<div>
Hi Manuel,<br />
<br />
Thanks for answering this fast. Yes, the BAT file is already a logon script, so it applies to every machine in the domain at this moment.<br />
<br />
We have a primary management network that is 10.0.0.0/24, and the SonicWALL has IP of 1. And we have several VLANs for customers, that has its own VLAN interface and network. The 192.168.1.0 is the customer network.<br />
<br />
I was really hoping this was possible with a Static route or maybe by adding a NAT rule? <br />
<br />
<br />
I have added a simple paint pic on how the setups is, roughly.<br />
<a href="https://filedb.experts-exchange.com/incoming/2016/08_w33/1110732/simple-description.png" target="_blank" class="file-inline" title="simple-description.png (15 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>simple-description.png</a>
</div>


simple-description.png

<div>
I see. If we take the VPN box out of the actual network, and set it some kind of DMZ zone, a different network than the clients/servers, will that allow us to route it properly?<br />
<br />
This might be what you already explained, Im just slow.. :-)
</div>


<div>
Thanks for all your help Manuel. I will make the changes you suggested. :-)
</div>


<div>
Use Route Based VPN rather than policy based VPN<br />
<br />
View more example configurations and the SonicWALL webui and features on <a href="http://livedemo.sonicwall.com" rel="ugc">http://livedemo.sonicwall.com</a>&nbsp;or <a href="http://ngfw-demo.com" rel="ugc">http://ngfw-demo.com</a>
</div>


<div>
<div class="content wysiwyg-content">
Hi,<br />
<br />
I am struggeling with routing specific WAN/LAN IP's on a specific VLAN Interface, through a VPN connection instead of routing through the default gateway.<br />
<br />
Lets say the customers VLAN IP is 192.168.1.0/24 and the default customer gw is 192.168.1.1. They have a VPN box on this network that has a site to site connection to another location, with the IP: 192.168.1.2.<br />
<br />
I need to route some specific IP's through this VPN box, 192.168.1.2, and not the default gateway, 192.168.1.1. <br />
<br />
The rules is as follows: <br />
<br />
<b>Source:</b> VLAN56 Subnet (192.168.1.0/24)<br />
<b>Destination:</b> Address Object Group (192.168.2.5, 192.168.2.9 etc)<br />
<b>Service:</b> Any<br />
<b>Gateway:</b> VPN Box - 192.168.1.2<br />
<b>Interface:</b> VLAN56 Interface (the customer VLAN interface)<br />
<br />
<br />
Because I have not been able to solve this, I've used a temp quick fix on windows level. By using a bat file, like this:<br />
<br />
route ADD 192.168.2.5 MASK 255.255.255.255 192.168.1.2 <br />
<br />
This works for now, but I'd rather manage this route with our FW.<br />
<br />
Note: I have only tested this SonicWALL route on a virtual machine, and no physical machines, if that matters.<br />
<br />
Edit: I should add that this is my first time trying to add a Static route in SonicWALL. I have used the information I could find online on how to do this, and there might be some basic config mistakes/errors. :-)
</div>
</div>


Hi,

I am struggeling with routing specific WAN/LAN IP's on a specific VLAN Interface, through a VPN connection instead of routing through the default gateway.

Lets say the customers VLAN IP is 192.168.1.0/24 and the default customer gw is 192.168.1.1. They have a VPN box on this network that has a site to site connection to another location, with the IP: 192.168.1.2.

I need to route some specific IP's through this VPN box, 192.168.1.2, and not the default gateway, 192.168.1.1. 

The rules is as follows: 

Source: VLAN56 Subnet (192.168.1.0/24)
Destination: Address Object Group (192.168.2.5, 192.168.2.9 etc)
Service: Any
Gateway: VPN Box - 192.168.1.2
Interface: VLAN56 Interface (the customer VLAN interface)


Because I have not been able to solve this, I've used a temp quick fix on windows level. By using a bat file, like this:

route ADD 192.168.2.5 MASK 255.255.255.255 192.168.1.2 

This works for now, but I'd rather manage this route with our FW.

Note: I have only tested this SonicWALL route on a virtual machine, and no physical machines, if that matters.

Edit: I should add that this is my first time trying to add a Static route in SonicWALL. I have used the information I could find online on how to do this, and there might be some basic config mistakes/errors. :-)

SonicWALL - Static Route a VLAN

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.

Network Management

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.

Networking

Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.