Solved

Sonicwall U-Turn PING interface

Posted on 2014-04-03
7
501 Views
Last Modified: 2014-04-18
I have setup 2 zone in my firewall LAN and WAN.

the WAN connected with 1 cisco router just to provide IPSEC VPN to some other vendor via my LAN interface.

now I need to have SSL VPN enable on my WAN and the SSL VPN request will from my LAN.

is it possible?
0
Comment
Question by:hell_angel
  • 4
  • 3
7 Comments
 
LVL 20

Expert Comment

by:carlmd
Comment Utility
If you want to use the SSLVPN you must have a license for it. First check on your Sonicwall under System -> Licenses to make sure you have an SSLVPN license. If so, to configure use the following.

https://www.fuzeqna.com/sonicwallkb/ext/kbdetail.aspx?kbid=6461
0
 

Author Comment

by:hell_angel
Comment Utility
we have the license and already configured it.
0
 
LVL 20

Expert Comment

by:carlmd
Comment Utility
Can you be more specific on what your issue is?

If it is already configured, are you saying you are having a problem getting it to work?
0
Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

 

Author Comment

by:hell_angel
Comment Utility
OK.. let me re-phase it...

My Sonicwall configured with LAN and WAN zone. LAN zone is facing corp network for internet access and other department routing.

WAN zone is connected with a Cisco router with Public IP. this router establish IPSEC VPN tunnel to access other private subnet behind the router. the route traffic will routed via corp network to vendor via LAN zone--> Corp network

We managed to get the routing works for both LAN and WAN. IPSEC working fine.

Now comes to our issue..
the so call WAN zone is configured with internet routable IP, in order to allowed users at corp or outside corp network able access the SSL VPN from internet, we need to terminate the SSL VPN at that WAN zone.

infront the sonicwall is Dell Force10 core switch which faced to corp network.
from core switch, im able reach to the router that at wan zone, BUT I can't PING the WAN zone interface IP which I terminate the SSL VPN..

hope this is clear
0
 
LVL 20

Expert Comment

by:carlmd
Comment Utility
Just to be clear, you are referring to the Sonicwall SSLVPN and not something else. If so, what do you mean by terminate the SSLVPN at the WAN interface. Normally the SSLVPN is used to connect to specified lans or vlans on the LAN interface side of the Sonicwall.

Regarding the ping, do you have ping enabled for the X1 interface. Check on the Sonicwall at Network -> Interfaces  then click the Configure button for the X1 interface. On the Management line, is ping checked?
0
 

Author Comment

by:hell_angel
Comment Utility
that's correct.
what I mean is users will enter the specific interface IP for ssl vpn login page.

for the PING test. yes, the interface already enable with PING.
only that when the client is resided at LAN zone, it can't PING the WAN zone  interface IP.
0
 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
Comment Utility
It is not a problem that you cannot ping the WAN interface from the LAN.

You cannot use the SSLVPN from the LAN to connect to the WAN. The Sonicwall only listens for the SSLVPN connection on the WAN interface.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Transferring data across the virtual world became simpler but protecting it is becoming a real security challenge.  How to approach cyber security  in today's business world!
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now