networkmgr
asked on
RDP or VPN Through Sonicwall TZ 100 With Cisco 1921 Behind Sonicwall
I am trying to either setup RDP or an SSL VPN to go through a Sonicwall TZ100 from the internet, then through a Cisco 1921 router to the LAN on 192.168.1.0. I am not quite sure whether this requires setting up routes in the Sonicwall or how to do it. Also, are there configuration changes I have to make in the Cisco router to accomplish this? I have attached a network diagram.
Capture.PNG
Capture.PNG
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
ArneLovius, Your solution is what I tried first, but after configuring the SSL VPN in the Sonicwall and including the 192.168.1.0 network in the VPN routes, I could not connect to or ping anything on the 192.168.1.0 network. I had no problem connecting to the SSL VPN with the Sonicwall Net Extender and the Net Extender showed that I had a route to the 192.168.1.0 network, but still had no access to anything on that network.
Hi There,
Kindly post the route print from the source machine and traceroute to a server in 192.168.1.x LAN before and after connecting the VPN.
Kindly post the route print from the source machine and traceroute to a server in 192.168.1.x LAN before and after connecting the VPN.
ASKER
I got it fixed. I had an old address object in the firewall that was set to the 192.168.1.0 network before the Cisco routers were installed. I set this address object to 192.168.20.0 and the SSL VPN works now. Thanks for all the help offered!
ASKER
I've requested that this question be closed as follows:
Accepted answer: 0 points for networkmgr's comment [url="https://www.experts-exchange.com/questions/28945773/RDP-or-VPN-Through-Sonicwall-TZ-100-With-Cisco-1921-Behind-Sonicwall.html?anchorAnswerId=41597054#a41597054"]#a41597054[/url]
for the following reason:
I fixed it myself.
Accepted answer: 0 points for networkmgr's comment [url="https://www.experts-exchange.com/questions/28945773/RDP-or-VPN-Through-Sonicwall-TZ-100-With-Cisco-1921-Behind-Sonicwall.html?anchorAnswerId=41597054#a41597054"]#a41597054[/url]
for the following reason:
I fixed it myself.
The question was how to do something, not how to fix a not working installation
ASKER
Yes and I found the answer to my problem on my own. The recommendations didn't help me. So, what do you want me to do?
ASKER
I got it fixed. I had an old address object in the firewall that was set to the 192.168.1.0 network before the Cisco routers were installed. I set this address object to 192.168.20.0 and the SSL VPN works now. Thanks for all the help offered!
Kindly confirm the exact requirement out here since you have emphasized RDP to a LAN segment.
Do you want your mobile employees to be able to connect to the office network?
In the above case VPN seems to be an ideal solution from security point of view.
Do confirm the bandwidth available for your office internet based and number of employees who would connect externally so that we could recommend Full Tunnel or split tunnel VPN.
Also ensure that DLP mechanisms such as symantec are installed on the mobile users laptop to ensure that there is no unwanted transfer of critical data.