03/26/2020 134 People found this article helpful 457,563 Views
Packets dropped on Firewall with drop description as "Non SonicPoint traffic in WLAN zone".
Problem Definition:
Packets dropped on Firewall with drop description as "Non SonicPoint traffic in WLAN zone".
This description can be seen in Packet Monitor section in SonicWall and for different Firmware version the Drop Code varies but description remains the same, please refer the below KB article for appropriate drop code for different Firmwares.
KBID-9820
Resolution or Workaround:
Reason: By default in SonicOS enhanced, only SonicPoint traffic is allowed in WLAN zone.
When a third party Access Point or any other PC hard wired to WLAN zone try to pass traffic to WLAN zone interface on SonicWall, SonicWall will drop the packet as "Non SonicPoint traffic in WLAN zone".
SonicOS will use the Source MAC address in the Frame to identify the device which generated that particular traffic.
To allow any non SonicPoint traffic on WLAN zone, please follow the below steps,
Step 1: Go to Network tab-->Zones-->Select WLAN Zone-->Wireless Tab and disable the option "Only allow traffic generated by a SonicPoint / SonicPointN".
How to Test:
Step 1: To test the behavior, either try to pass traffic from a third party Access Point to the WLAN zone interface or connect a PC hard wired into WLAN zone interface and ping the interface IP or send a DHCP request.
Step 2: Once the "Only allow traffic generated by a SonicPoint / SonicPointN" option is disabled, Firewall should not drop any packets as "Non SonicPoint traffic in WLAN zone".