GroupVPN Clarity

shaneslas · October 2022

Hi all,

Please be gentle only new to Sonicwall and I think I might have missed something obvious here and got myself confused.

We have an NSA4700

I have a Solar VLAN (X24:15) and Solar Zone that I was these contractors to be able to access from remote via VPN.

I have the WAN GroupVPN setup for internal staff to use that links to our LAN.

For security, I don't want the Solar contractors to have access to our other internal networks at all so need to keep both entirely separate.

So want to have internal users get a LAN IP 10.10.10.x? (WAN) Solar contractors to get a 192.168.15.x address.

I can't get the GroupVPN Solar to work through the setup as recommended in multiple articles.

MitatOnge · October 2022

Hi @shaneslas

You should assign to allowed network object into the solar contractros users and create deny access rules for all other zones from contractor users.

you can see section 4 for SonicOS7 and SonicOS 6.5

https://www.sonicwall.com/support/knowledge-base/how-can-i-configure-ipsec-client-based-vpn-for-remote-users/170505850768290/

Arkwright · October 2022

I don't think it's possible to have different user groups assigned IP addresses from different networks, but you can still have the access controls you want.

Just because a GVC user appears to have an IP address on your LAN, doesn't mean that the firewall isn't restricting what they have access to.

Join the Conversation

GroupVPN Clarity

Answers