Unblocking sonicwall

Site is :
Sonicwall Firewall connected to a dumb 8 port Switch. AP, Server, and VOIP phone are connected to the same switch.
We connected a brand new Uni-Fi AP, can ping it. Connect to new AP, things are working OK. Do a speedtest and at the upload part of the test, the entire network goes AWOL. Unplugging the Uni-Fi brings it back. No IP conflict, no network loop we can see. It's like something happens during the upload on the speedtest that locks the switch up, and it's immediately unblocked when the AP is disconnected. Same thing happens with another identical AP, with updated firmware.
When I say the network goes AWOL, nothing connected to the switch, can connect to anything else, wirelessly or via LAN cable. DHCP, running on the server doesn't work, and even the connection to the internet is unavailable.
Anyone seen anything like this before?
No issues with the current AP onsite (cambium). no history of similar issues on this site.

Quick post on my experience with getting AT&T Business Fiber 1000S installed. Monthly price $175/mo including statics plus tax/fees which I haven't seen yet.
15 story office building, built in 1970s era.
Install communication was fairly good. 8am-4pm window. Installer arrived at 3pm. Said install would take 4 hours but finished by 5pm. On signup, I was given a calendar to pick an install date. The date I selected wasn't very far out and was never changed by AT&T.
We ordered 5 static IPs for $15/mo. I spent a good bit of time trying to sort out Passthru vs Cascaded router. We have a Sonicwall and a Mikrotik router that both need a public IP address. (We had Comcast and used Passthru.) Ultimately managed to get what I needed working with Passthru.
First problem was that the installer did NOT leave me with my static IP info. I had to call support to get that information. It is not in the modem web config that I could find. The IP address listed in the modem details isn't your static IP. It's just the modem's individual public IP address.
Settings to make IP passthrough work:

• Firewall > IP Passthrough
  • Allocation Mode: Passthrough
  • Passthrough Mode: Manual
• Firewall > Firewall Advanced
  • All set to OFF
• Firewall > Packet Filter
  • Disable Packet Filters
• Home Network > Subnets & DHCP
  • Public Subnet Mode: On
  • Allow Inbound Traffic: On
  • Public Gateway Address: (last usable IP address before broadcast address in your block)
  • Public Subnet Mask: 255.255.255.248 (for 5 usable IP, will differ if you have more)
  • DHCPv4 Start Address: 1st usable IP address**
  • DHCPv4 End Address: 2nd to last usable IP address**
  • Primary DHCP Pool: Public
  • **Note if your IP range AT&T gives you is x.136 - x.143 then your usable range is x.137 - x.142 with x.142 being your gateway (last usable) and x.137 being your first usable. (your second to last usable should be the .141. adjust accordingly to your own specific range.)
• Separate Network Equipment
  • At this point, I just assigned my IP addresses manually in the configuration of my Sonicwall and Mikrotik devices. I used the last usable IP address as the gateway. All worked.

We also run an Exchange server and I am a terrible IT person and need SMTP outgoing to work. AT&T blocks SMTP outgoing by default. SMTP incoming works fine. I was concerned after googling that it would be impossible to get SMTP unblocked. But I called the 800 number, asked for support, and the first person I talked to unblocked SMTP without any issue. 5 minute process. Very easy.
Speeds on the 1000S plan are 1000/1000. I wasn't expecting this. I thought the upstream would be less but so far it's not. The bill says my service is $800/mo plus $15/mo for static IPs minus $640/mo credit. I don't know why they do this because I was only ever shown the $175/mo price during signup.
Hope this helps.

I have a SonicWall SRA Ex6000 in my environment still . I have a few vendors that connect over this thing while i wait for my parent company to get their act together with purchasing Duo licenses for our AnyConnect VPN solution.
Long story short i have been trying to update the firmware on this thing from 11.4.0 to 12.1 for hours now and keep getting the same error: "Update failed due to file integrity check". I have downloaded the firmware file directly from the MySonicWall portal where my device is registered. There is a direct link to the firmware for my product, so i know i am grabbing the right file. i have made sure i have unblocked the file in windows after downloading it, and tried several different browsers and internet connections to ensure the file isn't being corrupted in transit.
I have searched SonicWall's KB, Google in general, and trusty Reddit, but no where does this specific error seem to be mentioned. i would contact support but this device is EOL and i cannot buy a support contract on it. I do plan to remove it from the network, but i need time for my Duo licenses to come through. I can confirm that it's not vulnerable to Log4Shell as long as it's on the 12.1 firmware, but it's that very upgrade i am struggling with.
Does anyone have any tricks (secret menus, ways to bypass file verification on the device, etc) to get this update to apply?
Thanks.

I have a SonicWall SRA Ex6000 in my environment still (i know, gross). I still have a few vendors that connect over this thing while i wait for my parent company to get their act together with purchasing Duo licenses for our AnyConnect VPN solution.
Long story short i have been trying to update the firmware on this thing from 11.4.0 to 12.1 for hours now and keep getting the same error: "Update failed due to file integrity check". I have downloaded the firmware file directly from the MySonicWall portal where my device is registered. There is a direct link to the firmware for my product, so i know i am grabbing the right file. i have made sure i have unblocked the file in windows after downloading it, and tried several different browsers and internet connections to ensure the file isn't being corrupted in transit.
I have searched SonicWall's KB, Google in general, and trusty Reddit, but no where does this specific error seem to be mentioned. i would contact support but this device is EOL and i cannot buy a support contract on it. I do plan to remove it from the network, but i need time for my Duo licenses to come through. I can confirm that it's not vulnerable to Log4Shell as long as it's on the 12.1 firmware, but it's that very upgrade i am struggling with.
Does anyone have any tricks (secret menus, ways to bypass file verification on the device, etc) to get this update to apply?
Thanks.

how do I unblock a website from Sonicwall :( I can't figure it out. I Tried Content filter Objects...
​
in:X0*(interface), out:--, DROPPED, Drop Code: 726(Packet dropped - Policy drop), Module Id: 27(policy), (Ref.Id: _2251_qpmjdzDifdl), 1:2)
getting that error.....

Recently moved to Sonicwall.
Our default policy for our Sonicwall has blocked Disney+. We have a legitimate need to show some content from Disney+ but are coming up light in search results when looking for what to unblock. Any help is appreciated.

Alright, this one is a weird one, I know that packages from core, extra, community and so forth are signed and verified in general prior to installation, however sonicwall is flagging all packages as malicious "virus scanners detected malware" with "global_verdict_detected" and it assume package is malicious, because it have embedded code.
When sonicwall flag just about every package for ArchLinux as malicious, I would get "connection reset by peer" error from Pacman. I told the system admin to unblock my PC to allow me to download the packages and verify the signatures, the signature for those packages matched up fine with ArchLinux package maintainers' keyring.
Should this be considered a false positiive by Sonicwall or is there something more to this? I can't seem to get any more information on WHY Sonicwall is flagging those packages, any idea what I should do to proceed from here?

I use the google dns servers at 8.8.8.8 and 4.2.2.2 and noticed when I blocked many countries in the Sonicwall I get that little yellow triangle in the bottom right showing the network even though its connected tot he internet the triangle shows , now if I unblock all the countries in Sonicwall the triangle disappears. So what country is the Google dns server using? I don't block the USA.

Just wanted to let everyone know that this took me way too long to figure out. Adobe Creative Cloud was hanging at 42% all morning and then erroring with code 204(Network Error). The end issue was that our Sonicwall was blocking it with the Gateway AV. If you have this issue check your logs for \ * "Gateway Anti-Virus Alert: (Cloud Id: 55670059) Agent.FL (Trojan) blocked."

• The "fix" is to uncheck HTTP on "Enable Inbound Inspection" long enough to update the machine and then check it again when done.
  
• If you have multiple machines, you could go through the process(please don't) of unblocking all of Adobe's CC update servers from the Exclusion list. This is probably the correct answer, but I dont have the time to figure out if this is at fault of Adobe or Sonicwall. This is unfortunately not the first time their downloads have been blocked by Gateway AV. I also don't trust Adobe so there is that.
  

Long time lurker maybe someone can help us get creative. We have a sonicwall GMS server to manage 70 plus firewalls (gen 5s and gen 6s). Our sonicwall's report in to the global management server using an encrypted syslog packet. What we have observed is that there are six sonicwalls mainly using (comcast business and one oceanic telecom) where the carrier is blocking outbound syslog packets which have a src/dst port of UDP 514. The way we came to this conclusion was running an NMAP query to UDP 514 from a computer behind the firewall and we can see the traffic reach the GMS server and it looks to be because the source port is a randomly assigned one. We were also able to direct the syslog traffic through our backup DSL connection, and it did succesfully reach the server. For what its worth, Sonicwall says that they have seen devices drop this kind of packet because they view it as an attack, but i do take this with a grain of salt. Is there anything we can do to unblock this traffic, does anyone have any tricks of breaking through the grid lock and getting higher level comcast engineer? Is my conclusion even valid?

I have client with Exchange 2010 SP1.
They have dual WAN connections:

• bonded connection IP: a.b.c.d
  
• single DSL connection IP: e.f.g.h
  

The mail server cannot seem to do anything outbound on port 25 when using the bonded connection.
If I disconnect the e.f.g.h connection I can still telnet out on port 25 from any client in the domain, but not from the Exchange server.
If I disconnect the a.b.c.d connection, I can telnet out on port 25 from any machine including the Exchange server.
So, it's not the ISP blocking port 25 (though I did have to get them to unblock it for the a.b.c.d connection originally) ... which is where my troubleshooting was a couple weeks ago. But now it clearly seems ok (unblocked) as any client can telnet out on port 25 (except Exchange server).
I've installed a new firewall (Sonicwall TZ300) and Dell has made sure the config looks fine.
It just seems to be something on the Exchange server when using that specific WAN connection. (a.b.c.d).
Please help!

Hello, (first time posting here, sorry if I didn't include proper information, please let me know what else may be needed and I will provide ASAP)
I was relocated by work to Israel and while I have internet, obviously I need to access Netflix and NFL Redzone. The only issue is that these are geo-specific sites, when I was in NY it wsas no issue, now it very much is. I understand there are free and paid VPN services out there that would tunnel me into an IP in the states, but those are dubiously unsafe and have lost a computer to Hola Unblocker before.
My company has several satellite users and a main server area in Downtown NYC. Even when in other parts of NY, to gain access to my computer in main office I would connect via Sonicwall Global VPN Client (had to set it up initially with a pre-shared key), and once connected I would use Remote Desktop Connection to access my computer on-site in main office.
What I would like to accomplish is one of two things, and I think either will/should work.
1) Connect directly to VPN (not via Sonicwall Global VPN Client) so that I can surf and work as if the laptop in front of me had internet access via the main office. I have read several articles instructing me how to set this up, but every time I try, the connection shows "no internet access" or that there was a problem setting up the L2TP/IPSec connection.
2) Set up VPN credentials on my router so that all browsing traffic looks as if it is coming from my virtual IP address (in NYC) and not from my actual internet connecion in Israel. I have also read articles and watched video tutorials on this, but still, Netflix recognizes I am not in a supported area of the world.
Any and all assistance is appreciated. Thanks in advance.
P.S. - Just so you could get a good laugh, what I do now is connect through Sonicwall and RDC and just stream the site/program I want to from my computer in NYC and I watch remotely. Awful, just awful.
Specs: Router - Asus RT-N16 Firmware - -dd-wrt.v24-18024_NEWD-2_K2.6_mega.bin Computers - Asus UX305FA, Windows 8 (x64); Macbook Air (Mid 2013), OS X Yosemite (10.10.3)

Hello, (first time posting here, sorry if I didn't include proper information, please let me know what else may be needed and I will provide ASAP)
I was relocated by work to Israel and while I have internet, obviously I need to access Netflix and NFL Redzone. The only issue is that these are geo-specific sites, when I was in NY it wsas no issue, now it very much is. I understand there are free and paid VPN services out there that would tunnel me into an IP in the states, but those are dubiously unsafe and have lost a computer to Hola Unblocker before.
My company has several satellite users and a main server area in Downtown NYC. Even when in other parts of NY, to gain access to my computer in main office I would connect via Sonicwall Global VPN Client (had to set it up initially with a pre-shared key), and once connected I would use Remote Desktop Connection to access my computer on-site in main office.
What I would like to accomplish is one of two things, and I think either will/should work.
1) Connect directly to VPN (not via Sonicwall Global VPN Client) so that I can surf and work as if the laptop in front of me had internet access via the main office. I have read several articles instructing me how to set this up, but every time I try, the connection shows "no internet access" or that there was a problem setting up the L2TP/IPSec connection.
2) Set up VPN credentials on my router so that all browsing traffic looks as if it is coming from my virtual IP address (in NYC) and not from my actual internet connecion in Israel. I have also read articles and watched video tutorials on this, but still, Netflix recognizes I am not in a supported area of the world.
Any and all assistance is appreciated. Thanks in advance.
P.S. - Just so you could get a good laugh, what I do now is connect through Sonicwall and RDC and just stream the site/program I want to from my computer in NYC and I watch remotely. Awful, just awful.
Specs: Router - Asus RT-N16 Firmware - -dd-wrt.v24-18024_NEWD-2_K2.6_mega.bin Computers - Asus UX305FA, Windows 8 (x64); Macbook Air (Mid 2013), OS X Yosemite (10.10.3)

Hello guys and gals,
I am having an issue accessing some Microsoft Services, all our trafic goes through an SW NSA 2400.
It all started with some users not being able to access their Hotmail accounts, if you went through Hotmail.com some accounts (mine) would display fine and others would appear with no style sheet and you couldn't access your inbox (this would happen on the same computer). The temporary workaround I had was to login through Outlook.com-No issues for anyone.
Yesterday a user couldn't access a file sent to her on weekly using SkyDrive even though she was able to up until yesterday.
Today I was looking for training videoss for some users and discovered I can't play these videos: http://office.microsoft.com/en-ca/excel-help/introduction-to-charts-RZ102559017.aspx?CTT=1§ion=2. The whole page displays fine but the video plugin never loads, it just stays white, just like the background. If 'App Control Advanced' is disabled--everything loads and plays fine.
Everything is pointing to the 'App control Advanced' feature on the 2400, if I disable it-everything works. It is strange because the only categories we have blocked are Gaming, IM, P2P, Proxy-Access and Social Networking.
I have tried BuiltWith to check whether the site uses tracking or anything similar that may be blocked and then searching https://software.sonicwall.com/applications/app/index.asp?ev=cat to see if SW blocks it.
I really want to figure this out on my own if anyone has any further suggestions on what to look for, otherwise I will have to call support.
Any suggestions on how to pin point exactly what the SW doesn't like about particular pages would be a big help.
Solution Thanks for the suggestions guys, I ended up turning on logging on my ip address and discovered that under Instant Messaging there is an application, Windows Live Messenger -- Video Server, this is what the Office site was using the stream the tutorial videos. Once that was unblocked everything worked.

There I was, thinking that today would be like any other day at work. You know, come into work, chat about the news of the day with co-workers, maybe do a little work. Then about halfway through my day when I got any catch up work done I would start to browse Reddit.
Much to my dismay, our webfilter SonicWALL blocked my favorite passtime at work!
This was especially distressing, considering my job has ALOT of downtime in which I literally have nothing to do. I used to peruse Digg alot (which is still unblocked), but when they changed it over I couldn't stand it.
This causes me to sadly begin perusing msnbc.com for news, local newspaper website and after all that simply giving up. Then I decided "I won't take this! I must find a source of entertainment!" and began my quest.
I started with StumbleUpon, however I am not a fan of the interface they use and quickly gave up. I then tried Digg again and likewise was disappointed. Then I decided to google, trying different phrases "Site like Reddit", "Reddit clones", "Reddit mirrors" and found myself staring at these sites that showed previous days top stories.
That almost did it, but I was left unable to view comments (half the fun). Then I landed upon what looked like a Reddit link with the url of thecutelist.com. Come to find out that thecutelist is a direct mirror for Reddit. In fact, I am posting this proxy via thecutelist.com right now.
Consider me a happy man!