RE: [fw-wiz] UPS Worldship connection problems with new firewall device

From: List Account (list.account_at_cerdant.com)
Date: 08/26/05

  • Next message: Servie Platon: "RE: [fw-wiz] UPS Worldship connection problems with new firewall device" 
    To: "'Servie Platon'" <servie_tech@yahoo.com>, <firewall-wizards@honor.icsalabs.com>
Date: Fri, 26 Aug 2005 16:36:00 -0400

    What version of SonicOS are you running? Standard or Enhanced?
    Are there any log messages generated in the SonicWALL when the user attempts
    to connect to the site?
    If you're running SonicOS Enhanced 3.1 or greater, have you done a packet
    capture and saved it to a libpcap file? Can you post this file if so.

    Nathan Grandbois, CISSP, CSSA
    Cerdant, Inc.
    614.717.0123 ext. 26

    >-----Original Message-----
    >From: firewall-wizards-admin@honor.icsalabs.com
    >[mailto:firewall-wizards-admin@honor.icsalabs.com] On Behalf
    >Of Servie Platon
    >Sent: Wednesday, August 17, 2005 8:52 PM
    >To: firewall-wizards@honor.icsalabs.com
    >Subject: [fw-wiz] UPS Worldship connection problems with new
    >firewall device
    >
    >
    >
    >Hello FW-Wizards and gurus,
    >
    >I have upgraded my Sonicwall SOHO3 to TZ170 a couple
    >of weeks back for my small office network.
    >
    >Everything seems to be working fine except for one
    >laptop which accesses UPS (United Parcel Service)
    >Worldship network.
    >
    >As its description from the UPS website. UPS
    >WorldShipR is a full featured, WindowsR-based,
    >shipping software application for customers with high
    >volume shipping needs. WorldShip allows customers to
    >accelerate, streamline and enhance not only their shipping
    >processes, but financial and customer service processes as well.
    >
    >When we first installed the program in one of the
    >laptops, it seems to be working fine with the SOHO3
    >firewall.
    >
    >And when, we upgraded to the Sonicwall TZ170, that's
    >when the problem started to set in. We were told by
    >UPS technical support since we have upgraded a
    >firewall appliance, the firewall rules may have
    >blocked inbound and outbound communication between our
    >small office network and UPS's network.
    >
    >Furthermore, we were told that we need to enable
    >support for gethostip.exe, shipups.exe, upslnkmg.exe
    >alongside allowing access for 153.2.x.x network.
    >
    >Since I don't see any documentation on this Sonicwall
    >TZ170 to do the adding of .exe files to the firewall
    >that supports this method.
    >
    >I am uncertain though, whether my firewall rules have
    >something to do with it? AFAIK, other services such as
    >mail, terminal services are working fine except for
    >this one.
    >
    >One odd thing that puzzles me is that if my boss
    >brings this laptop to his house and connect it to his
    >Home network through his router, he could connect to
    >UPS and be able to do work and send info in a
    >bi-directional manner.
    >
    >Whereas, if he returns to the office he gets an Error
    >Code 53670 which according UPS has something to do
    >with our firewall and dns resolution.
    >
    >I have attempted and failed to enable this feature and
    >am hoping that maybe someone may have encountered this
    >problem in the past who may have the solution.
    >
    >Again, thank you very much.
    >
    >Very sincerely yours,
    >Servie
    >
    >__________________________________________________
    >Do You Yahoo!?
    >Tired of spam? Yahoo! Mail has the best spam protection around
    >http://mail.yahoo.com
    >_______________________________________________
    >firewall-wizards mailing list firewall-wizards@honor.icsalabs.com
    >http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
    >

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Servie Platon: "RE: [fw-wiz] UPS Worldship connection problems with new firewall device"

    Relevant Pages

    • Re: How secure is our server?
      ... I have a SonicWall TZ170 that I'm thoroughly satisfied with, ... cost devices are better. ... the strangers outside your network are a much greater risk than the person ... ISA is the firewall component in SBS 2003 Premium, ...
      (microsoft.public.windows.server.sbs)
    • RE: Odd SonicWall behavior
      ... SonicWall answered the telnet... ... I help out one of the labs at my university keep their network up and pcs ... From my (outside their firewall) I did ... the lab director unplugged each pc one by one from the ...
      (Security-Basics)
    • [fw-wiz] UPS Worldship connection problems with new firewall device
      ... of weeks back for my small office network. ... As its description from the UPS website. ... firewall appliance, ...
      (Firewall-Wizards)
    • Re: [fw-wiz] UPS Worldship connection problems with new firewall device
      ... Create a rule allowing all ports to and from the 153.2.x.x network. ... Call the UPS help desk. ... > firewall appliance, ...
      (Firewall-Wizards)
    • Re: Sonicwall One-to-One NAT vs. DMZ
      ... that you're looking to access the SonicWALL firewall management from the WAN ... This version introduced HTTPS management of the firewall. ... >> inside the network, you can only use the inside address I, and not the ... >in mind, if you use a DMZ port, and somebody breaks into the computer on ...
      (comp.security.firewalls)