Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1491
  • Last Modified:

Sonicwall firewall VPN works except we cannot browse to web while connected

Hi Experts,

We just installed and configured a Sonicwall tz190 and the Sonicwall Global VPN client software and almost everything appears to be working.

We can connect using the VPN Client software
We get a private IP address after connecting
We can see our network shares and printer

BUT

We cannot then browse to the web.

Does anyone have any ideas on how to proceed.  Be gentle...we're new with this product.

Thanks...
Jason
0
Jason C. Levine
Asked:
Jason C. Levine
1 Solution
 
dpk_walCommented:
Normally when you connect to VPN, a dynamic route is added to your routing table which enables routing from your machine to the remote subnet. For eg, if you get 192.168.1.253 as virtual private IP address, and your mask is 24-bit, you would have a route 192.168.1.0 with mask 255.255.255.0 and gateway 192.168.1.253 [working of split tunneling].

If you have configured sonicwall where all the traffic flows over VPN, or 0.0.0.0 subnet with 0.0.0.0 mask, you need to change this.

To check whether this is the case, before you connect VPN on command prompt of your client machine run command:
route print
Now establish VPN tunnel and run above command again. If you see 0.0.0.0 subnet with 0.0.0.0 mask and virtual private IP as gateway here lies the problem.

Thank you.
0
 
Jason C. LevineNo oneAuthor Commented:
That did it, thanks.
0
 
WardElderCommented:
I too have this problem.  I did a ROUTE DELETE of the bad default route and did a ROUTE ADD of the proper default route.  This fixed the problem.  Now... how do I automate this?  I don't want to be deleteing and adding routes everytime I create a tunnel...  Is there a setting somewhere in the VPN Client that takes care of this?  Do I have to create a script?  (messy)
0
 
scottmorabitoCommented:
Heads up, for me the problem was that my Everyone group had everything added. Apparently you should only put in the specific LAN's you need as adding everything will break it.
0

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now