No routes for SSLVPN clients unless "tunnel all" mode is enabled
TZ-600 Sonic OS 220.127.116.11 NE Client 9.0.274
as the title says I cannot get client routes for the Net Extender/Moblile connect client unless Tunnel all is enabled in the SSLVPN client configuration
I've done the following:
- Created virutal IP pool seperate from the network.
- Created Virtual LAN subnet
- created Nat Rules for both
I'm following this guide due to the situation we have with some of the roving users: https://www.sonicwall.com/support/knowledge-base/how-can-i-configure-ssl-vpn-netextender-for-clients-with-overlapping-subnet/170504796310067/
some back story, this TZ-600 is replacing a TZ215. I set it up from scratch.
All the site to site connections work. the one hold out GVC install (Me) works just fine. Prior to the changeover the SSL clients worked just fine however "tunnel all" mode isn't wanted because it prevents zoom, teams and Outlook o365 connections from working on the remote host. We also don't want them streaming music through our WAN. Users are currently working off the old firewall till I get this solved.
any idea of what I am missing?