I have a Sonicwall FW Pro 1260 Enhanced OS with three interfaces: 1-int goes to the WAN, 1-int goes to th LAN, 1-int (OPT) connects to a switch for DMZ. We just recently configured a F5 Firepass SSL VPN and placed it in the LAN. On my FW, I configured NAT policies and Access Rules so that the external DNS namespace will NAT to the private IP address. During the testing phase, users were able to access the https://vpn.domain_name.com
, and logon onto the F5 SSL console for data and email access via Outlook.
There are two situations that I'm encountering:
When I'm inside the LAN, I can't hit the https://vpn.domain_name.com
via its DNS name or its external IP address, so I constantly have to connect via its internal IP address.
When I'm inside the DMZ, I can't hit the https://vpn.domain_name.com
via its DNS name or its external IP address, but able to hit it using the internal IP address.
My intention is to configure multiple APs (equipped with wireless distribution system technology) in the DMZ and have mobile users and consultants log on to the AP and hit the https://vpn.domain_name.com
to access their data and emails access. At this point, data is what matters the most. I've successfully configured RPC over HTTPs for their Outlook.
Please shed some lights to how I can configure the Sonicwall FW in order to hit the DNS namespace when I'm inside the DMZ and the LAN.
Thank you so much and apologize for the long description.