Here is my situation, we have two SonicWall's (a TZ-170 and TZ-210) and would like to be able to use the TZ-170 for site-to-site VPNs and the TZ-210 for LAN on the same ISP. We do have multiple WAN IPs available if needed.
Is it possible that these SonicWall's can be connected so people connected through the TZ-170 (site-to-site VPN) can access a server on the other SonicWall TZ-210 (LAN)?
Thank you!
This conversation is currently closed to new comments.
A user remotely connected to a site via VPN can access the LAN at that site, and a the existence of a site-to-site VPN should be transparent to the users, whether they are local or remotely connected (via a VPN or other method) The only tricky part would be that the two LANs are different subnets, but that's a simple routing thing.
As long as the TZ supports doing both site-to-site and user VPN at the same time, and it has the processing power to do that, and Sonicwall supports it, it will work. http://www.sonicwall.com/us/support/3653.html
What I'm looking to do is keep my site-to-site VPN clients on the TZ-170 they are already using. I would use the TZ-210 for LAN (employee internet).
How do I allow my clients via sit-to-site to access 1 server on my LAN this way? Can I join the 2 sonicwalls together some how and keep my IP WAN and LAN as is or do I have to get into subnetting,etc..? Thanks!
While there may be some advantages to having a router/firewall as an way to connect these two devices together, as long as you got the proper default gateway setup, this would work.
The thing that's missing is getting the users to conect to the Internet. If you do that now with the same device that does the site-to-site VPN, then adding a device for a user VPN is no big deal.
in most cases I've seen this sort of thing done with a Cisco router and a separate firewall.
If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.
Sonicwall VPN question
site-to-site VPNs and the TZ-210 for LAN on the same ISP. We do have multiple WAN IPs available if needed.
Is it possible that these SonicWall's can be connected so people connected through the TZ-170 (site-to-site VPN) can access a server on the other SonicWall TZ-210 (LAN)?
Thank you!