CHAPTER 36: Configuring VPN Settings
•Branch Office (Gateway to Gateway) - A SonicWALL is configured to connect to another Son- icWALL via a VPN tunnel. Or, a SonicWALL is configured to connect via IPSec to another manu- facturer’s firewall.
•Hub and Spoke Design - All SonicWALL VPN gateways are configured to connect to a central SonicWALL (hub), such as a corporate SonicWALL. The hub must have a static IP address, but the spokes can have dynamic IP addresses. If the spokes are dynamic, the hub must be a Son- icWALL.
•Mesh Design - All sites connect to all other sites. All sites must have static IP addresses.
VPN Planning Sheet for Site-to-Site VPN Policies
You need the information below before you begin configuring
Site A
Workstation
LAN IP Address: ___.___.___.___
Subnet Mask: ___.___.___.___
Default Gateway: ___.___.___.___
SonicWALL
LAN IP Address: ___.___.___.___
WAN IP Address: ___.___.___.___
Subnet Mask: ___.___.___.___
Default Gateway: ___.___.___.___
Router
Internet Gateway
WAN IP Address: ___.___.___.___
Subnet Mask: ___.___.___.___
DNS Server #1: ___.___.___.___
DNS Server #2: ___.___.___.___
Additional Information
SA Name:____________________
Manual Key, SPI In_____ SPI Out_____
Enc.Key:____________________
Auth.Key:___________________
214 | SONICWALL SONICOS STANDARD 3.0 ADMINISTRATOR’S GUIDE |