How do I make it so that computers inside our Sonicwall's LAN can access a computer connected to sonicwall's WAN port?

Posted on 2008-11-15
Last Modified: 2013-11-16
Our Sonicwall is connected directly to our T1 IAD/Router which then goes to the T1 company's data center. They offer a service where you can create an "always on", no configuration VPN connection between 1 Router on the T1 network and another one as long as they both use the same T1 company. Before installing the Sonicwall at location 1, we had this configured so that at location 1 (the network), you could access the files of the other location 2 (the network). so at location 1, typing in would pull up the server at location 2 because that was the ip of the server, and at location 2 you could type in and pull up the sever at location 1. Now that the sonicwall is in place at location 1, the ips are all 192.168.168.###, and we cannot pull up We understand that with the sonicwall, it is understandable to not be able to pull up the files from location 1 at location2 which is okay - but we want to be able to pull up the files of location 2 while at location 1 because we used to do our backups from location 1 to location 2 (for offsite backups) by just typing in as the place to backup to. How can we setup so that traffic to location 2 from location 1 is allowed and not blocked.
Question by:jeffschick
    LVL 16

    Expert Comment

    I'm not following your description, I'm afraid.

    Is the "target" server that used to be accessed as now *behind* a Sonicwall?

    If so, then you need to set up a NAT rule which maps the "public" Ip address of that server ( to the "private" address (192.168.168.<x>). And a Firewall rule permitting "inbound" (WAN to LAN) access to that destination from the other network.

    The sonicwall isn't a "brick wall", it's a MASSIVLY configurable tool which lets you *define* what is and what is not allowed.

    If I'm not correctly understanding you, then please try again - clarify your description with a diagram if you can, and also tell us what model Sonicwalls are in use and if they are Standard or Enhanced OS units.

    For example, as I'm seeing your network

    Sonicwall <model><OS>
    WAN zone 1 -----
    Service provided router
    WAN Zone 1 ------
    Sonicwall <model><OS>
    LAN two ----- etc----


    Author Comment

    The target server is, which is not behind the sonicwall. it is located at another location, but with our ISP they create an always on VPN between the two locations. We are trying to get from a computer inside the sonicwall network ( to the server outside the sonicwall network  -
    I appreciate your help in helping me fix this weird problem. Thanks!
    LVL 16

    Accepted Solution

    If the address is OUTside your (only) sonicwall, it ought to be regared just as a "normal" WAN address, unless the sonciwall has been explicitly told to block that address for some reason.  The address is a martian - it must not be used on the internet, only in a private network. But you ARE in a private network, and there are no default rules in the sonicwall which assume the WAN side of the sonicwall is connected directly to the internet. Unless who-ever installed the sonicwall has put such an anti-martian rule in for you not realising it will cause problems.

    Do you get any entry in the Sonicwall log when you try to access the remote server?

    LVL 16

    Expert Comment

    I'm assuming, by the way, taht there is only ONE connection to your ISP, via which you reach both the internet and the far end of the supplied VPN tunnel, and that the Sonicwall is NOW between your LAn and this connection point. If that's not correct, pls show how it all fits together.


    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    Suggested Solutions

    Title # Comments Views Activity
    Setup SPAN to monitor DMZ traffic 2 37
    OWASP ZAP get started. Step 2. 2 34
    PCI standards 5 35
    Cisco ACS re-imaging with CIMC 2 25
    To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
    Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now