[opensuse] VPN connection to Sonicwall
Has anyone successfully set up a VPN connection from a mobile Linux system to a SonicWall firewall? Their Global VPN Client is Windows-only, as far as I can tell. I found this whitepaper: http://www.vpn-technology.com/Interoperability/SonicWALL VPN with Red Hat Linux.pdf But it assumes a static IP on each end, and the remote end of my connection is a laptop with a dynamic IP. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Monday 19 March 2007 17:57, David Brodbeck wrote:
Has anyone successfully set up a VPN connection from a mobile Linux system to a SonicWall firewall? Their Global VPN Client is Windows-only, as far as I can tell. I found this whitepaper: http://www.vpn-technology.com/Interoperability/SonicWALL VPN with Red Hat Linux.pdf But it assumes a static IP on each end, and the remote end of my connection is a laptop with a dynamic IP.
What do you mean 'to a SonicWall firewall'? I can use http or https to connect to a SonicWall firewall. Maybe you mean through a SonicWall firewall to a PC/Server behind the firewall? If so, just set up the appropriate port forwarding to the machine behind the firewall (which may need a static IP). Your remote laptop should not require a static IP. - James W -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
James Wright wrote:
What do you mean 'to a SonicWall firewall'? I can use http or https to connect to a SonicWall firewall. Maybe you mean through a SonicWall firewall to a PC/Server behind the firewall? If so, just set up the appropriate port forwarding to the machine behind the firewall (which may need a static IP). Your remote laptop should not require a static IP.
I think you missed the word "VPN" in my original message. We have a VPN set up for remote access to our main office network, via the SonicWall's IPSEC capability. I'd like to connect to it from a laptop running Linux, instead of having to boot into Windows 2000. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 20 March 2007 12:51, David Brodbeck wrote:
James Wright wrote:
What do you mean 'to a SonicWall firewall'? I can use http or https to connect to a SonicWall firewall. Maybe you mean through a SonicWall firewall to a PC/Server behind the firewall? If so, just set up the appropriate port forwarding to the machine behind the firewall (which may need a static IP). Your remote laptop should not require a static IP.
I think you missed the word "VPN" in my original message. We have a VPN set up for remote access to our main office network, via the SonicWall's IPSEC capability. I'd like to connect to it from a laptop running Linux, instead of having to boot into Windows 2000.
I caught the VPN part, where exactly is the issue? I have used IBM's emulator to access an AS400 behind a SonicWall with both Linux and Windows (mostly Linux though), as well as VPN to a Windows Server 2003 domain. Does the SonicWall log show that your VPN attempts with Linux are being blocked, or are you having trouble setting up VPN with Linux? - James W -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
James Wright wrote:
I caught the VPN part, where exactly is the issue? I have used IBM's emulator to access an AS400 behind a SonicWall with both Linux and Windows (mostly Linux though), as well as VPN to a Windows Server 2003 domain. Does the SonicWall log show that your VPN attempts with Linux are being blocked, or are you having trouble setting up VPN with Linux?
Not sure how to set it up. SonicWall has their own VPN client, but it's Windows-only. The only example I could find of setting up a VPN connection with a SonicWall at one endpoint and Linux at the other used hard-coded static IP addresses. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 20 March 2007 13:56, David Brodbeck wrote:
James Wright wrote:
I caught the VPN part, where exactly is the issue? I have used IBM's emulator to access an AS400 behind a SonicWall with both Linux and Windows (mostly Linux though), as well as VPN to a Windows Server 2003 domain. Does the SonicWall log show that your VPN attempts with Linux are being blocked, or are you having trouble setting up VPN with Linux?
Not sure how to set it up. SonicWall has their own VPN client, but it's Windows-only. The only example I could find of setting up a VPN connection with a SonicWall at one endpoint and Linux at the other used hard-coded static IP addresses.
Sorry for the late reply, been working too hard. I will play around and see what I can do and get back to you in the nextcouple of days. - James W -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
James Wright wrote:
On Tuesday 20 March 2007 13:56, David Brodbeck wrote:
James Wright wrote:
I caught the VPN part, where exactly is the issue? I have used IBM's emulator to access an AS400 behind a SonicWall with both Linux and Windows (mostly Linux though), as well as VPN to a Windows Server 2003 domain. Does the SonicWall log show that your VPN attempts with Linux are being blocked, or are you having trouble setting up VPN with Linux?
Not sure how to set it up. SonicWall has their own VPN client, but it's Windows-only. The only example I could find of setting up a VPN connection with a SonicWall at one endpoint and Linux at the other used hard-coded static IP addresses.
Sorry for the late reply, been working too hard. I will play around and see what I can do and get back to you in the nextcouple of days.
Thanks. I've played with IPSEC in the past, but I've always found it pretty confusing. Interoperability between different implementations seems to be spotty at best. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Saturday 24 March 2007 13:27, David Brodbeck wrote:
James Wright wrote:
On Tuesday 20 March 2007 13:56, David Brodbeck wrote:
James Wright wrote:
I caught the VPN part, where exactly is the issue? I have used IBM's emulator to access an AS400 behind a SonicWall with both Linux and Windows (mostly Linux though), as well as VPN to a Windows Server 2003 domain. Does the SonicWall log show that your VPN attempts with Linux are being blocked, or are you having trouble setting up VPN with Linux?
Not sure how to set it up. SonicWall has their own VPN client, but it's Windows-only. The only example I could find of setting up a VPN connection with a SonicWall at one endpoint and Linux at the other used hard-coded static IP addresses.
Sorry for the late reply, been working too hard. I will play around and see what I can do and get back to you in the nextcouple of days.
Thanks. I've played with IPSEC in the past, but I've always found it pretty confusing. Interoperability between different implementations seems to be spotty at best.
David, I plan on putting some effort into this tomorrow (Tuesday). If you can, please provide the SonicWall model that you have, and the scenerio that you are trying to achieve. Such as, connect via VPN through the firewall to a Windows network from home, and/or using the SonicWall wireless VPN, ect. I just want to know what VPN solution you are trying to get here (there are quite a few choices). If you can do this, we may come up with a solution in the next couple of days. - James W. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Saturday 24 March 2007 13:27, David Brodbeck wrote:
James Wright wrote:
On Tuesday 20 March 2007 13:56, David Brodbeck wrote:
James Wright wrote:
I caught the VPN part, where exactly is the issue? I have used IBM's emulator to access an AS400 behind a SonicWall with both Linux and Windows (mostly Linux though), as well as VPN to a Windows Server 2003 domain. Does the SonicWall log show that your VPN attempts with Linux are being blocked, or are you having trouble setting up VPN with Linux?
Not sure how to set it up. SonicWall has their own VPN client, but it's Windows-only. The only example I could find of setting up a VPN connection with a SonicWall at one endpoint and Linux at the other used hard-coded static IP addresses.
Sorry for the late reply, been working too hard. I will play around and see what I can do and get back to you in the nextcouple of days.
Thanks. I've played with IPSEC in the past, but I've always found it pretty confusing. Interoperability between different implementations seems to be spotty at best.
David, After screwing around with the SonicWall software with Wine (no-go) I found SonicWall's own Linux solution. I believe that this may be your solution as well. Check out: <http://www.vpn-technology.com/Interoperability/SonicWALL%20VPN%20with%20Red%20Hat%20Linux.pdf> and see what you think. Good luck! - James W. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
James Wright wrote:
After screwing around with the SonicWall software with Wine (no-go) I found SonicWall's own Linux solution. I believe that this may be your solution as well. Check out:
<http://www.vpn-technology.com/Interoperability/SonicWALL%20VPN%20with%20Red%20Hat%20Linux.pdf>
and see what you think.
I did run across that, but I don't think it solves my problem. It assumes a static IP for the Linux system. Here's my scenario. I have a laptop that I take around to about a dozen different sites. I want to be able to create a VPN tunnel from the laptop to the SonicWall PRO 3060 in our main office, so I can access the office's Windows network securely. The main office has a static IP but the laptop obviously does not. It could be the solution in that article would work with a dynamic IP as well, but it's not clear to me how to make that work. Both the SonicWall and the Linux ends of their example have the other end's IP address hard-coded. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Monday 26 March 2007 21:03, David Brodbeck wrote:
Here's my scenario. I have a laptop that I take around to about a dozen different sites. I want to be able to create a VPN tunnel from the laptop to the SonicWall PRO 3060 in our main office, so I can access the office's Windows network securely. The main office has a static IP but the laptop obviously does not.
It could be the solution in that article would work with a dynamic IP as well, but it's not clear to me how to make that work. Both the SonicWall and the Linux ends of their example have the other end's IP address hard-coded.
David, I haven't had the time that I initially thought I would, so here is a quick reply with my gut feelings about this. In the config file where you specify the IP address of the client (If memory serves me correctly it is 'right=192.168.1.1', but with your IP), instead of your IP address you can try using the value: %any This should allow you to have any IP address. If this does not work (ie. host is looking for static address), then it seems entirely probable that you could set a second, and static, IP address for your network adapter (just like you would to host a web page from your computer) and use that second static address in the config file. The only issue that immediately springs to mind with a second static IP is that you may need to specify routing/gateway if you jump from network to network. But it does seem likely that it would work. Best of luck. - James W. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (2)
-
David Brodbeck
-
James Wright