• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2979
  • Last Modified:

sonicwall can not login ~URGENT~

Hi,

We just purchased a NSA 2600.  Once it is setup, I can not see the login page. Here is the error from different browser:

Google Chrome:
This site can’t provide a secure connection

192.168.78.4 uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
HIDE DETAILS
Unsupported protocol
The client and server don't support a common SSL protocol version or cipher suite.


IE:
please be patient as you are being redirected to a secure login page  (That means the box is working)
Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to https://192.168.78.4  again. If this error persists, it is possible that this site uses an unsupported protocol or cipher suite such as RC4 (link for the details), which is not considered secure. Please contact your site administrator.


Please help..thanks
0
mcrmg
Asked:
mcrmg
  • 4
  • 4
1 Solution
 
NPProjectsCommented:
Did you change any of the default ports on it when you set it up? Such as the HTTP Port?
0
 
mcrmgAuthor Commented:
no, I only changed lan ip to one our internal unused ip..thanks
0
 
J SpoorTMECommented:
This is due to old frimare and RC4 cipher.

Login with IE.
after login change main.html into diag.html
e.g. https://192.168.168.168/diag.html

find the enforce RC4 cipher. Disable this check box, this will trigger a reboot.
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
mcrmgAuthor Commented:
one quick question, how do I connect to the box now? Via management port?  
If that is the case, do I use the new lan ip or default?  which is 192.168.1.254

thanks
0
 
J SpoorTMECommented:
via mgmtm port the default IP is 192.168.1.254
0
 
J SpoorTMECommented:
but you can also do this on 192.168.78.4

just use IE. IE still accepts the RC4 cipher.
0
 
mcrmgAuthor Commented:
okay,

I connect it via management port using 192.168.1.254 (192.168.78.4 did not work)

I am still getting the same error I posted earlier....    :(   any ideas?  thanks
0
 
J SpoorTMECommented:
yes, use Internet Explorer.

As I said, the error is due to that firmware enforcing RC4 cipher. Chrome and Firefox no longer accept that cipher.

other option is boot to safemode and upload the latest firmware 6.2.5
0
 
mcrmgAuthor Commented:
That's it. I found an old XP laptop in the office that has not been turned on for at least 3 years.  I used IE to log in and unchecked it.  Thank you very much
0

Featured Post

Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now