and get him out to the internet via mobile internet dongle the url loads fine.
Reconnect his Ethernet cable and the sonicwall blocks it, not via a blocked message, he just gets a cannot load page message.
Must be because of it not running over port 80?
Thanks for help.
0
 
LVL 20

Accepted Solution

by:
carlmd earned 2000 total points
ID: 41734716
It does not matter if he is not going out on port 80, as long as the response is on an ephemeral it will be permitted. I am guessing that whatever software is being used has a response on a specific port not in the ephemeral range, in which case it would be blocked. Typically colleges have a support site where you can get the information about what ports are being used. If you do that, and then open that port on the firewall, it shoud work.
0

Featured Post

Four New Appliances. Same Industry-leading Speeds.

But don't take it from us.  The Firebox M370 is Miercom tested and Miercom approved, outperforming its competitors for stateless and stateful traffic throughput scenarios.  Learn more about the M370, M470, M570 and M670 and find the right solution for your organization today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I recently had the displeasure of buying a new firewall at one of the buildings I play Sys Admin at. I had to get a better firewall than the cheap one that I had there since I was reconnecting the main office to the satellite office via point-to-poi…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question