Solved

Configuring a Sonicwall 2040 with SSL-VPN200

Posted on 2009-07-10
26
818 Views
Last Modified: 2012-05-07
I have a Sonicwall Pro 2040 Enhanced with 4.0 Firmware and trying to put a Sonicwall SSL-VPN200 on the network. I had no available ports in the 2040 directly, so chose to connect the SSL into the (LAN) Switch instead. Can somone give me step by step instructions for configuring the 2040 and SSL for VPN access?
0
Comment
Question by:tec1912
  • 14
  • 12
26 Comments
 
LVL 9

Expert Comment

by:hmare
ID: 24823999
Group VPN or point to point?
0
 

Author Comment

by:tec1912
ID: 24824269
Sorry for the ignorance, but can you elaborate on that?
0
 
LVL 9

Expert Comment

by:hmare
ID: 24824308
The SonicWall VPN is either a Group VPN-- a single point where clients connect from the internet-- or a point to point, where two firewall/ VPN devices connect two remote networks. Example: If you want users to be able to access your network from home, you would use Group VPN. if you are connecting a branch office, you use point to point.
0
 

Author Comment

by:tec1912
ID: 24824329
Good expaination! Group VPN.
0
 
LVL 9

Accepted Solution

by:
hmare earned 500 total points
ID: 24824377
Do you currently have an account with mysonicwall? I am not sure you can access the following link without logging in.
http://www.sonicwall.com/downloads/Terminating_the_WAN_GroupVPN_and_using_VPN_Access_in_SonicOS_Enhanced.pdf
0
 

Author Comment

by:tec1912
ID: 24824503
Have it. Let me give it a shot tonight and will follow up with you!
0
 

Author Comment

by:tec1912
ID: 24895772
Tried from home. Status comes back with an error. Looked at log file:
The number of users has exceeded the gateway license. Please try again later. & The phase 1 SA has died.
0
 
LVL 9

Expert Comment

by:hmare
ID: 24895810
Are you licensed for VPN? Its actually an addon for the Sonicwall.
0
 
LVL 9

Expert Comment

by:hmare
ID: 24895821
Aslo, verify that your ISP is not blocking VPN connections.
0
 

Author Comment

by:tec1912
ID: 24896252
just double checked for VPN licenses. Good for 10. How would I check ISP to see if blocking?
0
 
LVL 9

Expert Comment

by:hmare
ID: 24896299
call them and ask.
Are you using the sonicwall client, or Windows VPN?
Do you have DHCP set up from the sonicwall?
0
 

Author Comment

by:tec1912
ID: 24896345
Using the Sonicwall Client and do have DHCP set up from Sonicwall
0
 
LVL 9

Expert Comment

by:hmare
ID: 24897244
Have you verified that the shared secret is identical (is case sensitive)
Have you setup users on the SonicWall?
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 

Author Comment

by:tec1912
ID: 24897474
I had set myself up with full permissions. only other user is SONICWALL that I set up per instructions.
0
 
LVL 9

Expert Comment

by:hmare
ID: 24897486
Do you get an error message when you try to connect?
0
 

Author Comment

by:tec1912
ID: 24897536
Looked like it was going to go, but then status shows error. Unable to ping any network resources. Cannot try again until tonight from home system
0
 
LVL 9

Expert Comment

by:hmare
ID: 24897634
Are you using SonicOS Enhanced or standard?
0
 

Author Comment

by:tec1912
ID: 24897649
enhanced
0
 
LVL 9

Expert Comment

by:hmare
ID: 24897913
Do you have a static IP?
0
 

Author Comment

by:tec1912
ID: 24897925
For the PC, no. DHCP. Only items with static IP are Servers/Switches/Routers
0
 
LVL 9

Expert Comment

by:hmare
ID: 24897938
I meant for the Wan Port on the sonicwall. Do you have a static IP from your ISP?
0
 

Author Comment

by:tec1912
ID: 24897949
Yes I do.
0
 

Author Comment

by:tec1912
ID: 24904171
OK. Does look like I'm connecting to it now. Only problem that connection was a bit flakey? was able to ping resources then not. couldn't establish a map drive? Do you know of any tweaks that need to be done?
0
 
LVL 9

Expert Comment

by:hmare
ID: 24904234
The log should tell you if it dropped the connection, and why.
Go to VPN > Advanced
 check the attached image for an example that works.

sonicwall.JPG
0
 

Author Comment

by:tec1912
ID: 24904543
I did not have "enable dead peer detection for idle VPN sessions" checked and had 60 sec. instead of 30 for Dead Peer Detection interval. I'll give it another try tonight!
0
 

Author Comment

by:tec1912
ID: 24904567
Accepted the solution with the link attached for further reference.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

There are two basic ways to configure a static route for Cisco IOS devices. I've written this article to highlight a case study comparing the configuration of a static route using the next-hop IP and the configuration of a static route using an outg…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now