Question about SonicWALL PRO 300 Firewall

2 Answers

Sonicwall Pro 300 DMZ Problem

I configured a dedicated Windows Server 2003 Dell Poweredge 400S server to be an FTP server. I set up the DMZ port as w/ subnet. The public IP is, which is on the same subnet as our WAN IP, The internal static IP of the FTP server is The default gateway for the FTP server is, address of DMZ port. I updated the router thru the Web management console and created a rule to allow all sources FTP access to the DMZ port. There is no firewall (not even Windows) on the server. From any computer in our LAN, w/ subnet, I can FTP into the FTP server. However, I cannot FTP into the public IP. Also, the FTP server can not see the Internet. Pinging the FTP server from the router and any LAN computer is successful. The FTP server can not ping any computer and not Don't understand what could be going on. The FTP site is configured to allow all computers anonymous access. I will worry about adding security when after I can FTP into the server.

Posted by on

2 Answers

  • Level 2:

    An expert who has achieved level 2 by getting 100 points


    An expert that got 5 achievements.


    An expert whose answer got voted for 20 times.


    An expert who has written 20 answers of more than 400 characters.

  • Expert
  • 133 Answers
Re: Sonicwall Pro 300 DMZ Problem

If you're within a network and try connecting to computers on it with the WAN public IP, it simply won't work - you must use the network IP. On an external Internet connection, it should connect fine to the public IP. If you have access to an external machine (remote desktop), or if you know of an FTP proxy, you can try it that way. I also believe a web based FTP client would act as somewhat of a proxy, you could try that with the public IP and see how you go.

Posted on Sep 07, 2007

  • Level 1:

    An expert who has achieved level 1.


    An expert that has over 10 points.


    An expert whose answer got voted for 2 times.

    Problem Solver:

    An expert who has answered 5 questions.

  • Contributor
  • 13 Answers
Re: Sonicwall Pro 300 DMZ Problem

The question is whether the Sonicwall is acting as a firewall for you network or it is also the router for your Internet access as well as the firewall. It is important which device is doing the address translation for the FTP server.
If there is a router between the Sonicwall and the Internet, there is a need to configure a static route on the router to route the external IP of the FTP server to the external IP address of the Sonicwall.
Otherwise, you should segment you public (or get a specific routing pair from your ISP and the have the ISP route you public network to the IP of the Sonicwall).
You must remember that routing should be consistent both ways - to the Internet and back.
Also remember the whe doing NAT, the IPs of the NAT should be routed the the device doing the NAT.

Posted on Feb 08, 2009

Add Your Answer

0 characters

Uploading: 0%


Complete. Click "Add" to insert your video. Add


3 Points

Related Questions:

2 Answers

Cisco vpn disconnection through sonicwall firewall

This may sounds obvious but have you forwarded the correct ports through sonicwall for your VPN?
If you have, do you have any QoS running, it could be worth checking that VPN has priority over VoIP etc.
Do you get disconnects all the time or is it only during busy periods? You may be overloading your server, perhaps it's time for more RAM.

Oct 31, 2013 | SonicWALL PRO 2040 (01-ssc-5703) Firewall

1 Answer

How to routing router static ip address and local

Use the Sonicwall configuration wizard..

Please find below is to configure what ever you want.

Setup Wizard - This wizard will help you quickly configure the SonicWALL to secure your Internet connection. Once completed, you can use the SonicWALL Web Management Interface for additional configuration.

Registration & License Wizard - This wizard will help you register you and your firewall with and obtain licenses for additional Security Services features.

PortShield Interface Wizard - Segment and configure the integrated managed LAN switch of the SonicWALL.

Public Server Wizard - Quickly configure your SonicWALL to provide public access to an internal server.

VPN Wizard - Create a new site-to-site VPN Policy or configure the WAN GroupVPN to accept connections from the SonicWALL Global VPN Client

Apr 22, 2009 | SonicWALL TZ170 (01-ssc-5740) Firewall

1 Answer

How to connect to my PIX 501 and use Windows Remote Desktop?

Here's a real simple problem to your remote access problems.
Go to:
Sign up for a free acct, download/install their free software on your Server.
Now go over to your laptop, login to your new logmein acct.
In the next page, you'll see your Server listed. Click on it - follow instructions to connect.
This will tunnel through whatever stuff you have on your network!
Trust me - esp. in your scenario, this is *by far* the *simplest remote connect you'll ever perform! And it just .... works! Everytime.


Mar 16, 2009 | Cisco PIX 501 Firewall

1 Answer

Ploblems with dmz-outside (webpage). pix

Remove this line:

static (DMZ,INSIDE) netmask

You don't need a translation going from a lower security level to a higher one. You will also need a nat line for the dmz so that pc's on the dmz will be translated outbound. The only connection that will work on the dmz is the webserver when he's sending traffic outbound with a source port of 80. Something like:

nat (DMZ) 101

Other than that, it looks like it should be working. You've got permission, a route, and a translation. Maybe "clear local-host" to get rid of any bad xlates and try again. Check debg level syslogs, run packet captures, "clear asp drop" then "show asp drop" after an attempt?

Feb 28, 2009 | Cisco PIX Firewall 506

2 Answers

I want to create site to site vpn with sonicwall tz170+ 2003serv

Complete documentation is available on the below link

Nov 17, 2008 | Sonicwall TZ 170 NFR (01-ssc-5564)...

1 Answer

Port forwarding

You have to create an object for your Web server and then set up new rule to forward traffic via port 80 to the newly created object.

Aug 21, 2008 | SonicWALL PRO 100 Firewall

1 Answer

Sonicwall firewall has trojan attack.

what kind of fire wall and anti virus are you useing ? I have found that the best you can find is AVG. 8.0 if you use it and the Windows Denfender together they are the best,AVG can find all trojans downloaders loops lops and any kind of worms imagen,alot of viruses we have cleaned seem to hide behind the windows files themselves,as you corner them they will pop up. Where as if the mcfee and norton are constally dormit they don't seem catch all the new viruses,try switching for an instant,and Avg will pretty much corner any kind of viruses you have and send me the out come of what is happened please thank you lala linda

Jun 03, 2008 | SonicWALL PRO 230 Firewall

1 Answer

FTP problems.

There are 2 ports used for FTP. They are 20 and 21. When you initiate a connection that occurs on port 21, but data traffic is on port 20. Your firewall sees your outside FTP server trying to 'initiate' a connection on port 20 and breaks the connection to that IP address.
What you need to do is either use 'passive' ftp or open both ports 20 and 21 for ftp traffic in the firewall.

Apr 02, 2008 | D-Link DFL-800 Firewall

3 Answers

Sonicwall vpn configuration

Need more info,
" I want to configure two VPN for different customers but both at the same host computer."
You can havemultiple VPN`s, and port forward to anyewhere on the inside or dmz.

Need to know what you are trying to achieve.

Dec 01, 2007 | SonicWALL TZ170 (01-ssc-5740) Firewall

2 Answers

All Public IPs

In order to use your DFL-200 as a firewall, and not a router, you will need to put it into "transparent mode." This will allow you to use only public IP addresses and you will not be using NAT.

Jun 20, 2007 | D-Link NetDefend DFL-200 Firewall

Not finding what you are looking for?
SonicWALL PRO 300 Firewall Logo

897 people viewed this question

Ask a Question

Usually answered in minutes!

Top SonicWALL Network Security & Firewall Devices Experts

Sudeep Chatterjee
Sudeep Chatterjee

Level 3 Expert

3267 Answers

Mark Taylor
Mark Taylor

Level 3 Expert

728 Answers

Brian Sullivan
Brian Sullivan

Level 3 Expert

27725 Answers

Are you a SonicWALL Network Security and Firewall Device Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides