Solved

SSL VPN from a Mac to a Sonicwall TZ105 - what is required

Posted on 2013-05-28
4
1,019 Views
Last Modified: 2013-06-03
I have a client with a small network (10 machines on a 25 Mbps symmetrical fiber connection).  The client is Mac based and has requested the ability to VPN in from the outside.  

From what I can tell, I believe I can do this with the Sonicwall TZ105 and using the SSL VPN client built into the Mac (OS X 10.8).  I'd be using local accounts that I'd store/create on the Sonicwall itself.  I'm not a Mac expert, so I'd appreciate the advice of those who have done this before.  

Will the Sonicwall TZ105 do what I need?  Will it have what I need out of the box?  Do I need to add anything extra beyond what's in the box?

The goal of this process is to give access to LAN Mac desktops from users when they are at home.  

I'm much more familiar with PPTP VPNs whether they are hosted by a Windows server or another firewall endpoint.  

Thank you
0
Comment
Question by:dmessman
  • 2
  • 2
4 Comments
 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
ID: 39204989
The TZ105 is a UTM (firewall) device that will do what you want and a lot more. Do you really want a UTM device, or just an SSLVPN appliance?

The TZ105 comes with one SSLVPN license, and can support a maximum of 5. The additional licenses must be purchased.

In order to get up to 10 possible SSLVPN licenses you would have to purchase a TZ205. It comes with one SSLVPN and the additional can be purchased.

If you do not want/need a UTM (firewall) device, then you might consider the Sonicwall SRA1600 (Secure Remote Access), which comes with a 5 user SSLVPN license than can be upgraded to a maximum of 50.

Using the SSLVPN does not require you use any MAC clients. What you need locally will be downloaded on the first use.
0
 
LVL 9

Author Comment

by:dmessman
ID: 39207662
This perfectly answered my question.  

This might be the dumbest question after asked - but does an SSL VPN require an SSL certificate?  This will be important as I estimate costs.

Since the number of simultaneous VPNs will be minimal and the client will want to keep costs down, I'll probably go with the TZ105 and not the SRA1600, though that advice was extremely helpful.

Thanks
0
 
LVL 20

Expert Comment

by:carlmd
ID: 39207703
No, you do not require an SSL certificate to use the SSLVPN. All that is necessary is provided by the Sonicwall.

There is one more thing to consider. You mention 10 MACS on the network but not what they are doing. Keep in mind that all traffic will be passing through the Sonciwall all the time, so throughput needs to be considered. If the 10 users are doing heavy graphics or engineering, and up and down loading may files, this might be an issue requiring a faster Sonicwall. If they are just "normal" business type users, it should not be an issue.
0
 
LVL 9

Author Closing Comment

by:dmessman
ID: 39216125
excellent, complete answer to my question
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Port forwarding 14 121
Pulse secure VPN: after sudden disconnect from RDS, unable to logon again 5 55
smartboard connectivity and software 6 37
mac maintenance 6 35
In this article we have discussed about the OS X EI Capitan and how to fix Wi-Fi issue in OS X El Capitan. We have explained how to delete system level preferences and create a new Wi-Fi location to resolve Wi-Fi issue.
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now