Sonicwall VPN Client connects just fine but can’t access intranet site – Windows 10

Scenario:

Downloaded Sonicwall Firewall (multiple versions 4.10.2.0428, 4.10.1.0317, 4.9.22.0822, 4.9.14.0427, 4.9.9.1016) and tried one at a time. The connection is solid. The client connects to the home office just fine, you CAN ping resources via IP, but you CAN’T browse to intranet site although you can ping it.

Trying to navigate to an intranet site using Chrome or Internet Explorer, you’d get the following error:

 

After spending countless hours troubleshooting in the wrong direction, the simple and only resolution was to enable Jumbo Frame for the NIC card in use. 

Here’s how…

  1. Open ‘Network and Sharing Center‘ – (you can type that in the start menu)
  2. Click ‘Change adapter settings’ from the left pane
  3. Right-click the NIC for which you want to enable jumbo frames and select ‘Properties‘.
  4. Click on ‘Configure‘ Under the Networking tab
  5. Click on the ‘Advanced‘ tab
  6. Select Jumbo Frame on the left and change the value from disabled to the desired value, I put mine at 9kB MTU
  7. Then click ‘OK

That’s all!

 

EDIT: This issue is caused by Sonicwall’s Global VPN client not playing nicely with certain ethernet drivers, namely intel and realtek. The above solution might work, however experience says that it does not more often than it does. A workaround for this issue is to install an external wireless adapter or network card that requires different drivers, preferably onces that play nicely with Sonicwall’s garbage VPN client.

 

Domain Expiration SEO Registration Is Set To Expire – Scam

We have recently received a couple of emails asking us to re-register our SEO ( Search Engine Optimization ). There is a link to pay.

This is obviously a scam. The SEO are carefully crafted words in the webpage. You can pay someone to craft the SEO and put it in the page, but you don’t need to “register” anything.

The company is qualiSEO.org. They charge $75.00 per year with multi-year discounts.

Let us know if this helped you..

 

Is Google Ranking Websites With SSL higher?

We have been hearing about this since the beginning of the year, and yes we are hearing this from our hosting companies. We used Sucuri a number of times to have a some nasty website attacks cleaned up. They have also recently paired up with some hosting companies such as SiteGround because of the number of attacks across the web.

I watched a recent webinar from Sucuri and they are saying it is true that Google will make your site less important in their search results if you are not using an SSL. This is for straight HTML sites as well as an CMS ECommerce site.

The cost for an SSL is around $100 per year. Installing the SSL and configuring your website to work with the SSL takes a bit of work, but we are use to it. If you are interested in upgrading your site security and need some help feel free to contact us.

Let us know if this helped you…

 

Windows 2012 R2 Server – Critical Memory Error – An Error Was Detected During Memory Initialization

We used a remote support connection to fix a customer’s server. When we were finished patching the server it required a reboot. 30 minutes later the machine wasn’t back on-line we went on site. When the tech walked in he say the following error on the screen.

He discovered the cause was:

The event log within BIOS contains one or more events that should be diagnosed before continuing.

The fix was:
Check the event log in the BIOS, address the issues listed, clear the log and run the diagnostics again to confirm that no further issues are detected. ”

Let us know if this helped you…

 

Determine Computer Name By IP Address Through ARP

We recently had to determine is a particular computer was up on the network. Using the command “arp -a” gaves us all the IPs being used on the network. Next was to ping the ip to resolve the name. We used the following command which didn’t work.

“ping 192.168.0.122 -a”

This pinged the machine and told us it was up; however, we needed the machine name. The next command gave us the computer name.

“ping -a 192.168.0.122”

Let us know if this helped you…

 

Safe To Update Adobe Flash Player – Not Really!

Had another employee ask to me upgrade his Flash Player. He got a warning that the Flash Player was out-of-date. I actually have worked in Flash for years and appreciate all that it can do, but from a security stand point it can be too powerful.

When I got to his machine I saw the Adobe Flash Player Update page; however, the URL was not Adobe.com.

The URL was for “http://etaigwebulvar.com/..”. Clearly not Adobe.

Be careful with Flash Player updates.

Let us know if this helps you…

 

Brother Intellifax 2820 Fax Machine – How to fix “Toner Life End”

I came across this issue where the Intellifax 2820 Fax Machine would display “Toner Life End” in its tiny LCD display and continues to ask to replace the toner. I did so and nothing changed. I now know that regardless of how much toner was in the cartridge the Fax machine would continue to display “Toner Life End”.

To resolve this issue, I followed these two steps.

1 – I covered the two round holes on either side of the drum unit with a piece of electrical tape to prevent the machine from seeing the toner level (to trick it into thinking that the toner cartridge is full) – in my case this didn’t resolve the issue

2 – The second step was to reset the page counter (this resolved the issue) of the machine.

  • Open the front cover, but leave the toner cartridge where it is
  • press [Options]
  • press * 0 0  (that’s star zero zero)

At this point you should read Accepted on the LCD display.

That should solve the Toner Life End mystery.

Protecting From WannaCry Ransomware

We have been diligently verifying our customers computer systems are up-to-date and protected from the lastest round of Ransomware called “WannaCry”.

Not sure exactly what patches needed to be applied I found a good page from SolarWinds the lists the appropriate patches for a given Operating System.

https://support.solarwindsmsp.com/

Microsoft’s Update Catalog allows you to download the the “.MSU” patches. Microsoft recommends using Internet Explorer to download and install the patches. You may need to set downloads to “enable”. In Internet Explorer Tools, under the Security tab, select “Custom Level.”. Scroll down till you see “Download” and click enable.

For antivirus we have been using Vipre. We received a email from Virpe stating the were already protecting customer before the virus was released. That will save us a considerable hassle. Here is the link the sent us.

https://blog.vipreantivirus.com/important-news/urgent-announcement-wanacryptor-wannacry-information/?mkt_tok=eyJpIjoiT1RnME5XUXpObU13TVRVeCIsInQiOiJoQ1FNVmJsQjh3YUpmTFFQUEowbDZpUzZFTG1FV3g5NkN4cnNcL2RKN1AzSWZXSlZwaTA0UUFQTHF4N29lMndwSDlcL2pxK0I2QlVSbGJ0V2NPdDBuMnhhUktKOWlHdW1UbG1Lakp0NFNrTFhYV2lhQVFhM2N2elNMWG5mTHJFTUlxIn0%3D

This list above is good to know the patches.  The next step was to disable “SMB1”. I logged onto the clients server and open Powershell as an administrator, and ran the following commands.

sc.exe config lanmanworkstation depend= bowser/mrxsmb20/nsi
sc.exe config mrxsmb10 start= disabled

All of these updates required a reboot of the server.

Let us know if this helps you…

 

Translate »