NetThreat

How to use an alternative Public IP for SSL VPN on SonicWALL UTM Appliances

 

N.B. From Firmware 5.9.1 and 6.2.2 onwards. This Configuration is not supported by SonicWall, please contact us for any issues with the configuration.

 

1. Enable SSL VPN on both the WAN and LAN Zones and set up the rest of the SSL VPN settings as normal see link below.

https://www.sonicwall.com/en-us/support/knowledge-base/170505609285133

 

1 Public IP for SSL VPN on SW UTM

 

2.   Create an Address Object for the Public IP to use

 

2 Public IP for SSL VPN on SW UTM

 

3.   Create an Address Object for a Dummy LAN Network (make sure it is in the LAN Zone)

 

 

3 Public IP for SSL VPN on SW UTM

4. Create the following NAT Policy using your Public IP and Dummy LAN Network.  On TZ appliances replace ‘X0 IP’ with ‘LAN Primary IP’

 

4 Public IP for SSL VPN on SW UTM

 

5. Create the Following Firewall Rule from WAN to LAN; create any addition rules needed from SSLVPN to any other Zones i.e. SSLVPN to DMZ for all traffic needed. Ensuring the Enable Management is enabled.

 

 

5 Public IP for SSL VPN on SW UTM

 

 

6. Now Connect with SonicWall Netextender or SonicWall Mobile Connect

 

6 Public IP for SSL VPN on SW UTM

 

7. Showing Netextender Routes

 

7 Public IP for SSL VPN on SW UTM

 

8. Pinging machines on both Networks

 

 

8 Public IP for SSL VPN on SW UTM

 

 

Copyright NetThreat Ltd

 

Attachment: Use_another_Public_IP_for_SSL_VPN_on_SonicWall_UTM_Appliances.pdf