SSLVPN access to WAN Website

César_S · January 8

Hello everyone,

I got it working, but I just want to know your experience and if the same happened to you.

We have a TZ670 with SSL configured for users to access the internal servers, also I needed to have people to be able to access certain websites over SSL, because this WEBSITES only allow the WAN IP from the company.

Now I've followed this guide Route traffic to certain website through SSL VPN/GVC without Tunnel all Mode. | SonicWall

I 1st followed the second part which I did exactly that but still didn't had access. I followed the 1st part (GVC) and it started working ok...Is this a bug?

MustafaA · January 8

Hi @César_S . It has been a few months since I tested a similar requirement. The second part (Accessing website over SSL VPN) should also work. Have you traced the packet flow with the Packet Monitor tool?

César_S · January 9

https://community.sonicwall.com/technology-and-support/discussion/comment/20149#Comment_20149

Without the NAT rule, the packet is only "Generated", I don't get any dropped packets.

I need to enable the NAT rule to start getting "Consumed" packets.

César_S · January 9

https://community.sonicwall.com/technology-and-support/discussion/comment/20154#Comment_20154

It looks like it can't use the default NAT policy route.

might be because the priority is at 62 (It is the last policy on my NAT rules)

_____________________________________

Default NAT Policy_2

Any

Original

César_S · January 9

https://community.sonicwall.com/technology-and-support/discussion/comment/20156#Comment_20156

@MustafaA ignore my last comment, I just used my head. And it is not working because It is not translating the SSL subnet to the WAN IP, because of the "original/original". And most likely that's why It works when I turn the NAT rule that i've created, because it translates the SSL IPs to the WAN.

Join the Conversation

SSLVPN access to WAN Website

Answers