The VPN policy configuration creates a Tunnel Interface between two end points. Static or Dynamic routes can then be added to the Tunnel Interface. The Route. Configuring Tunnel Interface (static route-based) VPN using Enterprise Command Line. Last Updated: 12/6/ Views 9 Users found this article helpful. How to Configure a Tunnel Interface VPN (Route-Based VPN) between two SonicWall UTM appliances ยท Configuring a Tunnel Interface VPN with DHCP Relay.

Author: Zulucage Gakasa
Country: Pacific Islands
Language: English (Spanish)
Genre: Travel
Published (Last): 2 August 2008
Pages: 487
PDF File Size: 10.89 Mb
ePub File Size: 6.92 Mb
ISBN: 178-2-83110-945-3
Downloads: 75487
Price: Free* [*Free Regsitration Required]
Uploader: Mazugor

Let me know if I can provide more information. T1 And then, the last bit for me was just adding in a heartbeat in order to keep the connection alive on AWS’s end. But thnnel downtime is unacceptable for business use. The AWS side and the Sonicwall side of the tunnel were reporting the tunnel up, but no traffic was passing. May 16, We have the NSA Thanks for the reply. Tunnnel 11, 9: Wow – sounds a bit over my head, but I’m curious if using BGP worked.

Site-to-Site VPN, UTM to SonicWall, Connection made but no traffic

I’m not sure why you are using NAT. When it works it’s great. We’re seeing tunnels dropping sporadically between a and aws.

I want to connect this single host to my local network at I put the metric on the static routes intsrface just out of curiosity. The rest of the problems I have, such as failing to ping DCs let alone use them for credential authentication no logon servers available are likely due to another misconfiguration I should be able to sort out.


Thanks so much for your post!

I usually use VPN. Main Mode DH Group: That should do it for the sonicwall side, other people have noted the correct aws config including selecting route propagation and making sure your security groups are allowing traffic to your EC2 instances from your subnets and all that jazz. I have again tried disabling all NAT traversal but the traffic will still not get routed through the gateway, which is why Interfcae thought I needed either a NAT or routing rule in the first place.

If more routers are involved, all utnnel them should know how and where to route packets to other networks Thanks x for your time. Enough that it is very often that both tunnels are down.

IPSec VPN with SonicWALL – Redirecting traffic over VPN

I guess I’m going to find out, but I’m troubled that I may have a bug in the implementation due to the strange need to add the static route policies, which I would’ve thought should be unnecessary and weren’t indicated as necessary in the tech note. I can restart it by disabling and enabling the connection.

It caused the BGP routes to show up vvpn, as they are auto-added with metric It’s a good starting point, but I got stuck on a few things. Bind tunnel to local interface doesn’t show if strict ttunnel is enabled. Rebooted the EC2 and everything came up. Obviously whoever wrote it never actually tested their procedure.


AWS Developer Forums: Help with SonicWall and IPSec VPN

Tried Hamachi, but it’s throughput seems slow – something must be standing in between. Sep 16, Apr 28, Now, it seems to be more stable while sonucwall is up – no sporadic dropping and reconnecting since a recent vpn maintenance period at Amazon, but I don’t know if that has anything to do with itbut it drops after about a day and stays off.

I always had issues if strict routing isn’t enabled.

I cannot ping my large local network To route traffic between your internal network and your VPC, you will need a static route added to your router.

I tried a few, starting with a DC: There are route based VPNs, but not needed for this setup. There are also some small changes to the CLI that slowed me down. If so, then no NAT should be needed.