Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Help

isaiasantsisaiasants Newbie ✭
in VPN Client

Hi,

I need to share the company's internal network with a remote device.

The device needs to communicate with a server to transfer data. The only internet connection at this location is the operator's 4G. But they mask the public IP, so I can't close a site-to-site tunnel.

Please do you know of another vpn solution for this case?

Category: VPN Client
Reply
Tagged:

Best Answers

  • CORRECT ANSWER
    MitatOngeMitatOnge All-Knowing Sage ✭✭✭✭
    Answer ✓
    Hi @isaiasants

    You can configure as agrasive mode ipsec VPN.
    Check below link.


    https://www.sonicwall.com/support/knowledge-base/configuring-aggressive-mode-site-to-site-vpn-when-a-site-has-dynamic-wan-public-ip-address/170505565649605/
  • CORRECT ANSWER
    AjishlalAjishlal Community Legend ✭✭✭✭✭
    Answer ✓

    @isaiasants,

    In order to establish the Ipsec VPN tunnel through 4G modem, You would have to open the following ports from 4G modem to Sonicwall Wan interface; ( Once you open below ports, follow the above KB shared by Mitatonge)

    1) IKE (UDP 500): This is the port used for the initial negotiation of the IPsec connection.

    2) ESP (IP 50): This is the port used for the Encapsulating Security Payload, which provides the encryption and integrity for the data being sent over the VPN connection.

    3) NAT-T (UDP 4500): This is the port used for NAT Traversal, which allows IPsec VPNs to work across networks that use Network Address Translation.

Sign In or Register to comment.