Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Need help/suggestions for firewall rule

sdeyoungsdeyoung Newbie ✭
in Mid Range Firewalls

Hey all,

I have two sites:

Site A - Has a 10.x.x.x subnet and a 192.168.10.1/24 subnet. I have a site-site VPN setup to site B on the 10.x.x.x subnet. I'm looking to do an off-site backup from 192 network.

Site B - has the NAS drive, which I'm already doing backups from other locations (have 7 other sites) but they connected via site-site VPN's so I have no issues there.

I'm guessing the issue is that the 192 network of site A is not connected to site B via VPN. I thought I could create a rule that would go from 192 to 10.x.x.x on site A and pass through the VPN tunnel but I guess that's not the case. I modified the VPN from Site A to Site B to include the 192 network and that works. I can now ping my NAS at Site B from my 192 network from Site A. I have my access rule set to only allow from NAS to a specific IP on my 192 network but I can ping that IP from any device from site B.

Now I'm wondering if the VPN from 192 to Site B is the way to go.. Any help/guidance or suggestions would be greatly appreciated.

TIA

Category: Mid Range Firewalls
Reply

Answers

  • ArkwrightArkwright Community Legend ✭✭✭✭✭

    If you want the traffic to be encrypted, add it to the VPN policy at both sides [Both sides of the VPN need agree on which subnets are in use, for this to work].

Sign In or Register to comment.