Solved

SonicWall (safeNet) VPN client problem

Posted on 2003-11-30
15
907 Views
Last Modified: 2013-11-21
I have a machine that correctly connects to annother site through the VPN, but when I export the policy from this machiene to another, the sceond one dosen't work.
By "dosen't work", I mean it dosen't do anything, its as if the policy was deactivated. It's not logging anything, and is ignoring all the packets sent to the other end. Thoughts anyone?
0
Comment
Question by:royce2020
  • 9
  • 6
15 Comments
 
LVL 18

Accepted Solution

by:
chicagoan earned 100 total points
ID: 9847936
Is this failing on one machine or any machine?
Try uninstalling the client and tcp/ip, reinstall tcp/ip, the client and import the policy.
0
 
LVL 3

Author Comment

by:royce2020
ID: 9852826
Just the one machine, but the idear is to have a single machine with all the VPNs that we use that users can then use this machine as a terminal server, and get acces to them that way.

could it be the terminal services cuasing the problem? the only diference between the two machines is that the one that works is Win XP, while the one that doesn't is win 2K with termanal servbices. I wouldn't have thought they interact, plus we have another terminal server that runs sonic wall as well and it works fine. Is there a setup step I'm missing in eather of these things?
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9853945
You may have to use 2 NIC's in your terminal server, one for incoming RD connections and one for the VPN client.
Set the default route out to the latter and connnect RD to the first one.
Make sure you install the VPN client in TS INSTALL mode.
0
 
LVL 3

Author Comment

by:royce2020
ID: 9860804
The Client was installed in TS Install mode (I was under the impresion that you couldn't install it if it wasn't, anyway).
Having a seperate network card is impractical: we lease the server, and part of the arangment is that we don't take it to bits nor add any internal parts (if it ever breaks down we have to get them to fix it). Is it posible to create a vurtual NIC (posibly mapping to one on another machine) and using that?
0
 
LVL 3

Author Comment

by:royce2020
ID: 9860896
I deactivated Terminal services and gave it a go. It works fine, even when TS is activated without anyone loged on (other than the console). Any thoughts on how to get around this with software?
0
 
LVL 3

Author Comment

by:royce2020
ID: 9861570
becuse All the VPNs are over the internet would it be posible to use a modem instead of the second NIC? This sounds feasable to me, but I don't even know where to start.
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9861925
>would it be posible to use a modem instead of the second NIC
that would work - I'm sure
I'm mulling over how a 2nd IP address on that NIC would work...
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 3

Author Comment

by:royce2020
ID: 9861967
I'm sure I'm still mising something. I set the VPN to use WAN PPP/SLIP (as aposed to the LAN) and the TS to only accept incoming requests from the LAN.

There seems to be no diference at all.
Having two IPs on a single NIC would work, you think?
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9868299
wouldn't be hard to find out
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893011
I've never had to set up an NIC with two IPs. can you walk me through it, or at least point me in the right direction?
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9893031
It's in the advanced properties of TCPIP
Right click network neighborhood / properties / tcpip /
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893259
I have set the NIC to use two IPs, but I'm still having no joy. both the VPN and terminal services can only be bound to the network card (as apposed to the IP) of their target network. The VPN is set to use "Any" Internet interface, and still it does not work.
What Am I doing wrong here?
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893331
I have discovered that with my current setup, if the console makes a VPN connection, then anyone who logs on afterwards can use the connection over terminal services. This is a step in the right direction, but the person on the terminal client needs to be able to change the VPN from one to another, which currently they can't.
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9893386
two nics seem to be the thing
0
 
LVL 3

Author Comment

by:royce2020
ID: 9893406
I've been experimenting with this am I'm thinking that this is just the way that it works (I don't think two NICs would produce any diferent results) like dailup networking, the user who created the connectetion has controll over it, but all the other users can use it. Unfortunatly with the VPN this is Always the console.

So my question has now changed radicaly: how can I cotroll the VPN running on the console as a remote user? I'm sure RDP can do this, but I've no idear how.
Even just a method to run a batchfile as the console from a remore location.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Nic to NIC 5 46
Roaming profile & Office 365 3 31
Adding a secondary DC Server 2008R2 10 42
EIGRP on point-to-point vlan 14 21
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now