Tour the ATEN booth to see the the Latest Addition to the Modular Matrix Switch Series, New 4K HDMI Over IP Extender and more! Enter ATEN's Ultimate Giveaway Sweepstakes for a chance to win one of several great prizes, including an ATEN US7220 2-Port Thunderbolt 2 Sharing Switch!
Course Of The Month
7 days, 3 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
SonicWall Router - VPN Tunnel
Posted on 2016-08-15
Hi Experts,
I’m working on creating a vpn tunnel to a 3rd party host. The host is sharing their server among a few of the clients. When setting up a vpn tunnel, the router tech informed me that an existing client is already using the same network addressing scheme as we are.
Is it possible to emulate another network and ultimately have it connect seamlessly onto our network? This is a client\server configuration so the entire Lan Primary SubNet will need to access the cloud resource.
We are on 10.0.0.x \ They are on 192.168.250.x
Not sure if this is correct, but I setup the VPN tunnel up to this point as:
Local Network is: should be 10.0.0.0, but I crated 10.0.15.0 thinking I can create a route translation
Destination is: 192.168.250.0
When I attempted to connect the tunnel, of course I get an invalid cookie error which means I don't know what I am doing.
Thanks for any help you can provide.
I’m working on creating a vpn tunnel to a 3rd party host. The host is sharing their server among a few of the clients. When setting up a vpn tunnel, the router tech informed me that an existing client is already using the same network addressing scheme as we are.
Is it possible to emulate another network and ultimately have it connect seamlessly onto our network? This is a client\server configuration so the entire Lan Primary SubNet will need to access the cloud resource.
We are on 10.0.0.x \ They are on 192.168.250.x
Not sure if this is correct, but I setup the VPN tunnel up to this point as:
Local Network is: should be 10.0.0.0, but I crated 10.0.15.0 thinking I can create a route translation
Destination is: 192.168.250.0
When I attempted to connect the tunnel, of course I get an invalid cookie error which means I don't know what I am doing.
Thanks for any help you can provide.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
4
2
7 Comments
Active 1 day ago
Couple leading questions.
Is it just one device on your end that needs to communicate with them?
If it's multiple devices on your end that need to access the remote end is the initiation of traffic always from your side?
MO
Is it just one device on your end that needs to communicate with them?
If it's multiple devices on your end that need to access the remote end is the initiation of traffic always from your side?
MO
"an existing client is already using the same network addressing scheme as we are'
This represents a problem when your LAN subnet is the same as that of another connection.
You example "We are on 10.0.0.x \ They are on 192.168.250.x" does not reflect that.
What am I missing here?
This represents a problem when your LAN subnet is the same as that of another connection.
You example "We are on 10.0.0.x \ They are on 192.168.250.x" does not reflect that.
What am I missing here?
Active 2 days ago
You can do NAT over VPN
see: https://support.software.dell.com/kb/sw7759
View more example configurations and the SonicWALL webui and features on http://livedemo.sonicwall.com or http://ngfw-demo.com
see: https://support.software.dell.com/kb/sw7759
View more example configurations and the SonicWALL webui and features on http://livedemo.sonicwall.com or http://ngfw-demo.com
Active 1 day ago
@carlmd,
I thinking byd2k was referring to the 192.168.250.x subnet being the destination subnet. The local subnet of 10.0.0.x conflicts with some other branch already connected.
MO
I thinking byd2k was referring to the 192.168.250.x subnet being the destination subnet. The local subnet of 10.0.0.x conflicts with some other branch already connected.
MO
Active 2 days ago
Let me do this by example,
I have a 192.168.222.0/24 subnet at home, have a VPN tunnel to corporate but they require me to use a 10.z.y.x/24.
The VPN config has 10.z.y.x as source network and corporate as destination network.
I then added NAT policy to translate 192.168.222.x to 10.z.y.x.
You will have to add a LAN to VPN access rule for the original 192.168.222.0 network as the auto created rule is done on 10.z.y.x
The other side of the VPN tunnel must use 10.z.y.x as destination network.
So in your case
NAT 10.0.0.0/24 to 10.0.15.0/24 create the VPN tunnel with src = 10.0.15.0/24 and dst = 192.168.250.0/24
make a LAN to VPN firewall rule for 10.0.0.0/24 to 192.168.250.0/24
I have a 192.168.222.0/24 subnet at home, have a VPN tunnel to corporate but they require me to use a 10.z.y.x/24.
The VPN config has 10.z.y.x as source network and corporate as destination network.
I then added NAT policy to translate 192.168.222.x to 10.z.y.x.
You will have to add a LAN to VPN access rule for the original 192.168.222.0 network as the auto created rule is done on 10.z.y.x
The other side of the VPN tunnel must use 10.z.y.x as destination network.
So in your case
NAT 10.0.0.0/24 to 10.0.15.0/24 create the VPN tunnel with src = 10.0.15.0/24 and dst = 192.168.250.0/24
make a LAN to VPN firewall rule for 10.0.0.0/24 to 192.168.250.0/24
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap. By default the software is configured to allow open access to your network. But what if you want to restrict users to on…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market. Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month7 days, 3 hours left to enroll
Earn Certification
Cisco CCNA R&S: ICND2 v3
$197.00$177.30
Earn Certification
Cisco CCENT R&S: ICND1 v3
$197.00$177.30
726 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.