• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 549
  • Last Modified:

Sonicwall U-Turn PING interface

I have setup 2 zone in my firewall LAN and WAN.

the WAN connected with 1 cisco router just to provide IPSEC VPN to some other vendor via my LAN interface.

now I need to have SSL VPN enable on my WAN and the SSL VPN request will from my LAN.

is it possible?
0
hell_angel
Asked:
hell_angel
  • 4
  • 3
1 Solution
 
carlmdCommented:
If you want to use the SSLVPN you must have a license for it. First check on your Sonicwall under System -> Licenses to make sure you have an SSLVPN license. If so, to configure use the following.

https://www.fuzeqna.com/sonicwallkb/ext/kbdetail.aspx?kbid=6461
0
 
hell_angelAuthor Commented:
we have the license and already configured it.
0
 
carlmdCommented:
Can you be more specific on what your issue is?

If it is already configured, are you saying you are having a problem getting it to work?
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
hell_angelAuthor Commented:
OK.. let me re-phase it...

My Sonicwall configured with LAN and WAN zone. LAN zone is facing corp network for internet access and other department routing.

WAN zone is connected with a Cisco router with Public IP. this router establish IPSEC VPN tunnel to access other private subnet behind the router. the route traffic will routed via corp network to vendor via LAN zone--> Corp network

We managed to get the routing works for both LAN and WAN. IPSEC working fine.

Now comes to our issue..
the so call WAN zone is configured with internet routable IP, in order to allowed users at corp or outside corp network able access the SSL VPN from internet, we need to terminate the SSL VPN at that WAN zone.

infront the sonicwall is Dell Force10 core switch which faced to corp network.
from core switch, im able reach to the router that at wan zone, BUT I can't PING the WAN zone interface IP which I terminate the SSL VPN..

hope this is clear
0
 
carlmdCommented:
Just to be clear, you are referring to the Sonicwall SSLVPN and not something else. If so, what do you mean by terminate the SSLVPN at the WAN interface. Normally the SSLVPN is used to connect to specified lans or vlans on the LAN interface side of the Sonicwall.

Regarding the ping, do you have ping enabled for the X1 interface. Check on the Sonicwall at Network -> Interfaces  then click the Configure button for the X1 interface. On the Management line, is ping checked?
0
 
hell_angelAuthor Commented:
that's correct.
what I mean is users will enter the specific interface IP for ssl vpn login page.

for the PING test. yes, the interface already enable with PING.
only that when the client is resided at LAN zone, it can't PING the WAN zone  interface IP.
0
 
carlmdCommented:
It is not a problem that you cannot ping the WAN interface from the LAN.

You cannot use the SSLVPN from the LAN to connect to the WAN. The Sonicwall only listens for the SSLVPN connection on the WAN interface.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now