Re: Sonicwall blocks secondary IP addresses?

From: shope (stephen_hope_at_xx.ntlworld.com)
Date: 12/16/03

• Next message: \: "Re: Kerio"
• Previous message: Sako: "Re: HELP - WEIRD problem. Cannot connect to netscape.com from XP"
• In reply to: Tim W: "Sonicwall blocks secondary IP addresses?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Tue, 16 Dec 2003 13:25:01 -0000

"Tim W" <tim@webwizmedia.com> wrote in message
news:4d60d73b.0312091321.3af54f88@posting.google.com...
> Hello:
>
> I've run into problems with our new sonic wall pro 330. My main
> problem is we are running it for a web hosting company which has
> machines with multiple IP addresses. Each network card in each machine
> has more than 1 IP address bound to it, for specific functions. In
> some cases some web sites get their own IP addresses which should be
> fine except sonic wall detects it as some sort of attack or IP spoof.
> I have talked with Sonic Wall's support and received very few answers
> other than it wont work with the latest firmware, or even the 2
> previous. I was told to go back to firmware dated over a year old now,
> which seems to be working but this is not a proper solution. I would
> imagine that a sonic wall could handle passing traffic to any IP
> address bound to a network card behind it, but it appears as though it
> resolves it to a MAC address, and will only pass it to the primary IP
> address of the machine.

Hide the devices behind a real router - that way the Sonicwall wont be able
to tell that the different IP addresses have the same MAC. This also implies
you have to change the IP addressing to spearate Sonicwall on a different
subnet to the servers.

But - that means everything coming through the router (lots of different
IPs) will have the same MAC....

So - Sonicwall must be being a bit more subtle - perhaps they only perform
the check for devices in the local subnet.
>
> Any help is greatly appreciated.
>
> Thanks,
>
> Tim W

-- 
Regards
Stephen Hope - remove xx from email to reply

---

• Next message: \: "Re: Kerio"
• Previous message: Sako: "Re: HELP - WEIRD problem. Cannot connect to netscape.com from XP"
• In reply to: Tim W: "Sonicwall blocks secondary IP addresses?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Baseline results... ... I tried the Sonic Wall account and got the same results ... James wrote: ... If you think it's the SonicWall, ... network cablebetween the SonicWall and the SBS, ... (microsoft.public.windows.server.sbs) Re: Sonicwall blocks secondary IP addresses? ... >> fine except sonic wall detects it as some sort of attack or IP spoof. ... >Not that I know the Sonicwall or anything, but it seems to me that the MAC ... >switch between the Sonicwall and the server farm? ... (comp.security.firewalls) Re: SonicWall Syslog Server Setup on SBS 2003 ... Go to Sonic Wall and look to see if they have any white papers on this. ... Software to ready the logs but they should have something for you on this. ... > for SonicWall to log to. ... (microsoft.public.windows.server.sbs)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)