Solved

Sonicwall Setup

Posted on 2014-04-01
6
250 Views
Last Modified: 2014-04-06
What's the meaning of the NAT policies #30 ? What's the meaning for Interface Inbound & Outbound in the attached file ?

Is there any example on setting up a VPN connection before two sites with NSA 3600 and NSA 4600 ?

Tks
NSA4600.png
0
Comment
Question by:AXISHK
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 20

Expert Comment

by:carlmd
ID: 39968875
The referenced NAT says that a packet entering the X7 interface is translated to the X2IP as is leaves the Sonciwall on the X2 interface. For a more detailed explanation of the column heading on the NAT Policies page use the Help button on that page.

Regarding the VPN, I assume you mean a site to site VPN. The easiest way to set this up is to use the Wizard (upper right hand corner)  -> VPN Wizard -> Site-to-Site. Then answer the questions, and it will set this up for you. Please note that you MUST do this on each of the two Sonicwalls for this to work. If you don't want to go all the way, just look, just say no to the last question where it shows you what it will do and asks for your ok.
0
 

Author Comment

by:AXISHK
ID: 39971113
To test my understanding :

On rule #32, a packet entering the X0 (LAN) interface is translated to X2 (WAN) IP and leaves the Sonicwall on X2 inteface.  Correct ?

But how does it know to route the translated packet to X2 ?
0
 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
ID: 39971785
Yes. Based upon the destination address it uses a routing table to determine where to send the packet.  If the address is not on one of you local interfaces with rules permitting such, then it sends it via the default gateway, that is X2. By default everything is permitted from the LAN to the WAN unless you specifically restrict it.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:AXISHK
ID: 39973975
So, incoming packet comes in,  source & destination NAT, then route based on routing table.. is that the normal sequence flow ?

Tks
0
 
LVL 20

Expert Comment

by:carlmd
ID: 39974523
Yes
0
 

Author Closing Comment

by:AXISHK
ID: 39981952
Tks
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question