SonicWALL 4000 - page 25

Page 24

If you are allowing HTTP access to the SonicWALL SSL VPN appliance, create a public

server access rule for HTTP:

1. In the Firewall > Access Rules page, click .

2. In the Welcome to the Network Access Rules Wizard page, click Next.

3. In the Step 1: Access Rule Type page, select Public Server Rule. Click Next.

4. In the Step 2: Public Server page, perform the following selections and click Next:

5. In the Congratulations page, click Apply to create the rules and allow access from

the WAN to the SonicWALL SSL VPN appliance on the DMZ.

Scenario A: Allowing DMZ -> LAN Connection in SonicOS Standard

When users have connected to the SSL VPN, they need to be able to connect to

resources on the LAN. You need to create two rules--one to allow traffic from the

SonicWALL SSL VPN appliances X0 interface to your LAN, and one to allow traffic from

NetExtender to your LAN.

Note: This procedure uses the Access Rule Wizard to create the rules. You can add

the rules manually by clicking Add at the bottom of the Firewall > Access Rules page.

Create access to the LAN for the SSL VPN X0 interface:

1. In the Firewall > Access Rules page, click .

2. In the Welcome to the SonicWALL Network Access Rules Wizard page,

click Next.

3. In the Step 1: Access Rule Type page, select General Rule. Click Next.

4. In the Step 2: Access Rule Service page, select Any. Click Next.

5. In the Step 3: Access Rule Action page configure:

Click Next.

Service Web (HTTP)

Server IP Address The X0 IP address of the SonicWALL SSL VPN appliance,

192.168.200.1 by default

Destination Interface DMZ

Select Action for this

Rule Allow

TCP Connection

Inactivity Timeout 30 minutes

Contents

Main SonicWALL SSLVPN 4000 Appliance Getting Started Guide SonicWALL SSLVPN 4000 Configuration Steps Before You Begin Check Package Contents What You Need to Begin Any Items Missing? Selecting a SonicWALL Recommended Deployment Scenario SSL VPN on an Existing DMZ SSL VPN on the LAN Table 1: SonicWALLSSL VPN 4000 Deployment Scenarios Gateway Device SonicWALL Recommended Deployment Scenarios Conditions or Requirements If You Cannot Login to the SSL VPN Configuring Your SonicWALLSSLVPN 4000 Setting Your Administrator Password Note: Adding a Local User Setting Time Zone Configuring the X0 IP address for Scenario B and Scenario C Page Configuring a Default Route Adding a NetExtender Client Route Setting your NetExtender Address Range Page Connecting the SonicWALL SSLVPN 4000 Scenario A: Connecting the SonicWALL SSLVPN 4000 Scenario B: Configuring Your Network Interface Scenario B: Connecting the SonicWALL SSLVPN 4000 Scenario C: Configuring Your Network Interface Scenario C: Connecting the SonicWALL SSLVPN 4000 Configuring Your Gateway Device Scenario A: SSL VPN on a New DMZ Scenario A: Connecting to the SonicWALL UTM Appliance 9 Scenario A: Allowing DMZ -> LAN Connection in SonicOS Standard Page Page Scenario A: Adding a New SSL VPN Custom Zone in SonicOS Enhanced Scenario A: Allowing WAN -> SSL VPN Connection in SonicOS Enhanced Page Page Scenario A: Allowing SSL VPN -> LAN Connection in SonicOS Enhanced Page Page Scenario B: SSL VPN on Existing DMZ Scenario B: Connecting to the SonicWALL UTM Appliance Note: Page Scenario B: Allowing DMZ -> LAN Connection in SonicOS Standard Page Page Page Scenario B: Allowing WAN -> DMZ Connection in SonicOS Enhanced Page Scenario B: Allowing DMZ -> LAN Connection in SonicOS Enhanced Page Page Scenario C: SSL VPN on the LAN Scenario C: Setting Public Server Access in SonicOS Standard 9 Scenario C: Setting Public Server Access in SonicOS Enhanced Testing Your SSL VPN Connection Verifying a User Connection from the Internet Registering Your SonicWALLSSL VPN 4000 Before You Register Creating a MySonicWALL Account from System > Licenses Registering with MySonicWALL Page Congratulations Configuring Dynamic DNS Page Configuring a Static IP Address Windows XP Windows 2000 Windows NT Mounting Guidelines Glossary of Networking Terms Page SonicWALL SSLVPN 4000 Appliance Regulatory Statement and Safety Instructions Lithium Battery Warning Cable Connections Copyright Notice Trademarks