Solved

Sonic Wall TZ 100 VPN

Posted on 2013-12-06
  • Hardware Firewalls
  • SSL / HTTPS
  • VPN
  • Dell
  • IPsec
  • +3
3
995 Views
Last Modified: 2016-12-25
I have set up an ssl vpn on a sonicwall tz100.  All internal setting are correct (server, client, portal etc...)  per the sonicwall instructions.  However when I test the vpn connection using netextender it tells me that the username and password are wrong.  I have verified the info.

I am using the external ip address of our comcast box + port 443 in the server field of netextender.  However I don't think this is correct because when I type that into the url bar in my browser it takes me to the comcast management log in screen.  What is the proper set up with netextender, or can I just initiate the ssl VPN tunnel and use RDP to get to my machine?

Thanks
0
Comment
Question by:Sapeur
  • 2
3 Comments
 
LVL 30

Expert Comment

by:renazonse
ID: 39702156
Your Comcast router has management enabled on the interface so its not passing the traffic to your TZ100. You would either need to change the port hosting the SSL VPN site on the TZ100 or disable management on the Comcast modem.

Also, if you're using the modem interface IP you may want to set your TZ100 as the DMZ unless you're forwarding other ports to devices inside your network. Also, if you have more than 1 public address (IE, your Comcast public IP subnet is better than 255.255.255.252) you can assign a public IP to the internet interface on the Sonicwall.
0
 
LVL 25

Accepted Solution

by:
Diverse IT earned 500 total points
ID: 39706771
Hi Sapeur,

SonicWALL SSL-VPN runs on port 4433 by default. So you should type it in after your Public IP, e.g. 1.1.1.1:4433, then the other fields: username, password, domain. The domain must match that which you setup on the SSL-VPN domain field. So if you have a different one setup in the SSL-VPN Server than your Windows Server you should match them, but nevertheless use the one in the SSL-VPN Server.

Also, if you have remote management enabled for the SonicWALL or anything else with port forwarding running on 443 this will be an issue as well, which is why, again, SonicWALL designed SSL-VPN to run on 4433.

You can check/change the port for SSL-VPN on the SSL-VPN > Server settings.

You should put the Comcast modem into bridge mode if it isn't already and let the SonicWALL authenticate (depending on your broadband type). Call Comcast for instructions how if needed.

can I just initiate the ssl VPN tunnel and use RDP to get to my machine?
Yes, most assuredly you can!

Let me know if you have any other questions!
0
 
LVL 25

Expert Comment

by:Diverse IT
ID: 39743896
I'm glad I could help and thanks for the points!
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question