SonicWALL none manual Command Line Options, Command Line Examples

Page 50

-11

Unknown error during setup

 

 

-12

Dialogs are out of order

 

 

-51

Cannot create the specified folder

 

 

-52

Cannot access the specified file or

 

folder

 

 

-53

Invalid option selected

 

 

Appendix C - Running the Global VPN Client from the Command Line Interface

The SonicWALL Global VPN Client can run from the Command Line Interface (CLI). This interface allows for the programmatic or script-based initiation of certain Global VPN Client functions without requiring the user to directly act in the Global VPN Client application. The Global VPN Client CLI enables the setting up of scripts that automatically initiate a secure tunnel anytime a particular application or connection method is started.

The CLI commands require the use of a complete path name to the Global VPN Client application followed by various flags and variable information such as username or password.

Alert! Embedding a user’s password directly in a script is a security risk. Anyone who can gain access to the script can read the password to circumvent security. It is recommended that scripts or programmatic dashboards ask for the password before initiating a connection and then clear the variable.

Command Line Options

You can use the following options to perform a variety of Global VPN Client actions from the command line.

/E “Connection NameEnables the specific connection.

/D “Connection NameDisables the specific connection.

/Q - Quits a running an instance of the program. Ignored if program is not already running.

/A [filename] - Starts the program and sends all messages to the specified log file. If no log file is specified, the default file name is gvcauto.log. If the program is already running, this option is ignored.

/U “Username” - Username to pass to XAUTH. Must be used in conjunction with /E.

/P “Password” - Password to pass to XAUTH. Must be used in conjunction with /E.

Command Line Examples

<path>\swgvpnclient - runs/starts application. If application is already running, it does not create another instance.

<path>\swgvpnclient /E <connection name> /U <username> and /P <password> - runs/starts the application and enables the named connection and use the <username> and <password> for user authentication. If you do not include a username and password. the Global VPN Client presents a dialog box asking for the information in order to continue.

<path>\swgvpnclient /A <path\filename> - runs/starts the application and enables auto logging of all events to a log file. If the filename is not specified, then the log file is created with the default name <gvcauto.log>. If you want to save the autolog for each Global VPN Client session, you can use the filename option and specify a different filename each time the application is stated. This file is created in the same directory where the Global VPN Client application is started, if the path is not specified.

Appendix C - Running the Global VPN Client from the Command Line Interface Page 49

Page 49 Page 51
Image 50
Page 49 Page 51
Contents Global VPN Client Administrators Guide Table of Contents Configuring SonicWALL Security Appliances for Managing VPN Connection PoliciesInstallShield Silent Response File Appendix a Creating and Deploying the Default.rcf File forAppendix B SonicWALL Global VPN Client Installation Using Command Line InterfaceAppendix D Installing the Global VPN Client with a Appendix E- Log Viewer MessagesSonicWALL Global VPN Client Features SonicWALL Global VPN ClientNew Features in SonicWALL Global VPN Client Global VPN Client Enterprise/Global Security Client Using the Right Administrator’s GuidesAbout this Guide SonicWALL Global Security Client and Global VPN ClientCopyright Notice Conventions Used in this GuideIcons Used in this Guide SonicWALL Pocket Global VPN ClientInstalling the SonicWALL Global VPN Client Limited WarrantyUsing the Setup Wizard Installing the SonicWALL Global VPN Client Adding VPN Connection Policies Understanding VPN Connection PoliciesCreating a VPN Connection Policy Using the New Connection WizardUnderstanding Digital Certificates Select Remote Access or Office Gateway and then click Next Importing a VPN Configuration File Configuring a Dial-Up VPN Connection Launching the SonicWALL Global VPN Client Making VPN ConnectionsAccessing Redundant VPN Gateways Enabling a VPN Connection Connecting changes to ProvisioningEstablishing Multiple Connections Selecting a Certificate Username and Password AuthenticationEntering a Pre-Shared Key Connection Warning Disabling a VPN ConnectionChecking the Status of a VPN Connection Creating a VPN Policy Shortcut Open SonicWALL Global VPN Client Opens the program window Specifying Global VPN Client Launch OptionsManaging the Global VPN Client System Tray Icon Managing VPN Connection Policy Properties GeneralUser Authentication Peers Peer Information Dialog BoxManaging VPN Connection Policy Properties Connection Virtual IP ConfigurationStatus ActivityRenaming a Connection Policy Managing VPN Connection PoliciesArranging Connection Policies Deleting a Connection PolicyTroubleshooting the SonicWALL Global VPN Client Managing CertificatesType The type of message Information, Error, or Warning Understanding the Global VPN Client LogConfiguring the Log Configuring Auto-LoggingGenerating a Help Report Viewing Help Topics Accessing Technical SupportUninstalling the SonicWALL Global VPN Client Windows 98 SE Double-clickAdd/Remove ProgramsSonicWALL Global VPN Client Licenses Group VPN Connections Supported by Each SonicWALL ModelDownloading Global VPN Client Software and Documentation Select Global VPN Client from the Applicable Services menuActivating Your SonicWALL Global VPN Clients Global VPN Client License Support by SonicWALL ModelSoftware License Agreement for Sonicwall Globalvpn Client Exports License Miscellaneous SonicWALL Global VPN Client Support How the Global VPN Client uses the default.rcf FileDeploying the default.rcf File Replace the Existing SonicWALL Global VPN Client.rcf File SWClientPolicy version =9.0 Creating the default.rcf FileDefault.rcf File Tag Descriptions FlagsPage SWClientPolicy version=9.0 Connections Sample default.rcf FileSWClientPolicy Flags PeerPeer Connection Peer Connection Connections /SWClientPolicy Troubleshooting the deafult.rcf File Creating the Silent InstallationSetup.exe -s Playing Back the Silent InstallationUsing Setup.log to Check for Errors Setup.exe -s -f1path\ResponseFileCommand Line Options Command Line ExamplesAppendix E- Log Viewer Messages Log Viewer MessagesDiffie-Hellman group generator length has not been set Failed to build dead peer detection packet Failed to construct quick mode hash payload Failed to find Oakley group specified in the SA payload Failed to set the Ipsec ESP attributes into the phase 2 SA Is not a valid XAuth status Info Peer certificate missing key value Received invalid message ID notify Sending phase 2 delete for SA lifetime for phase 2 is seconds Received an unencrypted packet when crypto active SonicWALL Global VPN Client 4.0 Administrator’s Guide SonicWALL, Inc Rev C, 10/07
Top Page Image Contents