dwaynem2345
asked on
NAT SonicWall Standard OS
Trying to configure NAT for a specific site-to-site VPN with one of our remote vendors. I am using a public IP that I have configured a one-to-one NAT on the firewall, i can ping that new address from internal as it is being changed, I get a phase I completion, but cannot get a phase II. I seem to think it is my NAT, any help would be apprecitated
did you configured your public and private addresses as address object? did you check your firewall access rules under firewall -->access rules?
ASKER
i know how to create address objects in advanced, but how do you create them in standard?
send some logs from sonicwall
ASKER
give me sometime and i will
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
12 02/15/2011 08:42:06.384 Received IKE SA delete request
13 02/15/2011 08:42:06.384 RECEIVED<<< ISAKMP OAK INFO (InitCookie 0x7219364ff74c34dc, MsgID: 0x7125E719) *(HASH, DEL)
14 02/15/2011 08:42:06.384 IKE Initiator: Received notify. NO_PROPOSAL_CHOSEN
15 02/15/2011 08:42:06.384 RECEIVED<<< ISAKMP OAK INFO (InitCookie 0x7219364ff74c34dc, MsgID: 0x276131E) *(HASH, NOTIFY:NO_PROPOSAL_CHOSEN) 170.138.39.78, 500 64.9.44.90, 500
16 02/15/2011 08:42:06.336 SENDING>>>> ISAKMP OAK QM (InitCookie 0x7219364ff74c34dc, MsgID: 0x74D4897) *(HASH, SA, NON, ID, ID
17 02/15/2011 08:42:06.336 IKE Initiator: Start Quick Mode (Phase 2)
18 02/15/2011 08:42:06.336 IKE Initiator: Main Mode complete (Phase 1) 3DES SHA1 Group 2 lifeSeconds=28800
13 02/15/2011 08:42:06.384 RECEIVED<<< ISAKMP OAK INFO (InitCookie 0x7219364ff74c34dc, MsgID: 0x7125E719) *(HASH, DEL)
14 02/15/2011 08:42:06.384 IKE Initiator: Received notify. NO_PROPOSAL_CHOSEN
15 02/15/2011 08:42:06.384 RECEIVED<<< ISAKMP OAK INFO (InitCookie 0x7219364ff74c34dc, MsgID: 0x276131E) *(HASH, NOTIFY:NO_PROPOSAL_CHOSEN)
16 02/15/2011 08:42:06.336 SENDING>>>> ISAKMP OAK QM (InitCookie 0x7219364ff74c34dc, MsgID: 0x74D4897) *(HASH, SA, NON, ID, ID
17 02/15/2011 08:42:06.336 IKE Initiator: Start Quick Mode (Phase 2)
18 02/15/2011 08:42:06.336 IKE Initiator: Main Mode complete (Phase 1) 3DES SHA1 Group 2 lifeSeconds=28800
are you trying to connect vpn from sonicwall enhanced to standard - if yes you have to use on both main mode vpn not agressive mode
Jan ICT Tech CCNA
Jan ICT Tech CCNA
ASKER
This was it...totally forgot to Apply Firewall and NAT rules...thanks
sure...thanks for the points!