SonicWALL none manual

Page 44

<Peer> Defines the peer settings for a VPN connection. A VPN connection can support up to 5 peers.

Alert! A special case of Host Name is for an Office Gateway scenario. If you want to use the Default Gateway as the host name use the exact text, <Default Gateway> including the semicolons and &s. In this case, you must also set the tag, <UseDefaultGWAsPeerIP>=1.

<HostName>IP Address/Domain Name</HostName> The IP address or Domain name of the SonicWALL gateway.

<EnableDeadPeerDetection>Off=0/On=1</EnableDeadPeerDetection> Enables detection if the Peer stops responding to traffic. This will send Vendor ID to the SonicWALL during IKE negotiation to enable Dead peer detection heart beat traffic.

Alert! NAT Traversal - The implementation options for NAT Traversal were changed in Global VPN Client 2.x. In Global VPN Client releases prior to 2.x, there were checkboxes for Forcing or Disabling NAT Traversal. With Global VPN Client 2.x and later, there is now a drop down selection list containing the following three items:

Automatic - Detects if NAT Traversal is on or off.

Forced On - Forces NAT Traversal On.

Disabled - Forces NAT Traversal Off.

To specify Automatic in a custom default.rcf file, set ForceNATTraversal and DisableNATTraversal to 0, or do not list these tags at all.

<ForceNATTraversal>[Off=0]/On=1</ForceNATTraversal> Forces NAT traversal even without a NAT device in the middle. Normally NAT devices in the middle are automatically detected and UDP encapsulation of IPSEC traffic starts after IKE negotiation is complete.

<DisableNATTraversal>[Off=0]/On=1</DisableNATTraversal> Disables NAT traversal even without a NAT device in the middle. Normally NAT devices in the middle are automatically detected and UDP encapsulation of IPSEC traffic starts after IKE negotiation is complete.

<NextHop>IP Address</NextHop>The IP Address of the next hop for this connection. This is ONLY used if there is a need to use a next hop that is different from the default gateway.

<Timeout>3<Timeout> Defines timeout value in seconds for packet retransmissions. The minimum <Timeout> value is 1 second and the maximum value is 10 seconds.

<Retries>3<Retries>Number of times to retry packet retransmissions before the connection is considered as dead. The minimum <Retries>value is 1 and the maximum value is 10.

<UseDefaultGWAsPeerIP>[Off=0]/On=1</UseDefaultGWAsPeerIP> Specifies that the PC’s Default Gateway IP Address is used as the Peer IP Address.

<InterfaceSelection> Automatically selects the connection based on link and IP detection=0/ Connection always uses LAN=1/Connection always uses Dial-Up=2</InterfaceSelection>Forces the interface selection for the VPN connection.

<WaitForSourceIP>Off=0/[On=1]</WaitForSourceIP> Specifies that packets are to be sent when a local source IP address is available.

<DialupUseMicrosoftDUN>3rd Party=0/[Microsoft=1]</DialupUseMicrosoftDUN> Instructs the Global VPN Client to use either Microsoft or a third party Dialup connection.

<DialupApp>c:\Program Files\Windows NT\dialer.exe</DialupApp> Specifies the directory path to a third party Dialup connection application, including the application name.

<DialupPhonebook>MSN Office Network/[Prompt When Necessary]</DialupPhonebook> Specifies the name of the Microsoft Dialup connection as listed in Network and Dial-up Connections for the local computer.

<DialupLeaveConnected>[Off=0]/On=1</DialupLeaveConnected> Instructs the Global VPN Client to leave the dialup connection logged in when the Global VPN Client is not connected.

Appendix A - Creating and Deploying the Default.rcf File for Global VPN Clients Page 43

Page 43 Page 45
Image 44
Page 43 Page 45
Contents Global VPN Client Administrators Guide Table of Contents Configuring SonicWALL Security Appliances for Managing VPN Connection PoliciesAppendix a Creating and Deploying the Default.rcf File for Appendix B SonicWALL Global VPN Client Installation UsingInstallShield Silent Response File Command Line InterfaceAppendix D Installing the Global VPN Client with a Appendix E- Log Viewer MessagesSonicWALL Global VPN Client Features SonicWALL Global VPN ClientNew Features in SonicWALL Global VPN Client Using the Right Administrator’s Guides About this GuideGlobal VPN Client Enterprise/Global Security Client SonicWALL Global Security Client and Global VPN ClientConventions Used in this Guide Icons Used in this GuideCopyright Notice SonicWALL Pocket Global VPN ClientInstalling the SonicWALL Global VPN Client Limited WarrantyUsing the Setup Wizard Installing the SonicWALL Global VPN Client Adding VPN Connection Policies Understanding VPN Connection PoliciesCreating a VPN Connection Policy Using the New Connection WizardUnderstanding Digital Certificates Select Remote Access or Office Gateway and then click Next Importing a VPN Configuration File Configuring a Dial-Up VPN Connection Launching the SonicWALL Global VPN Client Making VPN ConnectionsAccessing Redundant VPN Gateways Enabling a VPN Connection Connecting changes to ProvisioningEstablishing Multiple Connections Selecting a Certificate Username and Password AuthenticationEntering a Pre-Shared Key Connection Warning Disabling a VPN ConnectionChecking the Status of a VPN Connection Creating a VPN Policy Shortcut Open SonicWALL Global VPN Client Opens the program window Specifying Global VPN Client Launch OptionsManaging the Global VPN Client System Tray Icon Managing VPN Connection Policy Properties GeneralUser Authentication Peers Peer Information Dialog BoxManaging VPN Connection Policy Properties Virtual IP Configuration StatusConnection ActivityManaging VPN Connection Policies Arranging Connection PoliciesRenaming a Connection Policy Deleting a Connection PolicyTroubleshooting the SonicWALL Global VPN Client Managing CertificatesType The type of message Information, Error, or Warning Understanding the Global VPN Client LogConfiguring the Log Configuring Auto-LoggingGenerating a Help Report Accessing Technical Support Uninstalling the SonicWALL Global VPN Client Windows 98 SEViewing Help Topics Double-clickAdd/Remove ProgramsSonicWALL Global VPN Client Licenses Group VPN Connections Supported by Each SonicWALL ModelSelect Global VPN Client from the Applicable Services menu Activating Your SonicWALL Global VPN ClientsDownloading Global VPN Client Software and Documentation Global VPN Client License Support by SonicWALL ModelSoftware License Agreement for Sonicwall Globalvpn Client Exports License Miscellaneous SonicWALL Global VPN Client Support How the Global VPN Client uses the default.rcf FileDeploying the default.rcf File Replace the Existing SonicWALL Global VPN Client.rcf File Creating the default.rcf File Default.rcf File Tag DescriptionsSWClientPolicy version =9.0 FlagsPage Sample default.rcf File SWClientPolicySWClientPolicy version=9.0 Connections Flags PeerPeer Connection Peer Connection Connections /SWClientPolicy Troubleshooting the deafult.rcf File Creating the Silent InstallationPlaying Back the Silent Installation Using Setup.log to Check for ErrorsSetup.exe -s Setup.exe -s -f1path\ResponseFileCommand Line Options Command Line ExamplesAppendix E- Log Viewer Messages Log Viewer MessagesDiffie-Hellman group generator length has not been set Failed to build dead peer detection packet Failed to construct quick mode hash payload Failed to find Oakley group specified in the SA payload Failed to set the Ipsec ESP attributes into the phase 2 SA Is not a valid XAuth status Info Peer certificate missing key value Received invalid message ID notify Sending phase 2 delete for SA lifetime for phase 2 is seconds Received an unencrypted packet when crypto active SonicWALL Global VPN Client 4.0 Administrator’s Guide SonicWALL, Inc Rev C, 10/07

none specifications

SonicWALL is a leading cybersecurity company that specializes in providing advanced network security solutions, primarily focused on firewalls and unified threat management. Established in 1991, SonicWALL has become synonymous with high-performance security and is particularly well-regarded for its adaptable solutions that cater to businesses of all sizes.

One of the main features of SonicWALL products is their next-generation firewall technology. These firewalls combine traditional firewall capabilities with modern security features such as intrusion prevention, malware protection, and content filtering. This enables businesses to comply with regulatory requirements while safeguarding their networks against ever-evolving cyber threats. SonicWALL's firewalls are equipped with advanced security protocols that offer deep packet inspection, allowing them to analyze the data flowing through the network meticulously.

SonicWALL's Cloud App Security is another significant component of its technology suite. This service secures cloud applications by providing essential tools that help protect against data breaches and insecure usage. Through broad compatibility with various cloud services, businesses can maintain security without sacrificing the efficiency and productivity benefits that cloud applications provide.

In terms of characteristics, SonicWALL emphasizes simplicity and ease of management. Their products are designed with intuitive user interfaces that simplify configuration and ongoing management. This allows even non-technical users to manage complex security protocols effectively. The SonicWALL Global Management System (GMS) enables centralized management for multiple appliances, ensuring that administrators can monitor their entire network security posture from a single dashboard.

SonicWALL also incorporates advanced threat detection technologies, including its Capture Advanced Threat Protection (ATP) service. Capture ATP leverages deep learning and sandboxing techniques to identify and isolate potential threats before they can affect the network. This proactive approach to security enables businesses to respond to new threats in real-time, enhancing overall protection.

Furthermore, SonicWALL offers scalable solutions, making it a suitable choice for both small businesses and large enterprises. Organizations can select from a range of appliances and services that can be easily scaled as their needs evolve. With a strong focus on customer support and continual innovation, SonicWALL remains a trusted partner in the sphere of network security. Overall, SonicWALL's blend of advanced features, user-friendly management, and robust technologies makes it a formidable player in the cybersecurity landscape.
Top Page Image Contents