Solved

Sonic Wall TZ 100 VPN

Posted on 2013-12-06
3
896 Views
Last Modified: 2013-12-28
I have set up an ssl vpn on a sonicwall tz100.  All internal setting are correct (server, client, portal etc...)  per the sonicwall instructions.  However when I test the vpn connection using netextender it tells me that the username and password are wrong.  I have verified the info.

I am using the external ip address of our comcast box + port 443 in the server field of netextender.  However I don't think this is correct because when I type that into the url bar in my browser it takes me to the comcast management log in screen.  What is the proper set up with netextender, or can I just initiate the ssl VPN tunnel and use RDP to get to my machine?

Thanks
0
Comment
Question by:Sapeur
  • 2
3 Comments
 
LVL 30

Expert Comment

by:renazonse
ID: 39702156
Your Comcast router has management enabled on the interface so its not passing the traffic to your TZ100. You would either need to change the port hosting the SSL VPN site on the TZ100 or disable management on the Comcast modem.

Also, if you're using the modem interface IP you may want to set your TZ100 as the DMZ unless you're forwarding other ports to devices inside your network. Also, if you have more than 1 public address (IE, your Comcast public IP subnet is better than 255.255.255.252) you can assign a public IP to the internet interface on the Sonicwall.
0
 
LVL 24

Accepted Solution

by:
diverseit earned 500 total points
ID: 39706771
Hi Sapeur,

SonicWALL SSL-VPN runs on port 4433 by default. So you should type it in after your Public IP, e.g. 1.1.1.1:4433, then the other fields: username, password, domain. The domain must match that which you setup on the SSL-VPN domain field. So if you have a different one setup in the SSL-VPN Server than your Windows Server you should match them, but nevertheless use the one in the SSL-VPN Server.

Also, if you have remote management enabled for the SonicWALL or anything else with port forwarding running on 443 this will be an issue as well, which is why, again, SonicWALL designed SSL-VPN to run on 4433.

You can check/change the port for SSL-VPN on the SSL-VPN > Server settings.

You should put the Comcast modem into bridge mode if it isn't already and let the SonicWALL authenticate (depending on your broadband type). Call Comcast for instructions how if needed.

can I just initiate the ssl VPN tunnel and use RDP to get to my machine?
Yes, most assuredly you can!

Let me know if you have any other questions!
0
 
LVL 24

Expert Comment

by:diverseit
ID: 39743896
I'm glad I could help and thanks for the points!
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now