Default Zones (DMZ,VPN) disappear during settings import/Failover

Description

This article explains the issue caused by HA failovers or settings import in TZ devices. If there are custom zones existing in the settings, one of the default zones, mainly DMZ or VPN are missing when there is a HA failover or the settings are imported into the firewall.

This issue has been observed in TZ 400, 500, 600 and NSA 2600 firewalls only.

Cause

The issue is caused due to a pointer not being initialized as expected, causing the bits representing the DMZ and VPN zone to be flushed by Custom Zones in the settings file.

Resolution

A workaround for this issue is to factory default the firewall and re-import the settings. Please refer to the following article to factory default a SonicWall: How do I reset a SonicWall using safemode?

There is a hotfix firmware available for 6.2.5.1-26n and 6.2.6.0-20n. Please contact Support for the hotfix.

This issue is resolved in 6.2.6.1-25n, 6.2.5.2-29n, and above.

Related Articles

  • How to block ICMP (Ping ) using Application control
    Read More
  • SonicWall GEN8 TZ and NSa Firewalls FAQ
    Read More
  • How to configure Link Aggregation
    Read More

Categories

Firewalls
SonicWall NSA Series
Firewalls
SonicWall SuperMassive 9000 Series
Firewalls
SonicWall SuperMassive E10000 Series
Firewalls
TZ Series
not finding your answers?
Ask the Community