Sonicwall Enhanced With One-To-One NAT, Firewall Blocking Everything

Posted by Justin on Server Fault See other posts from Server Fault or by Justin
Published on 2011-01-08T05:36:44Z Indexed on 2011/01/08 5:55 UTC
Read the original article Hit count: 274

Filed under:

sonicwall

Hello, just migrated from a Sonicwall TZ180 (Standard) to a Sonicwall TZ200 (Enhanced). Everything is working except the firewall rules are blocking everything. All hosts are online, and being assigned correct ip addresses. I can browse the internet on the hosts.

I am using one-to-one NAT translating public ip addresses to private.

  64.87.28.98 -> 192.168.1.2
  64.87.28.99 -> 192.168.1.3
  etc

First order of business is to get ping working. My rule is in the new firewall is (FROM WAN to LAN):

 SOURCE    DESTINATION                SERVICE    ACTION      USERS
 ANY       192.168.1.2-192.168.1.6    PING       ALLOW       ALL

This should be working, but not. I even tried changing the destination to the public ip addresses, but still no luck.

 SOURCE    DESTINATION                 SERVICE    ACTION      USERS
 ANY       64.87.28.98-64.87.28.106    PING       ALLOW       ALL

Any ideas what I am doing wrong?

Related posts about sonicwall

Tunnel into Sonicwall VPN while on Sonicwall wifi?

as seen on Server Fault - Search for 'Server Fault'
Hey all, I am able to hit my company's VPN while I am at home using a dedicated IP with no issue. When I am at work, the VPN we use (a Sonicwall router/VPN/wifi access point), I can get outside internet fine, but am unable to connect to the VPN. I know that the wifi puts me on a different subnet… >>> More
Connect iPhone to Sonicwall VPN

as seen on Super User - Search for 'Super User'
Is there any way to connect an iPhone to a Sonicwall VPN? The specific model is Sonicwall TZ180 Standard, running SonicOS Standard 3.8.0.1-27s. Thank you. >>> More
Snow Leopard and SonicWall NetExtender VPN?

as seen on Super User - Search for 'Super User'
I recently upgraded from Leopard to Snow Leopard, and now I'm having strange issues with a previously working NetExtender. After debugging a "can't read/execute /etc/ppp/peers" problem (since /etc/ppp didn't exist) and following the advice on the Apple support forums (I tried a clean install, and… >>> More
Sonicwall NSA 240 or Netgear ProSecure UTM 25

as seen on Server Fault - Search for 'Server Fault'
Hi! I'm about to buy a new firewall and I’m choosing between a Sonicwall NSA 240 and a Netgear ProSecure UTM 25. I have already done research for which kind of firewall I need and limit it to these two, now I just have to choose between them. But what I don’t know is which one of them is easiest… >>> More
Sonicwall TZ 210 Enhanced OS - Allow Wireless to talk VPN

as seen on Server Fault - Search for 'Server Fault'
Does anyone know how to allow the WLAN access to talk to a VPN subnet that is set up on a Sonicwall TZ 210 Enhanced? I got the WLAN (192.168.2.X) talking to the LAN (192.168.1.X), but I also need to the WLAN to talk to the VPN (192.168.3.X) Thanks! >>> More

Developer IT