Questions

Setting up a VPN through 2 NAT firewalls behind the same router.

Tags:
+
0 Votes
Locked

Setting up a VPN through 2 NAT firewalls behind the same router.

edelac379
Ok, I have a question about computers on different domains wanting to communicate.

Now some managers want to be able to connect SQL Server data between two servers running SQL Server 2005 on different subnets.

What would be the best way of going about this? Should I create a VPN?

Here's the setup:

Netscreen 25
ethernet1 [trust]= 192.168.1.1/24 layer 3(interface mode NAT) Secondary IP 10.0.2.2 (route among secondary IPs selected)

ethernet 2 [untrust]= 66.92.139.22/24 layer 3(interface mode route)

--

Router LAN internal gateway IP 66.92.139.17 subnet mask 255.255.255.240

--

SonicWall TZ 170
WAN IP Public = 66.92.139.19 /255.255.255.240 [NAT]
LAN = 192.168.2.254 /255.255.255.0

Now, what should I be configuring for a VPN? The two computers in question are:

192.168.2.9 behind the Sonicwall
&
10.0.2.8 behind the N25 need to connect to each other.

These are all in the same LAN. Another thing is, from behind the SonicWall I can ping the N25's 66.92.139.22 IP from any system. But behind the N25 I cannot ping the SonicWall's 66.92.139.19.

I've tried doing it a few different ways, but am becoming discouraged. Can someone give me an example of what IP addresses I should be trying to connect to? I've never setup a VPN before so I'm new to this. Thanks.
  • +
    0 Votes
    The Listed 'G MAN'

    Google VPN for Sonicwall N25 setup
    Google VPN for Netscreen25

    Decide on the security settings for your VPN. You have the endpoints listed in your posts (external IP's). Set up one end as per instructions from the web, then setup the other end.

    Now modify the firewall rules on both boxes to allow the ports required by the VPN's to communicate.

    Next initiate a connection from one end of the VPN.

  • +
    0 Votes
    The Listed 'G MAN'

    Google VPN for Sonicwall N25 setup
    Google VPN for Netscreen25

    Decide on the security settings for your VPN. You have the endpoints listed in your posts (external IP's). Set up one end as per instructions from the web, then setup the other end.

    Now modify the firewall rules on both boxes to allow the ports required by the VPN's to communicate.

    Next initiate a connection from one end of the VPN.