Questions

Sonicwall and remote access

+
0 Votes
Locked

Sonicwall and remote access

starparadox
Hello,

I've been working on this problem for several days now with no success. I'm new to networking so still figuring things out.

Our network is protected by Sonicwall TZ210. I need to enable remote working for two people so that they can access the server from home.

I went through the instructions to set up the WAN Group VPN but cannot connect to it via the Global VPN CLient.

So thinking I probably set up the wrong IP or something in the client, I downloaded the VNC server... but can't connect to that either.

I've looked in the sonicwall firewall settings and the port 5900 is listed there. The VNC services are listed as being in the VNC group and I have added the VNC group to the Allowed groups.

However canuseeme.org says it cannot see port 5900. I'm befuddled and simply don't know what to do now. I'm worried if I mess around any more I'll mess something up.

Can anyone help point me in the right direction?
  • +
    0 Votes
    robo_dev

    you will get 100 hack attempts per hour.

    You need both a NAT rule and an access rule.

    The access rule opens up port 5900, and the NAT rule redirects port 5900 to the internal IP address of whatever box is running VNC.

    The VPN works the same, except that some VPN solutions do not play well with NAT, so some routers have a VPN pass-through mode. If the router itself has VPN capabilities IT will respond to external VPN connection requests....that won't work if you are using a different VPN solution, the rotuer has to [pass-through the VPN connection requests.

    +
    0 Votes
    starparadox

    Hi, just wanted to say a quick thanks for your reply. I'm still not there but it has given me some direction.

    My sonicwall has VPN capability so thanks to your advice, have gone back to trying to configure that rather than VNC. I seem to have a mental block about the port forwarding as I just can't seem to get it to work.

  • +
    0 Votes
    robo_dev

    you will get 100 hack attempts per hour.

    You need both a NAT rule and an access rule.

    The access rule opens up port 5900, and the NAT rule redirects port 5900 to the internal IP address of whatever box is running VNC.

    The VPN works the same, except that some VPN solutions do not play well with NAT, so some routers have a VPN pass-through mode. If the router itself has VPN capabilities IT will respond to external VPN connection requests....that won't work if you are using a different VPN solution, the rotuer has to [pass-through the VPN connection requests.

    +
    0 Votes
    starparadox

    Hi, just wanted to say a quick thanks for your reply. I'm still not there but it has given me some direction.

    My sonicwall has VPN capability so thanks to your advice, have gone back to trying to configure that rather than VNC. I seem to have a mental block about the port forwarding as I just can't seem to get it to work.