Sonicwall help

Vyper28 · Jan 9, 2014

I have a sonicwall tz-100 firewall with local administration disabled (I think).

I have the user name and password, and I've tried the default HTTPS port to log in to the firewall (8443). I am in a pickle! I can't log in to the device locally, and I don't know what port to use for external administration. I know what the password SHOULD be.. which would be super helpful... if I could get the login page to show up.

Is there any way I can get in through CLI or something and pull the HTTPS port? or enable local administration again? It has a "console" port but I'm not sure how it functions.. Do I use a null modem? Does it need a serial port?

Alternatively is there a tool that will allow me to probe ports until I get number that allows remote administration?

Markverhyden · Jan 9, 2014

Does it have a regular serial port? If so then a regular serial cable should work. If the console port is rj45 then a regular cisco cable should work. Either way you use console application like hyperterm to communicate with the device. Have you defaulted the device?

mr m · Jan 9, 2014

Can you connect by plugging the default IP (192.168.168.168) into a browser?

I don't think this unit has a serial port.

Vyper28 · Jan 10, 2014

The IP of the sonicwall was changed long ago to fit our network, typing in its address (10.227.100.254) just returns "not found". But I can ping the IP. It has a network jack console port, I have yet to try it. If I can get in through CLI with a cisco cable I assume I am dealing with just command line and no UI, would I be able to display the port that has been set as remote management?

Markverhyden · Jan 10, 2014

Generally speaking remote support (WAN) logins are disabled in routers since they represent a serious security risk.

Assuming that the console port is turned on by default and you all did not turn it off you should get to a login prompt. Once in you will drop into the CLI. Here is the manual for CLI.

http://www.sonicwall.com/app/projects/file_downloader/document_lib.php?t=PG&id=406

Generally speaking it should be very similar to many other router OS's for basic stuff. Meaning they use a form of *nix.

MobileTechie · Jan 10, 2014

Why not contact Sonicwall? If anyone knows, they do.

YeOldeStonecat · Jan 10, 2014

Did ja power cycle it? Might just be hung and non-responsive on the web interface.

Assuming you tried on the LAN side on standard http w/o custom port?

How "fancy" is its setup? if you don't have VPN tunnels built and tons of fancy published services (port forwarding)....sometimes it's quicker just to hold in that reset button and whip it back into shape again...this time documenting its setup.

(this is of course assuming the WAN connection info and other stuff is known).

PCskies · Jan 10, 2014

I would try running a product like Advanced IP Scanner from a computer that is on the same network as the firewall. Advanced IP Scanner sometimes can be good at sniffing out ports. It's free to download - install it, run a scan of the network. The scan will find the firewall by IP. If there is an HTTPS interface available it should let you know what that is. It's worth a shot.

pceinc · Jan 10, 2014

Under System > Administration there is a Web Management Settings section.
If you did not uncheck the box to allow Management via http then you should have access unless you disabled management to specific interfaces or ports on the firewall. As stonecat said, try http port 80. If using default settings, Sonicwall will redirect to correct https port. The other thing you may have done or has been done by someone else is to disable http/https management access on specific interfaces. If this the case then you need access via console.

Make a console cable using db9 and rj45 connector

Lastly, did you try accessing from external network by using public IP address? You can call Sonicwall but you will need an active support plan on the device.

unclemarv · Jan 10, 2014

You can use a simple hyperterminal program to get in, but the TZ 100 does not have a traditional console port. It is actually a RJ45 connection on the SonicWall. You can use a DB9 connection on the other end of the cable to your notebok or computer. There is a CLI guide on the SonicWall web site. Let me know if you cannot find it as I have a copy downloaded.

TAPtech · Jan 10, 2014

pceinc said:
Under System > Administration there is a Web Management Settings section.
If you did not uncheck the box to allow Management via http then you should have access unless you disabled management to specific interfaces or ports on the firewall. As stonecat said, try http port 80. If using default settings, Sonicwall will redirect to correct https port. The other thing you may have done or has been done by someone else is to disable http/https management access on specific interfaces. If this the case then you need access via console.

Make a console cable using db9 and rj45 connector

Lastly, did you try accessing from external network by using public IP address? You can call Sonicwall but you will need an active support plan on the device.

^^^ Try port 80 with http.

AKA if this is your LAN IP for the sonicwall:

http://10.227.100.254:80

Vyper28 · Jan 10, 2014

I did power cycle, still no joy.

I tried port 80, no joy either. I know the Ex-tech used to get in externally because he messed something up and internal never worked right. It's a VPN and also has several exchange server settings and websites hosted on the network.. I'd rather not hard reset but if it comes to it, I will.

I guess the next step is using a console cable and finding an old laptop with a serial port.. I found the CLI guide.. it's a bit confusing but I'm sure I can figure it out if I can get the console port working with a machine!

Thanks for all the advice.. will keep trying.

mr m · Jan 10, 2014

Vyper28 said:
I did power cycle, still no joy.

I guess the next step is using a console cable and finding an old laptop with a serial port.

Here is the pinout if you have to make your own cable for the TZ100. Careful, there are different pinouts depending on vendor and product lines.

https://www.sonicwall.com/us/en/sup...talResults=17&sct=KB&submitbutton=Go&match=or

Markverhyden · Jan 11, 2014

Vyper28 said:
I did power cycle, still no joy.

I tried port 80, no joy either. I know the Ex-tech used to get in externally because he messed something up and internal never worked right. It's a VPN and also has several exchange server settings and websites hosted on the network.. I'd rather not hard reset but if it comes to it, I will.

I guess the next step is using a console cable and finding an old laptop with a serial port.. I found the CLI guide.. it's a bit confusing but I'm sure I can figure it out if I can get the console port working with a machine!

Thanks for all the advice.. will keep trying.

If the internal access is messed up you need to port scan the device from the outside. Shieldsup is a common one to use. But it is limited to the first 1056 ports.

To scan the full range you should install nmap on you machine. Change the settings to scan the full range of IP's.

http://nmap.org/book/man-port-specification.html

And then scan from outside the LAN. Open ports should be identified so you can use those from your browser to try to log in.

Magic Miguel · Jan 11, 2014

I had this happen with the Zyxel's that RR gives out to businesses. I had to use putty to login via telnet and had access to the CLI. I have no idea if that's the case with Sonicwall since I don't have experience with it but just throwing it out there.

TAPtech · Jan 13, 2014

Ugh, sorry, the one I manage is port 81 and not port 80.

Sonicwall help

Vyper28

Active Member

Markverhyden

Well-Known Member

mr m

Well-Known Member

Vyper28

Active Member

Markverhyden

Well-Known Member

MobileTechie

Well-Known Member

YeOldeStonecat

Well-Known Member

PCskies

Member

pceinc

Active Member

unclemarv

Member

TAPtech

Well-Known Member

Vyper28

Active Member

mr m

Well-Known Member

Markverhyden

Well-Known Member

Magic Miguel

Member

TAPtech

Well-Known Member

Similar threads