VPN > Settings
561
SonicOS Enhanced 4.0 Administrator Guide
Caution The GroupVPN SA must be enabled on the SonicWALL to export a configuration file.
Step 1 Clic k the Disk icon in the Configure column for the GroupVPN entry in the VPN Policies table.
The Export VPN Client Policy window appears.
Step 2 rcf format is required for SonicWALL Global VPN Clients is selected by default. Files saved
in the rcf format can be password encrypted. The SonicWALL provides a default file name for
the configuration file, which you can change.
Step 3 Clic k Yes. The VPN Policy Export window appears.
Step 4 Type a password in the Password field and reenter it in the Confirm Password field, if you
want to encrypt the exported file. If you choose not to enter a password, the exported file is not
encrypted.
Step 5 Clic k Submit. If you did not enter a password, a message appears confirming your choice.
Step 6 Clic k OK. You can change the configuration file before saving.
Step 7 Save the file.
Step 8 Clic k Close.
The file can be saved to a floppy disk or sent electronically to remote users to configure their
Global VPN Clients.
Site-to-Site VPN Configurations
When designing VPN connections, be sure to document all pertinent IP Addressing information
and create a network diagram to use as a reference. A sample planning sheet is provided on
the next page. The SonicWALL must have a routable WAN IP Address whether it is dynamic or
static. In a VPN network with dynamic and static IP addresses, the VPN gateway with the
dynamic address must initiate the VPN connection.
Site-to-Site VPN configurations can include the following options:
• Branch Office (Gateway to Gateway) - A SonicWALL is configured to connect to another
SonicWALL via a VPN tunnel. Or, a SonicWALL is configured to connect via IPsec to
another manufacturer’s firewall.