Using SonicWALL NetExtender to Access FTP Servers



Similar documents
SSL-VPN 200 Getting Started Guide

For more information refer: UTM - FAQ: What are the basics of SSLVPN setup on Gen5 UTM appliances running SonicOS Enhanced 5.2?

Supporting Multiple Firewalled Subnets on SonicOS Enhanced

DIGIPASS Authentication for SonicWALL SSL-VPN

Network/VPN Overlap How-To with SonicOS 2.0 Enhanced Updated 9/26/03 SonicWALL,Inc.

Configuring Global Protect SSL VPN with a user-defined port

Create a VPN on your ipad, iphone or ipod Touch and SonicWALL NSA UTM firewall - Part 1: SonicWALL NSA Appliance

Connecting an Android to a FortiGate with SSL VPN

Best Practices: Pass-Through w/bypass (Bridge Mode)

Release Notes. SonicOS is the initial release for the Dell SonicWALL NSA 2600 network security appliance.

TechNote. Contents. Introduction. System Requirements. SRA Two-factor Authentication with Quest Defender. Secure Remote Access.

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

TechNote. Configuring SonicOS for Amazon VPC

Gateway-to-Gateway VPN with Certificate

Multi-Homing Security Gateway

SonicWALL NAT Load Balancing

Firewall VPN Router. Quick Installation Guide M73-APO09-380

VPN Connection and Configuration

Multi-Homing Dual WAN Firewall Router

Configuring WAN Failover & Load-Balancing

SonicOS Enhanced 4.0: NAT Load Balancing

VPN Configuration Guide SonicWALL with SonicWALL Simple Client Provisioning

Application Notes for Configuring a SonicWALL VPN with an Avaya IP Telephony Infrastructure - Issue 1.0

Wireless G Broadband quick install

Configuration Guide. How to Configure SSL VPN Features in DSR Series. Overview

VPN Configuration Guide SonicWALL with SonicWALL Simple Client Provisioning

UTM - VPN: Configuring a Site to Site VPN Policy using Main Mode (Static IP address on both sites) i...

Quick Note 026. Using the firewall of a Digi TransPort to redirect HTTP Traffic to a proxy server. Digi International Technical Support December 2011

SonicOS Enhanced Release Notes

Using a VPN with Niagara Systems. v0.3 6, July 2013

TechNote. Configuring SonicOS for MS Windows Azure

How to Open HTTP or HTTPS traffic to a webserver behind the NetVanta 2000 Series unit (Enhanced OS)

How To Connect To Bloomerg.Com With A Network Card From A Powerline To A Powerpoint Terminal On A Microsoft Powerbook (Powerline) On A Blackberry Or Ipnet (Powerbook) On An Ipnet Box On

Citrix Access on SonicWALL SSL VPN

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

How To Configure SSL VPN in Cyberoam

Protecting the Home Network (Firewall)

Configuring the Watchguard Edge for RADIUS authentication

PC Control Utility PD 1 Installation manual. Connection between Public Display and PC

Using a VPN with CentraLine AX Systems

Simulating Transparent Mode for Multiple Subnets

ZyWALL SSL 10. Integrated SSL-VPN Appliance. Support Notes. Revision 2.0 April. 2007

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

SANGFOR SSL VPN. Quick Start Guide

GlobalSCAPE DMZ Gateway, v1. User Guide

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

Network Configuration Settings

Full Install Setup Guide Actiontec F2250 Gateway

Global VPN Client Getting Started Guide

How To - Deploy Cyberoam in Gateway Mode

Release Notes. Release Purpose... 1 Platform Compatibility... 1 Upgrading Information... 1 Browser Support... 1 Known Issues... 2 Resolved Issues...

AXIS Camera Companion Internet access

SonicOS Enhanced Release Notes

Prestige 324 Quick Start Guide. Prestige 324. Intelligent Broadband Sharing Gateway. Version V3.61(JF.0) May 2004 Quick Start Guide

Prestige 324. Prestige 324. Intelligent Broadband Sharing Gateway. Version 3.60 January 2003 Quick Start Guide

SETTING UP REMOTE ACCESS ON EYEMAX PC BASED DVR.

Configuring Internet Authentication Service on Microsoft Windows 2003 Server

How To Authenticate An Ssl Vpn With Libap On A Safeprocess On A Libp Server On A Fortigate On A Pc Or Ipad On A Ipad Or Ipa On A Macbook Or Ipod On A Network

DIGIPASS Authentication for Sonicwall Aventail SSL VPN

Application Notes for Configuring a SonicWALL Continuous Data Protection (CDP) backup solution with Avaya Voic Pro - Issue 1.

Overview of WebMux Load Balancer and Live Communications Server 2005

Quick Note 53. Ethernet to W-WAN failover with logical Ethernet interface.

SCENARIO EXAMPLE. Case study of an implementation of Swiss SafeLab M.ID with Citrix. Redundancy and Scalability

Install FileZilla Client. Connecting to an FTP server

Contents. Platform Compatibility. Known Issues

Chapter 3 LAN Configuration

SonicWALL SRA Virtual Appliance Getting Started Guide

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Sonicwall Firewall.

DSL- G604T Frequently asked Questions.

Barracuda Link Balancer Administrator s Guide

Application Note Configuring the UGate 3000 for use with ClipMail Pro and ClipExpress

Web Authentication Application Note

Contents. Platform Compatibility. SonicOS

ZyWALL 5. Internet Security Appliance. Quick Start Guide Version 3.62 (XD.0) May 2004

StarMOBILE Network Configuration Guide. A guide to configuring your StarMOBILE system for networking

MultiSite Manager. Setup Guide

Two Factor Authentication in SonicOS

Using Cisco UC320W with Windows Small Business Server

Lab Configuring Access Policies and DMZ Settings

APPLICATION NOTE. CC5MPX Digital Camera and IPn3Gb Cellular Modem 10/14. App. Note Code: 3T-Z

How to convert a wireless router to be a wireless. access point

C-more Remote Access with Apple ipad or iphone Tutorial

D-Link Central WiFiManager Configuration Guide

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

Barracuda Link Balancer

Scenario: IPsec Remote-Access VPN Configuration

SonicOS Release Notes

Chapter 9 Monitoring System Performance

Document No. FO1001 Issue Date: Draft: Work Group: FibreOP Technical Team October 1, 2013 Final:

Basic ViPNet VPN Deployment Schemes. Supplement to ViPNet Documentation

Global VPN Client Getting Started Guide

Prestige 202H Plus. Quick Start Guide. ISDN Internet Access Router. Version /2004

Configuring IPsec VPN with a FortiGate and a Cisco ASA

MultiSite Manager. Setup Guide

Platform Compatibility... 1 Key Features... 2 Known Issues... 4 Upgrading SonicOS Image Procedures... 6 Related Technical Documentation...

Comtrend 1 Port Router Installation Guide CT-5072T

Using different Security Policies on Group Level for AD within one Portal. SSL-VPN Security on Group Level. Introduction

Configuring IPSec VPN Tunnel between NetScreen Remote Client and RN300

Draytek Vigor 2820/2830 Configuration. A guide for Exa Resellers and IT Contractors

Transcription:

SSL-VPN Using SonicWALL NetExtender to Access FTP Servers Problem: Using NetExtender to access an FTP Server on the LAN segment of a SonicWALL PRO 4060. Solution: Perform the following setup steps. Step 1-4 are for the administrator while Step 5 is for the remote user. 1. Configure the SonicWALL PRO 4060 (running SonicOS Enhanced firmware) so that we can connect a SonicWALL SSL-VPN appliance to it. a) Create a new public zone named SSL-VPN. b) Configure the X2 port with an appropriate IP address (192.168.200.2/24 in our case) and assign it to the X2 zone. c) Change the management port numbers for HTTP/HTTPS d) Configure a port forwarding policy using the Public Server Wizard (alternatively an IP mapping policy can also be configured here). e) Configure the appropriate access rules. 2. Configure the SonicWALL SSL-VPN appliance in stand-alone mode (PC connected to the X0 port of the SonicWALL SSL-VPN appliance via cross-over cable) for basic network connectivity. a) For the XO port, setup the IP and mask. b) Setup the default route. 3. Connect the SonicWALL SSL-VPN appliance (X0 Interface) to the SonicWALL PRO 4060 (X2 in our case), and finalize the SSL-VPN configuration. a) Create a Local User in Local Domain. b) Add a Range for the NetExtender. c) Add Routes for NetExtender (in our case, it should know how to get to the FTP Server). 4. Setup an FTP Server on the LAN segment of the SonicWALL PRO 4060.

5. As a Remote User, make a connection to the SonicWALL SSL-VPN appliance, and the access FTP Server using NetExtender. IP Addressing Scheme for PRO 4060 X0: 192.168.168.168/24 X1: 200.1.1.2/29 X2: 192.168.200.2/24 Default Gateway: 200.1.1.1 PC sitting on X0 of PRO 4060 IP : 192.168.168.100/24 Default Gateway: 192.168.168.168 IP Addressing Scheme for SSL-VPN X0: 192.168.200.1/24 Default Gateway: 192.168.200.2 1. PRO 4060 Configuration We are assuming the SonicWALL PRO 4060 is already connected to the Internet which means that LAN Hosts (i.e., 192.168.168.100) can go the Internet and no configuration is required for the XO and X1 ports. a) Create a New Public Zone by the name SSL-VPN Go to Network > Zones and click on Add. Click OK.

b) X2 Configuration and Zone Assignment Navigate to the Network > Interface and click on Edit for the X2 port. Note: In case the X2 port is already in use for some other application, for example, WAN Failover, any other available port should be considered. Same algorithm will be applied accordingly on the SonicWALL TZ Series. Click OK. c) Changing Management Port Numbers for HTTP and HTTPS Go to the System > Administration and make the following changes: Click Apply. Now you will be accessing the SonicWALL PRO units from the X0 port. http://192.168.168.168:8080 https://192.168.168.168:444

d) Configure Port Forwarding Policy using Public Server Wizard Go Network > NAT Policies, click Public Server Wizard and then click Next. Click Next once you are done with the above parameters. Click Next once you are done with the above parameters. Click Next and then click Apply. Click Apply. This will complete the Port Forwarding Policy for the SonicWALL SSL VPN appliance. SonicWALL PRO 4060 will create the necessary NAT Policies and Access Rules. Click on Close to close the Public Server Wizard.

e) Configure appropriate Access Rules Go to the Firewall > Access Rules and click the Matrix radio button. Click the Edit button to make the modifications. Once you are done with the changes, click Ok on each page. Note: These are generic access rules. You can make them more specific depending on your network access policy. 2. SSL-VPN Basic Configuration (Stand Alone mode) Connect the X0 Interface of the SonicWALL SSL-VPN appliance to a PC directly using a cross-over cable and configure the basic parameters, for example, IP address, subnet mask and default route. Make sure your PC is configured for the192.168.200.x/24 network. a) IP Assignment to X0 along with the Subnet Mask In our case, we are using Default IP addressing scheme of the SSL-VPN appliance (X0 = 192.168.200.1/24), therefore we will not be making any changes on the Network > Interface page for the X0 port.

b) Default Gateway Configuration Go to the Network > Routes page and configure the following: Click Apply. Note: Make sure the following option is checked on System > Settings: Otherwise, click on the following link on the same page to save the running configuration as a startup configuration. 3. Establishing Connectivity between PRO 4060 and SSL-VPN and finalizing the SSL-VPN Configuration Connect the X2 port of the SonicWALL PRO 4060 to the X0 port of the SonicWALL SSL-VPN appliance either directly or using a hub or switch, depending on your network configuration. To access the SonicWALL PRO 4060, enter the following in a Web browser. http://200.1.1.2:8080 https://200.1.1.2:444 Note: Assumption is that, HTTP and HTTPS is enabled for the X1 port on the SonicWALL PRO 4060. To access the SonicWALL SSL-VPN appliance, enter the following in a Web browser. http://200.1.1.2 https://200.1.1.2 Perform the following steps in the SonicWALL SSL-VPN appliance to finalize the configuration.

a) Create a Local User in Local Domain Go to the Users > Local Users and click Add User. Click Add. b) Add a Range for the NetExtender Go to the NetExtender > Client Address and configure the following accordingly: Click Apply. c) Add Routes for NetExtender Go to NetExtender > Client Routes and click Add Client Route. Click Add. Note: Above configuration is equivalent to Route All where a remote client will be sending all of its traffic to the SSL-VPN appliance.

4. Setting up an FTP Server on the LAN segment of the SonicWALL PRO 4060. In our case, set up the FTP Server on 192.168.168.100. Either built-in or a third party FTP server, for example, 3COM, can be installed on this PC. Once service is installed, do a Local FTP for verification. 5. Remote Connection to FTP Server using NetExtender Forward the following info to a remote user: https://200.1.1.2 Username : testuser Password : abc Domain: LocalDomain Enter https://200.1.1.2 in a browser window The remote user is prompted for a username/password and once the user enters the correct credentials, he will be able to log in, in the default Portal. Click on NetExtender. An SSL-VPN session will be established and the user will be able get into the remote network. Upload/download files for verification.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information