We help IT Professionals succeed at work.

sonicwall vpn connection.... can't connect unless using a static ip

1,245 Views
Last Modified: 2014-08-27
ok here is the enviroment

sonicwall tz-170 with enhanced os

Windows 2008r2 server with DCHP server giving out leases

I setup the sonicwall globalVPN i believe correctly... I cannot seem to connect.... IT passes the first 2 sets and logs in
It then gets stuck at getting an IP address....

I've tried over hotspot and get the same response... so i dont think its internal

The error is "failed to renew the IP address for the virtual interface"

However if i go to the sonicwall vpn connection in the Network connections and assign it a IP address and subnet it works fine.... If i put the gateway of the firewall in it doesnt work

I'm completely stumped...any help will be greatly appreciated

Mike

sonicwall.rtf
Comment
Watch Question

Aaron TomoskyDirector, SD-WAN Solutions
CERTIFIED EXPERT

Commented:
It's easier to let the sonicwall assign ip addresses. I suggest you get things working like that first.

Then If you want to push for windows doing dhcp for the VPN connection here is a guide
http://help.mysonicwall.com/sw/eng/general/ui1/6600/DHCP/DHCP_over_VPN.htm

Author

Commented:
I forgot to mention that there is a SSL vpn connection from one office to another.... will any of this effect it??

Couldnt i just use the non existent wlan interface and pass out dhcp on there instead?
Aaron TomoskyDirector, SD-WAN Solutions
CERTIFIED EXPERT

Commented:
Are you trying to get vpn dhcp through the ssl VPN? If so, you probably need to add a firewall rule to allow that

Author

Commented:
there is a tz150 in another building and it is on a completely separate network..... 10.0.0.0

there is a ssl vpn connection from 10.0.0.0 to 192.168.99.0

i dont want to screw anything up by changing about the dhcp over vpn settings... i only want whatever i try to effect the vpn connections
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION
Aaron TomoskyDirector, SD-WAN Solutions
CERTIFIED EXPERT
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Author

Commented:
is the L2 setup a pain??? do i need a radius server? This sonicwall is a POS and logs me out every 30 seconds....so yeah... i already have a low tolerance for it

my issue with the app is it wont connect.. it is supposed to populate the domain field... or something like that and it does nothing...and i dont know what to enter there....
Aaron TomoskyDirector, SD-WAN Solutions
CERTIFIED EXPERT

Commented:
I use a windows 2012 domain and enabled nps (radius) on that. In sonicwall users settings, connect via ldap and radius. It needs ldap for groups and radius for user/passwords. Make a VPN group in ad, in the sonicwall add the VPN group to the VPN users local group.

Author

Commented:
I was able to figure out a solution on my own however aaron was very helpful as well

Gain unlimited access to on-demand training courses with an Experts Exchange subscription.

Get Access
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Empower Your Career
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.