I have a Sonicwall firewall with an SSL VPN into my network. But we've added a router after the firewall and need to know how to allow the VPN users to access that LAN.
HI Tkwits. Yes, the new router does manage a new LAN. And we've set up the access rules in the FW for that LAN. All users inside the LAN have Internet access. What setting needs to adjust to push the incoming SSL VPN traffic all the way down into the LAN? Right now it just drops them off between the FW and router. Is it just a static route from FW to router? Does the destination need to be set specifically for the LAN subnet?
Answers
Think about what you are trying to accomplish.
You added a new router which means there is likely a new subnet behind that router.
Does the Sonicwall know how to route general traffic to the new subnet? Does the Sonicwall know how to route SSLVPN traffic to the new subnet?
HI Tkwits. Yes, the new router does manage a new LAN. And we've set up the access rules in the FW for that LAN. All users inside the LAN have Internet access. What setting needs to adjust to push the incoming SSL VPN traffic all the way down into the LAN? Right now it just drops them off between the FW and router. Is it just a static route from FW to router? Does the destination need to be set specifically for the LAN subnet?
When you connect via SSLVPN the client has routes it knows. Is the new subnet in the list of known routes in the SSLVPN client?
Hi Tkwits,
I have a static route from the FW to the router and back. And the Client Routes also list the LAN network.
This is all information that should be provided up front, but anyways...
Have you performed a packet capture to watch what happens with the traffic?