Can't ping second VLAN subnet through SonicWall TZ215W

Posted on 2015-02-02
Last Modified: 2015-02-03
I have a SonicWall TZ-215W setup in bridge mode.
- Wireless is a guest network only for internet access 100.150.10.x
- X0 is LAN 192.168.10.x
- X1 is WAN

I also have a Cisco SG300-20 that is configured as a layer 3 switch with two VLAN's
- VLAN1 192.168.10.x
- VLAN10 192.168.0.x

Everything works great internally. I can ping/access both VLAN's from both the SG300 and the SonicWall. I can use the diagnostic tools from the SonicWall and ping devices on both VLAN's using the X1 interface. I can access the internet from both VLAN's.

When I connect via VPN or SSLVPN I can ping everything on VLAN1, but cannot touch anything on VLAN10.

I am probably overlooking something simple, but running out of time to get this up and running.
Question by:teckygeek
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 20

Expert Comment

ID: 40585997
Under SSLVPN -> Client Routes have you added VLAN10?

Author Comment

ID: 40586420
I have, but I am still unable to ping anything on VLAN10 through a VPN/SSLVPN connection.
LVL 20

Expert Comment

ID: 40586515
Any chance that the subnet on the client end of the SSLVPN is the same as VLAN10?
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.


Author Comment

ID: 40586841
Client is setup for DHCP and obtains an IP address from VLAN1

Route(s) on the client

Global VPN Client
LVL 20

Expert Comment

ID: 40586866
With the SSLVPN connected, do a "netstat -rn" in a command prompt window on the client. Does it have a route to vlan10?

If possible, post the result with the SSLVPN both connected and disconnected.,

Author Comment

ID: 40587100

Destination        Gateway            Flags        Refs      Use   Netif Expire
default          UGSc           18        0     en0
127                UCS             0        0     lo0          UH              4    36111     lo0
169.254            link#4             UCS             0        0     en0
172.16.12/24       link#4             UCS             4        0     en0     link#4             UCS             1        0     en0        c0:67:af:db:cf:61  UHLWIir        19        0     en0   1178        0:50:56:b9:2b:7c   UHLWIi         36      944     en0   1194       78:2b:cb:3a:e6:c5  UHLWIi          2    55090     en0    925       0:11:32:13:b:b1    UHLWIi          1     2761     en0    914   link#4             UCS             0        0     en0      ff:ff:ff:ff:ff:ff  UHLWbI          0       11     en0
172.16.208/24      link#12            UC              2        0  vmnet8       0:50:56:c0:0:8     UHLWIi          1       29     lo0     ff:ff:ff:ff:ff:ff  UHLWbI          0       11  vmnet8
172.16.252/24      link#11            UC              2        0  vmnet1       0:50:56:c0:0:1     UHLWIi          1       29     lo0     ff:ff:ff:ff:ff:ff  UHLWbI          0       11  vmnet1

Destination        Gateway            Flags        Refs      Use   Netif Expire
default          UGSc           55        0     en0
default            link#10            UCSI            0        0   utun0     link#10            UCS             0        0   utun0
127                UCS             0        0     lo0          UH              4    36115     lo0
169.254            link#4             UCS             0        0     en0
172.16.12/24       link#4             UCS             4        0     en0     link#4             UCS             1        0     en0        c0:67:af:db:cf:61  UHLWIir        57        0     en0   1100        0:50:56:b9:2b:7c   UHLWIi         49     1457     en0   1193       78:2b:cb:3a:e6:c5  UHLWIi          3    81513     en0    787       0:11:32:13:b:b1    UHLWIi          1     3697     en0    776   link#4             UCS             0        0     en0      28:cf:e9:17:f2:f9  UHLWI           0        0     en0   1117
172.16.208/24      link#12            UC              1        0  vmnet8       0:50:56:c0:0:8     UHLWIi          1       29     lo0
172.16.252/24      link#11            UC              1        0  vmnet1       0:50:56:c0:0:1     UHLWIi          1       29     lo0
192.168.0          link#10            UCS             0        0   utun0
192.168.10         link#10            UCS             0        0   utun0    link#10            UCS             1        0   utun0       link#10            UHWIi           6        8   utun0      UH              0        0   utun0
SonicWall WAN IP Address        UGHS            0        0     en0
LVL 39

Accepted Solution

Aaron Tomosky earned 500 total points
ID: 40587340
in the sonicwall, network, routing, do you have something like this:
Any       N-vlan10       Any       R-sg300       X0       20       8

Author Closing Comment

ID: 40587358
I knew it was going to be something simple I overlooked. Added the route and everything works like a charm.


Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will step through configuring a SonicWALL appliance to utilize an internal DHCP server for Global VPN Client (GVC) hosts.  There are times when using an external (external to the SonicWALL) DHCP server, such as Windows Servers, isn’t pr…
Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor ( Top Charts is a view in which you can set seve…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question