Allied Telesis NetScreen Routers manual How to test the tunnel, Check the tunnel status

Page 29

How to test the tunnel

There are several options for testing the tunnel. If these checks show that your tunnel is not working, see the How To Note How To Troubleshoot A Virtual Private Network (VPN).

1.Check the tunnel status

On the SonicWALL router’s VPN > Settings page, look for a green dot in the VPN policy entry, and for an entry in the “Currently Active VPN Tunnels” section.

2.Ping the SonicWALL LAN

From the PC attached to the Allied Telesis router, ping the PC attached to the SonicWALL router, or the SonicWALL router’s LAN address.

Note that when a NAT device is in the VPN path you can only initiate the tunnel from the router behind the NAT device, unless you create a suitable pinhole on the NAT device. In this example, that means you cannot ping from the SonicWALL end of the tunnel to the Allied Telesis end (unless you first ping in the other direction).

Page 29 AlliedWare™ OS How To Note: VPNs with SonicWALL routers

Image 29

Contents AlliedWareTM OS Which products and software version does it apply to? Related How To NotesWhat information will you find in this document? Router NetworkStart How to configure the Allied Telesis routerVPN tunnel 1. Open the Configuration Wizards Name the VPN connection Start the Site-to-Site VPN wizardEnter the remote site’s LAN IP address Enter the remote site’s WAN IP addressEnter the shared secret key Check the settingsSpecify Peer IDs Finish the wizard Check the settings againManager Access the Router How to configure the SonicWALL routerConnect a PC to the router Set the PC’s IP addressLog on Browse to the router’s management GUI14 AlliedWare OS How To Note VPNs with SonicWALL routers Set the time zone Customise the router and set up the networkChange the administrator password Choose the type of WAN address Enter the WAN settingsEnter the LAN address Set up the Dhcp serverClick the Close button Log in again Open the Address Objects summary Define the LAN subnet of the peerDefine the address object Open the Custom Address Objects summary22 AlliedWare OS How To Note VPNs with SonicWALL routers Create the VPN Return to the Configuration WizardsSelect the networks for each end of the LAN Create the Site-to-Site policySpecify security settings 26 AlliedWare OS How To Note VPNs with SonicWALL routers Specify the Local and Peer IKE IDs Set the VPN IKE IDs and use Main ModeIf necessary, restart the router Specify IKE Main ModePing the SonicWALL LAN How to test the tunnelCheck the tunnel status How to use the CLI instead of the GUI Wizard, for Remote Peer IP