Sonicwall Routing Between VPN Sites

Posted on 2009-12-16
Last Modified: 2012-05-08
We have two sites, site A has a fibre connection to the internet that is presented as an ethernet port. Site B has a connection to site A that runs over our provider's fibre network.

So at Site A we have two ethernet sockets, one that gets access to the internet and another that gets us access to Site B.

We've purchased a sonicwall TZ210 at each site. At site A we have a TZ210 with the internet fibre connection plugged into the wan port, and Site B is plugged into one of the lan ports on the TZ210 at site A.

Down at Site B, their connection to Site A is plugged into the WAN port.

Everything works fine, but when Site B accesses network resources at Site A, their traffic is getting NAT'd.. which would make sense seeing that is how the sonicwall would be default set up.

So how do we disable the NAT on the sonicwall at Site B so that their internal traffic is not NAT'd?
Question by:aholling
    LVL 1

    Expert Comment

    I am assuming you have a static IP on both sites. Do you have a point to point connection setup between the two sites?

    Sounds like the device at site B does not distinguish between traffic going out, it just sees an external connection going out and NATs it accordingly

    Author Comment

    Site A has a static IP but since site b has no direct Internet access (they get it through site a) it has no ip. Our provider said " just think of it as a long Ethernet cable between the two sites, just don't plug it into your switch male sure the traffic is routed."
    LVL 1

    Accepted Solution

    Ok so you have a point to point link between the sites.

    How do the devices at Site B get IPs, dhcp from the router at Site B or from another device? If Site B is getting an IP from Site A and then giving out IPs to devices it has to NAT, or you would need to setup a default route at Site B so that devices looking for a specific subnet, i.e. Site A would go directly to it.

    Can you post the config of Site B?

    Author Closing Comment

    There was a NAT policy left there that shouldn't have been there. You probably needed to be intimately familiar with Sonicwall specifically to have answered the question exactly but you were on the right track.


    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Suggested Solutions

    There are two basic ways to configure a static route for Cisco IOS devices. I've written this article to highlight a case study comparing the configuration of a static route using the next-hop IP and the configuration of a static route using an outg…
    This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now