Announcement

I guess you've pretty much narrowed it down to sonicwall being the problem. Do you use NAT or PAT? Is phone on the inside and server on the outside?

Firewall Timeout

This is from a Sonicwall Support page:



This is just a guess, but it sure sounds like what you are seeing. I personally think Sonicwalls are terrible and should be given away to people you hate.

Caveats
�� On the Firewall → Advanced page there is a Default Connection Timeout. The Default Connection Timeout value will be used for every rule you create. By default, it is set to 5 minutes. Changing this value will only change the activity timeout for rules added after it is changed. It will not change the value of any previously created rules. SonicWALL recommends keeping this value at 5 minutes and creating specific rules to increase the activity timeout when the service uses static ports.
When increasing the activity timeout for VPN tunnels, bear in mind that you might need to increase the activity timeout on the LAN to VPN as well as the VPN to LAN rule in order to avoid timeout conditions.
�� Increasing the activity timeout on access rules increases the time that connections associated with that rule remain open without any activity. This can lead to increased resource consumption, and a possible security risk.
�� Although it is possible to increase the activity timeout on the default rules (LAN to WAN, LAN to VPN, etc…) instead of writing service specific rules, SonicWALL recommends against this. Increasing the activity timeout on the default rules increases the activity timeout for every connection that is handled by the rules, thereby increasing resource consumption and introducing possible security risks. With services that use dynamic ports, you may have to modify the default rule.

�� Even though it is possible to allow a service in from the WAN to the LAN (opening a hole), SonicWALL does not recommend doing this. Allowing access this way creates a security risk. SonicWALL recommends creating a VPN tunnel when WAN to LAN access is required. This can be accomplished by using two SonicWALLs or a SonicWALL and SonicWALL’s Global VPN Client.
Definitions
�� Activity Timeout – The amount of time without activity before a TCP connection disconnects.
Before You Begin
�� Know the service you wish to increase the timeout for. Can you write a service specific rule, or do you need to modify the default rule?
�� Determine the points of origination and destination for the traffic For example, it is originating from the LAN and destined to a VPN tunnel or WAN.
�� Decide which address object/group you will use in the rule. Such as LAN Primary Subnet object or LAN Subnets group object
�� Decide what value you want to make the activity timeout

On the entire network technically both however for this segement of the network neither. Both the phone (remote site) and server / switches sit on the inside on different ports of the sonicwall with of course different subnets.

Currently I have no limitations and both ports on the sonicwall are allowed to pass all traffic between the two. Played around with these other recommendations with no success yet. What is interesting is if I put a static ARP entry of the phone into the sonicwall the ping is successful and will not time out at all but the phone receives no service.

Also the shoreware director is reporting a different MAC address then the sonicwall and other devices are. Is there a reason for this? I did double check to make sure I was correct on which device I was looking at.

Timeout

Even still, don't you think that it is REALLY fishy that the default sonicwall timeout is 5 minutes and you are timing out after 5 Minutes?

Silly question, but I assume you have tried to power down the firewall and restart it? I have seen sonicwalls report certain configurations but not REALLY be using them...

Can you look at the logs on the sonicwall? I would bet that you could see the packets being denied for xxxxxx reason.

I 100% agree that it is very odd that the default sonicwall timeout is 5 which matches what i am getting. I have restarted the SW and have been looking at the logs. I think im going to take the sonicwall out the equation with another device for now just to verify it is it.

Thanx for everyones replies!