Solved

Sonicwall U-Turn PING interface

Posted on 2014-04-03
7
513 Views
Last Modified: 2014-04-18
I have setup 2 zone in my firewall LAN and WAN.

the WAN connected with 1 cisco router just to provide IPSEC VPN to some other vendor via my LAN interface.

now I need to have SSL VPN enable on my WAN and the SSL VPN request will from my LAN.

is it possible?
0
Comment
Question by:hell_angel
  • 4
  • 3
7 Comments
 
LVL 20

Expert Comment

by:carlmd
ID: 39974532
If you want to use the SSLVPN you must have a license for it. First check on your Sonicwall under System -> Licenses to make sure you have an SSLVPN license. If so, to configure use the following.

https://www.fuzeqna.com/sonicwallkb/ext/kbdetail.aspx?kbid=6461
0
 

Author Comment

by:hell_angel
ID: 39974848
we have the license and already configured it.
0
 
LVL 20

Expert Comment

by:carlmd
ID: 39974899
Can you be more specific on what your issue is?

If it is already configured, are you saying you are having a problem getting it to work?
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 

Author Comment

by:hell_angel
ID: 39975346
OK.. let me re-phase it...

My Sonicwall configured with LAN and WAN zone. LAN zone is facing corp network for internet access and other department routing.

WAN zone is connected with a Cisco router with Public IP. this router establish IPSEC VPN tunnel to access other private subnet behind the router. the route traffic will routed via corp network to vendor via LAN zone--> Corp network

We managed to get the routing works for both LAN and WAN. IPSEC working fine.

Now comes to our issue..
the so call WAN zone is configured with internet routable IP, in order to allowed users at corp or outside corp network able access the SSL VPN from internet, we need to terminate the SSL VPN at that WAN zone.

infront the sonicwall is Dell Force10 core switch which faced to corp network.
from core switch, im able reach to the router that at wan zone, BUT I can't PING the WAN zone interface IP which I terminate the SSL VPN..

hope this is clear
0
 
LVL 20

Expert Comment

by:carlmd
ID: 39975487
Just to be clear, you are referring to the Sonicwall SSLVPN and not something else. If so, what do you mean by terminate the SSLVPN at the WAN interface. Normally the SSLVPN is used to connect to specified lans or vlans on the LAN interface side of the Sonicwall.

Regarding the ping, do you have ping enabled for the X1 interface. Check on the Sonicwall at Network -> Interfaces  then click the Configure button for the X1 interface. On the Management line, is ping checked?
0
 

Author Comment

by:hell_angel
ID: 39976221
that's correct.
what I mean is users will enter the specific interface IP for ssl vpn login page.

for the PING test. yes, the interface already enable with PING.
only that when the client is resided at LAN zone, it can't PING the WAN zone  interface IP.
0
 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
ID: 39976300
It is not a problem that you cannot ping the WAN interface from the LAN.

You cannot use the SSLVPN from the LAN to connect to the WAN. The Sonicwall only listens for the SSLVPN connection on the WAN interface.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question