Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 567
  • Last Modified:

Sonicwall U-Turn PING interface

I have setup 2 zone in my firewall LAN and WAN.

the WAN connected with 1 cisco router just to provide IPSEC VPN to some other vendor via my LAN interface.

now I need to have SSL VPN enable on my WAN and the SSL VPN request will from my LAN.

is it possible?
0
hell_angel
Asked:
hell_angel
  • 4
  • 3
1 Solution
 
carlmdCommented:
If you want to use the SSLVPN you must have a license for it. First check on your Sonicwall under System -> Licenses to make sure you have an SSLVPN license. If so, to configure use the following.

https://www.fuzeqna.com/sonicwallkb/ext/kbdetail.aspx?kbid=6461
0
 
hell_angelEngineerAuthor Commented:
we have the license and already configured it.
0
 
carlmdCommented:
Can you be more specific on what your issue is?

If it is already configured, are you saying you are having a problem getting it to work?
0
Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
hell_angelEngineerAuthor Commented:
OK.. let me re-phase it...

My Sonicwall configured with LAN and WAN zone. LAN zone is facing corp network for internet access and other department routing.

WAN zone is connected with a Cisco router with Public IP. this router establish IPSEC VPN tunnel to access other private subnet behind the router. the route traffic will routed via corp network to vendor via LAN zone--> Corp network

We managed to get the routing works for both LAN and WAN. IPSEC working fine.

Now comes to our issue..
the so call WAN zone is configured with internet routable IP, in order to allowed users at corp or outside corp network able access the SSL VPN from internet, we need to terminate the SSL VPN at that WAN zone.

infront the sonicwall is Dell Force10 core switch which faced to corp network.
from core switch, im able reach to the router that at wan zone, BUT I can't PING the WAN zone interface IP which I terminate the SSL VPN..

hope this is clear
0
 
carlmdCommented:
Just to be clear, you are referring to the Sonicwall SSLVPN and not something else. If so, what do you mean by terminate the SSLVPN at the WAN interface. Normally the SSLVPN is used to connect to specified lans or vlans on the LAN interface side of the Sonicwall.

Regarding the ping, do you have ping enabled for the X1 interface. Check on the Sonicwall at Network -> Interfaces  then click the Configure button for the X1 interface. On the Management line, is ping checked?
0
 
hell_angelEngineerAuthor Commented:
that's correct.
what I mean is users will enter the specific interface IP for ssl vpn login page.

for the PING test. yes, the interface already enable with PING.
only that when the client is resided at LAN zone, it can't PING the WAN zone  interface IP.
0
 
carlmdCommented:
It is not a problem that you cannot ping the WAN interface from the LAN.

You cannot use the SSLVPN from the LAN to connect to the WAN. The Sonicwall only listens for the SSLVPN connection on the WAN interface.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now