troubleshooting Question

Cannot Access my New Firewall on Private 192.168 Network Due to Security Risk/Warnings

Avatar of Chip Levinson
Chip LevinsonFlag for United States of America asked on
NetworkingSecuritySonicWallFirefoxAnti-Virus Apps
4 Comments1 Solution8 ViewsLast Modified:

Hi,

I recently installed a SonicWall TZ270 Firewall in my home office environment.  I have four different "zones" set up.  The work zone has my main work PC, a Windows 2012 file server, a NAS device, and a network printer in it.  I am having several problems on start-up that I think are coming from my configuration and policy.


First, the work network is currently on the 192.168.1.xxx private network.  Ido have plans to move it off this default/common private network IP range.  When I try to log into my SonicWall device which is at 192.168.1.ABC I get multiple error messages.  I first get a message from BitDefender that the site is unsafe and I should go back.  It gives me the option of adding the site to an exception list.  Sorry, I cannot recreate the exact message.  When I say it is fine I get a further warning from Firefox or Chrome.  The Firefox warning:


Firefox detected a potential security threat and did not continue to 192.168.1.ABC. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.


The Chrome warning says:

Your connection is not private
Attackers might be trying to steal your information from 192.168.1.19 (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERT_AUTHORITY_INVALID


Originally, based on a training video SonicWall posted about setup, I set up policies allowing only certain traffic from "Work" to WAN.  I was only allowing DNS, HTTP, HTTPS, PING, and FTP.  A number of services did not work (email, remote access to a network via Citrix) so I eventually added a policy that allows ALL traffic from "Work" to WAN.  My plan is to address this in a separate question. 


1. Based on my firewall and its configuration, is there any risk in my going to this private address?  I assume not, but want to confirm.  I can always access the TZ270 using a laptop that is not in my Work network.

2. How do I stop this message from coming up every time I go to the site?  Is there a problem with the certificate on the firewall?  I would prefer to fix the problem as opposed to adding an exception, but an exception is OK if that is the best way to fix it and is safe.

ASKER CERTIFIED SOLUTION
David Johnson, CD
The More I know, the more I don't know
Log in to continue reading
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform for $9.99/mo
View membership options
Unlock 1 Answer and 4 Comments.
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
The Value of Experts Exchange in My Daily IT Life

Experts Exchange (EE) has become my company's go-to resource to get answers. I've used EE to make decisions, solve problems and even save customers. OutagesIO has been a challenging project and... Keep reading >>

Mike

Owner of Outages.IO
Phoenix, Arizona, United States
Member Since 2016
Join a full scale community that combines the best parts of other tools into one platform.
Unlock 1 Answer and 4 Comments.
View membership options
“All of life is about relationships, and EE has made a virtual community a real community. It lifts everyone's boat.”
William Peck

Member since 2004