Link to home
Start Free TrialLog in
Avatar of dwaynem2345
dwaynem2345Flag for United States of America

asked on

NAT SonicWall Standard OS

Trying to configure NAT for a specific site-to-site VPN with one of our remote vendors.  I am using a public IP that I have configured a one-to-one NAT on the firewall, i can ping that new address from internal as it is being changed, I get a phase I completion, but cannot get a phase II.  I seem to think it is my NAT, any help would be apprecitated
Avatar of JAN PAKULA
Flag of United Kingdom of Great Britain and Northern Ireland image

did you configured your public and private addresses as address object? did you check your firewall access rules under firewall -->access rules?
Avatar of dwaynem2345


i know how to create address objects in advanced, but how do you create them in standard?
send some logs from sonicwall
give me sometime and i will
Avatar of digitap
Flag of United States of America image

Link to home
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
12      02/15/2011 08:42:06.384      Received IKE SA delete request              
13      02/15/2011 08:42:06.384      RECEIVED<<< ISAKMP OAK INFO (InitCookie 0x7219364ff74c34dc, MsgID: 0x7125E719) *(HASH, DEL)              
14      02/15/2011 08:42:06.384      IKE Initiator: Received notify. NO_PROPOSAL_CHOSEN                   
15      02/15/2011 08:42:06.384      RECEIVED<<< ISAKMP OAK INFO (InitCookie 0x7219364ff74c34dc, MsgID: 0x276131E) *(HASH, NOTIFY:NO_PROPOSAL_CHOSEN), 500, 500              
16      02/15/2011 08:42:06.336      SENDING>>>> ISAKMP OAK QM (InitCookie 0x7219364ff74c34dc, MsgID: 0x74D4897) *(HASH, SA, NON, ID, ID              
17      02/15/2011 08:42:06.336      IKE Initiator: Start Quick Mode (Phase 2)              
18      02/15/2011 08:42:06.336      IKE Initiator: Main Mode complete (Phase 1)            3DES SHA1 Group 2 lifeSeconds=28800
are you trying to connect vpn from sonicwall enhanced to standard - if yes you have to use on both main mode vpn not agressive mode

This was it...totally forgot to Apply Firewall and NAT rules...thanks
sure...thanks for the points!