Solved

Sonicwall NSA 2400 + whitelist a URL not on port 80

Posted on 2016-07-27
3
28 Views
Last Modified: 2016-10-03
Hi,

User has a college website which they need to access which is coming in on port 2103 (http://ezproxy.hiscollege.com:2103)

I have added the URL to the default policy whitelist but the browser still cannot load it. SonicWALL is not giving an error, there is just a standard page not loaded message, but I know that the reason it is being blocked is because of the firewall as this URL is available when outside the network.

Is there a specific way to allow access to a non-default port in a URL?

Thanks in advance for advice.
0
Comment
Question by:mewtd
  • 2
3 Comments
 
LVL 20

Expert Comment

by:carlmd
ID: 41733040
Are you saying that users can access this url when on a public network outside the college, and coming throught the WAN of the Sonicwall, but cannot access it when on the LAN?
0
 

Author Comment

by:mewtd
ID: 41733787
Hi carlmd,
It's a work lan, and user is trying to access a college url for course work, submit project etc.
If I take him off the lan and get him out to the internet via mobile internet dongle the url loads fine.
Reconnect his Ethernet cable and the sonicwall blocks it, not via a blocked message, he just gets a cannot load page message.
Must be because of it not running over port 80?
Thanks for help.
0
 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
ID: 41734716
It does not matter if he is not going out on port 80, as long as the response is on an ephemeral it will be permitted. I am guessing that whatever software is being used has a response on a specific port not in the ephemeral range, in which case it would be blocked. Typically colleges have a support site where you can get the information about what ports are being used. If you do that, and then open that port on the firewall, it shoud work.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
Network traffic routing plays key role in your network, if you have single site with heavy browsing or multiple sites, replicating important application data from your Primary Default Gateway ,you have to route your other network traffic from your p…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now