Solved

SonicWall (safeNet) VPN client problem

Posted on 2003-11-30
15
909 Views
Last Modified: 2013-11-21
I have a machine that correctly connects to annother site through the VPN, but when I export the policy from this machiene to another, the sceond one dosen't work.
By "dosen't work", I mean it dosen't do anything, its as if the policy was deactivated. It's not logging anything, and is ignoring all the packets sent to the other end. Thoughts anyone?
0
Comment
Question by:royce2020
  • 9
  • 6
15 Comments
 
LVL 18

Accepted Solution

by:
chicagoan earned 100 total points
ID: 9847936
Is this failing on one machine or any machine?
Try uninstalling the client and tcp/ip, reinstall tcp/ip, the client and import the policy.
0
 
LVL 3

Author Comment

by:royce2020
ID: 9852826
Just the one machine, but the idear is to have a single machine with all the VPNs that we use that users can then use this machine as a terminal server, and get acces to them that way.

could it be the terminal services cuasing the problem? the only diference between the two machines is that the one that works is Win XP, while the one that doesn't is win 2K with termanal servbices. I wouldn't have thought they interact, plus we have another terminal server that runs sonic wall as well and it works fine. Is there a setup step I'm missing in eather of these things?
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9853945
You may have to use 2 NIC's in your terminal server, one for incoming RD connections and one for the VPN client.
Set the default route out to the latter and connnect RD to the first one.
Make sure you install the VPN client in TS INSTALL mode.
0
 
LVL 3

Author Comment

by:royce2020
ID: 9860804
The Client was installed in TS Install mode (I was under the impresion that you couldn't install it if it wasn't, anyway).
Having a seperate network card is impractical: we lease the server, and part of the arangment is that we don't take it to bits nor add any internal parts (if it ever breaks down we have to get them to fix it). Is it posible to create a vurtual NIC (posibly mapping to one on another machine) and using that?
0
 
LVL 3

Author Comment

by:royce2020
ID: 9860896
I deactivated Terminal services and gave it a go. It works fine, even when TS is activated without anyone loged on (other than the console). Any thoughts on how to get around this with software?
0
 
LVL 3

Author Comment

by:royce2020
ID: 9861570
becuse All the VPNs are over the internet would it be posible to use a modem instead of the second NIC? This sounds feasable to me, but I don't even know where to start.
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9861925
>would it be posible to use a modem instead of the second NIC
that would work - I'm sure
I'm mulling over how a 2nd IP address on that NIC would work...
0
Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

 
LVL 3

Author Comment

by:royce2020
ID: 9861967
I'm sure I'm still mising something. I set the VPN to use WAN PPP/SLIP (as aposed to the LAN) and the TS to only accept incoming requests from the LAN.

There seems to be no diference at all.
Having two IPs on a single NIC would work, you think?
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9868299
wouldn't be hard to find out
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893011
I've never had to set up an NIC with two IPs. can you walk me through it, or at least point me in the right direction?
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9893031
It's in the advanced properties of TCPIP
Right click network neighborhood / properties / tcpip /
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893259
I have set the NIC to use two IPs, but I'm still having no joy. both the VPN and terminal services can only be bound to the network card (as apposed to the IP) of their target network. The VPN is set to use "Any" Internet interface, and still it does not work.
What Am I doing wrong here?
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893331
I have discovered that with my current setup, if the console makes a VPN connection, then anyone who logs on afterwards can use the connection over terminal services. This is a step in the right direction, but the person on the terminal client needs to be able to change the VPN from one to another, which currently they can't.
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9893386
two nics seem to be the thing
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893406
I've been experimenting with this am I'm thinking that this is just the way that it works (I don't think two NICs would produce any diferent results) like dailup networking, the user who created the connectetion has controll over it, but all the other users can use it. Unfortunatly with the VPN this is Always the console.

So my question has now changed radicaly: how can I cotroll the VPN running on the console as a remote user? I'm sure RDP can do this, but I've no idear how.
Even just a method to run a batchfile as the console from a remore location.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now