Allow Telnet to server behind a Sonicwall

How do I setup a Sonicwall TZ300 to allow me to telnet into a server on the local lan behind the sonicwall?
hwlambertAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Russ SuterCommented:
On which port(s)?

You should just be able to set up port forwarding but you need to know what you're going to Telnet into and on what port that service is listening in order for that to work. Bear in mind that you're about to punch a hole in your security. It would be more advisable to setup a VPN instead.
0
hwlambertAuthor Commented:
The user is logging into a very old Alpha Micro Server through telnet on port 23.  I would like to setup a VPN to get them in.
0
Russ SuterCommented:
VPN is definitely the way to go. We have a TZ300 at work with VPN services enabled but I cannot remember off the top of my head how it was originally configured. I can get back to you tomorrow when I can look at the VPN settings.

In the meantime, either of these YouTube videos might be of some help:
https://www.youtube.com/watch?v=bBoAZugL4kA
https://www.youtube.com/watch?v=qPv-tz-zN6A

The first is standard VPN setup. The second is SSL VPN.
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

Blue Street TechLast KnightCommented:
Hi hwlambert,

How do I setup a Sonicwall TZ300 to allow me to telnet into a server on the local lan behind the sonicwall?
I'd strongly recommend against this practice entirely, locally or from the WAN (Port Forwarding), as it is a Security Bad Practice. The telnet service is dangerous since it is not encrypted - anyone can sniff the data that passes between the telnet client & the server includes credentials; hackers hackers can use it to tunnel through the firewall.

FYI: SSH (Secure Shell) is the predecessor to Telnet and should be used in its place as a secure method for remote management but again not directly from the WAN.

If you are looking to remotely manage a server from the WAN then setup an SSL-VPN on the SonicWALL. That will provide you secure remote access to any segment of the network or just a few servers (however you prefer). Then from there you can RDP into the servers because you will be on the network as if you had a machine on the LAN or whichever segment you need access to.

I can better advise you if you tell me what your goal is?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
hwlambertAuthor Commented:
I have setup an SSL-VPN and it is working. My concern was the old server being maintained. I know the VPN is the most secure and just jumped in and got it setup.  Thanks for your help.
0
Russ SuterCommented:
So your issue is resolved now?
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.