Tricks: Unable to access Sonicwall Management Portal? ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Most modern web browser no longer support RC4 encrytion as it is officially declared unsecured by IETF memo RFC7465 published on February 2015.

Thus if RC4-Only encryption is enabled in SonicOS, it would block access to the Firewall Management Portal and will display “err_ssl_version_or_cipher_mismatch” error on the browser. Google Chrome and Firefox were among the first ones to unsupport RC4 encryption, while IE was the last one to end its support on RC4.

In SonicOS 5.9.x and above firmware, an option to enable only RC4 ciphers has been introduced. Enabling this option would force SONICWALL to negotiate SSL connections using RC4-SHA1 or RC4-MD5.

A common workaround is to disable “RC4-only” Option on your Sonicwall.

Procedure: Note that this change will require a firewall reboot!

  1. Login to the SONICWALL management GUI.
  2. Change to the Diag page at https://<interface IP address>/diag.html
  3. Under Encryption Settings, enable check box Enable RC4-Only Cipher Suite Support
  4. Click on Accept at the top to save the change.
  5. Restart for the change to take effect.

image2017-6-16 13-26-22

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s