General [M]ayhem

Go Back   General [M]ayhem > Real Time Sub-Forums > CompuGlobalHyperMegaNet
Register Members List Mark Forums Read [M]erchandise Calendar

Reply
 
Thread Tools
VanFanel
THERE IS NO DATA HERE - NONE AT ALL! \o/
 
VanFanel's Avatar
 
Sonicwall & SSLVPN

Smarty pants people - does anyone know if it is possible to setup SSLVPN, and split tunnel traffic to an external host through it?

Scenario:

Have several servers that are accessible only via our offices public IP address. Have a Sonicwall TZ200 that has EnhancedOS 5.6 and has SSLVPN capabilities. Trying to make it so that external host -> SSL VPN -> servers.

Problem is that everything I read indicates that when using SSLVPN, you can only set up local hosts. Even though I specifically created routing to the external servers, it still doesnt seem to want to bite...

Anyone knows how to do it the right way? For whats it worth - I did manage to get it to work right when setting up regular VPN.

Gracias!
__________________
Das Auto.
Old 08-10-2011, 12:06 AM VanFanel is offline  
Reply With Quote
#1  

Advertisement [Remove Advertisement]

Aseras
 
I think you have to use their client and for some reason I think it only works well sonicwall -> sonicwall.
Old 08-10-2011, 04:55 PM Aseras is offline  
Reply With Quote
#2  

U Caught The Gay
 
U Caught The Gay's Avatar
 
If it's externally routed i.e. going out the WAN port you need to check the SSLVPN>WAN zone and set the access there to specifically allow access to those IP's.

But generally this (and split tunneling in general) is a bad idea. Just setup a VPN direct to the external servers.

TZ200's are pretty cool. Make sure you update to the latest firmware. Lots of cool stuff in it.
Old 08-10-2011, 07:09 PM U Caught The Gay is offline  
Reply With Quote
#3  

U Caught The Gay
 
U Caught The Gay's Avatar
 
Old 08-10-2011, 07:13 PM U Caught The Gay is offline  
Reply With Quote
#4  

careboy
pwned
 
so good.
Old 08-10-2011, 07:28 PM careboy is offline  
Reply With Quote
#5  

VanFanel
THERE IS NO DATA HERE - NONE AT ALL! \o/
 
VanFanel's Avatar
 
Quote:
Originally Posted by U Caught The Gay View Post
If it's externally routed i.e. going out the WAN port you need to check the SSLVPN>WAN zone and set the access there to specifically allow access to those IP's.

But generally this (and split tunneling in general) is a bad idea. Just setup a VPN direct to the external servers.

TZ200's are pretty cool. Make sure you update to the latest firmware. Lots of cool stuff in it.

__________________
Das Auto.
Old 08-10-2011, 10:30 PM VanFanel is offline  
Reply With Quote
#6  

Reply


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump



All times are GMT -7. The time now is 02:44 AM.



Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.