dwaynem2345
asked on
SonicWall TZ 180
I have a SonicWall TZ180 at a smaller location, I have two servers that sit behind the firewall and only a single IP, is there a way to NAT so that I can get from the PUBLIC IP to both of those servers? There is no license for Global VPN Client on this firewall or i would just use that.
thanks for the help
thanks for the help
The 180 should have at least come with one ssl-vpn licnese, so all you'd need to do is configure it on the appliance. alternatively, you can change the RDP port on the second server. on the 180, create a new service to match the port you change the second server to. then, run the public server wizard twice. the first time you specify the default rdp port. the second time you specify the new service. when you rdp to the second server, you specify the port you created.Here is a KB for setting up the ssl-vpn:http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=6461
ASKER
I will look at trying both
sounds good...let us know if you run into any challenges...
ASKER
Currently the software is the standard version, do i have to upgrade to enhanced first?
Sorry. Yes, you need the enhanced to use the SSL-VPN functionality. I didn't think to ask. I've not seen the 180 with Standard. All the appliances we sell have Enhanced. Here is a link to help open the ports with Standard OS.
http://bit.ly/99ZqpD
http://bit.ly/99ZqpD
The Sonicwall might come with only one GVC license but it has upto 10 free L2TP or PPTP connections or (I think) 5 VPN site to site licenses.
You can use those free!
Now that aside, what are you trying to connect to on these two servers? RDP, http, FTP, or something else. Are they the same on both servers or different applications and ports?
You can use those free!
Now that aside, what are you trying to connect to on these two servers? RDP, http, FTP, or something else. Are they the same on both servers or different applications and ports?
ASKER
RDP for both, I can change the ports if necessary
There will be no need to change server listening ports for services. Once you connect to the VPN endpoint, the remote computer(s) will act as if they are local to the servers.
There will also be no need to NAT anything either.
There will also be no need to NAT anything either.
ASKER
problem for the site to site, the remote site that connects to these does not have a firewall, and since the global vpn client has no licenses..that is why i was trying to NAT
What are the remote site clients using for computers? Windows or Macs?
ASKER
Windows
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
@nappy :: I forgot about L2TP/PPTP connections, but connecting clients to the sonicwall in this manner requires the enhanced OS. Am I wrong? The article below implies enhanced is required. I looked for an article to configure the standard OS, but can't find one. sonicwall is good about providing articles for both.
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3599
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7460
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7461
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3599
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7460
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7461
Yes just:
- go into the Admin WebUI
- Click on VPN
- Click on L2TP server
- Enable L2TP server
- Click on Configure and away you go.
- go into the Admin WebUI
- Click on VPN
- Click on L2TP server
- Enable L2TP server
- Click on Configure and away you go.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.