Question about SonicWALL Global VPN Client for PC

1 Answer

I have global vpn clients.But when their VPN is connected, their internet traffic also going thorough my network.i m selected split tunnels in the vpn clent properties.only three options are there.all i tried but still the same. anyone can advice me inthis matter??

Posted by on

  • Dubravko May 11, 2010

    What you wish for is not very smart solution, your network would be wide open from that client (and anybody remotely controlling that client - trojans, bots)

×

1 Answer

  • Level 1:

    An expert who has achieved level 1.

  • Contributor
  • 1 Answer

You need to uncheck the box "Set Default Route as this Gateway" under the GroupVPN settings on the Sonicwall.

Posted on Apr 06, 2009

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

Have error 442 with cisco client vpn 5.07 on windows 7 - 32 bit - any ideas?


Error 442 - Failed to enable virtual adapter.
No fix yet from Cisco. Try this work around.
Run cmd as Administrator and execute the following command:
reg add HKLM\System\CurrentControlSet\Services\Tcpip\Parameters /v ArpRetryCount /t REG_DWORD /d 0 /f

Mar 24, 2011 | Cisco Systems Cisco VPN Client

2 Answers

I want to setup vpn in vista starter, how?


You cannot setup a vpn connection in vista starter. VPN is not supported in the "starter" edition of windows vista. You have to upgrade to vista home or above.

Nov 21, 2010 | Network Software & Management Tools

2 Answers

Un block blocked web sites my space facebook and any blocked web sites on a government computer


Total Internet Privacy and the TIP Tunnel offer complete Private Internet Browsing,Private Internet Service, Anonymous Surfing, Anonymous Internet, web surfing through the webs best most secure and private web tunnel, with free private internet browsing tools. TIP is a complete encrypted VPN solution for private internet communications.
Tiptunnel is designed for individuals accessing the Internet from insecure Internet connections, such as wireless, or from countries with restrictive Internet filtering systems.
Anonymous Internet surfing by default simply doesn't happen but it is possible. The most basic way of protecting your identity is to use an anonymous VPN to hide your IP address when you are surfing. Your communications can still be intercepted as the majority of that web traffic is in the clear but it's less likely unless someone is deliberately targeting you, the main benefit is that your IP address is not left in the logs of the web servers and your web browsing will remain more private.
provides a secure, obscured VPN tunnel between your computer and our secure servers located in Asia or the US and the Europe.
TIP Tunnel Enterprise package includes:

* Anonymous surfing
* IP Address Obscurity, your real IP address is hidden
* Bypass Internet filtering by your ISP
* All traffic is 100% encrypted with AES 256 bit encryption
* Immune to packet sniffing, attacks and popups
* Real-time virus protection
* Real-time spam filtering
* Guaranteed 100% privacy with no logs
* Supported platforms include Windows, Linux and Mac
* Multiple server access worldwide
* Professional 24/7 Technical Support
http://tiptunnel.com

Jan 06, 2010 | Computer Associates Full Version ...

1 Answer

3com Officeconnect VPN firewall Problem


Make sure the gateway and dns is set up correctly

Jun 08, 2009 | 3Com OfficeConnect VPN Upgrade for...

1 Answer

I can't get my computers to talk to one another through sonicwall and Im wondering what could be the issue


THere are many things you must be fully educated on like DNS, IP numbering and subnet masking for different networks (for the different sites), TCP Port and Protocol (UDP, TCP) knowledge for different TCP services (you have to know what you want each network to have access to) and Public Key Private Key methodology, IPSec, PPTP and Routing.

THere are many things that can go wrong. FOr instance in your particular case I would assume that your router is not configured to utilize groups of users and then assign those same groups to different traffic templates. YOu need to make sure that your four locations are assigned a particular traffic pattern. Most allow what the other gentleman spoke of "remote access" but you need more of a open network amongst authenticated users.

Routers of this class generally work by allowing you to assign traffic to a very specific Port and direction assignment. For instance simply - http traffic is always on port 80. If you wanted your users to have internet HTTP connectivity you must assign port 80 incoming and outgoing to those users and assign that traffic to internal and external IP addresses by using Network Address Translation on the IP address of the external network. YOu also want to make certain that your Gateway for the remote users are using their own internet service provider account because sometimes uneducated people setup the internet access to be routed to the external ip adddress on the home router. In this situation you would have a remote user dialing the home office and then requesting an internet page from that External network, only to have that traffic then come back to the home router and then out again over the vpn to the remote location. All internet traffic should be routed to the local gateway of that locations provider. THose remote routers will allow this and then only file sharing and printing and other critical network services should be routed over the VPN itself.

As I said it is very complicated and I would definitely pay someone to do this for you and then walk you through basic configuration issues while they are there. You would probably pay in the neighborhood of about 100-150 an hour but for this level you would be getting a certified and knowledgable person. You could also call SonicWall and have them walk you through it for a fee. Watchguards fee is 500.00 to 1000.00 depending on sophistication.

I am sure this only confused you more but IP Routing and VPN traffic routing is difficult and even people who have been in this industry for a very long time find it difficult. You have to be in it and doing it all the time for it to come second nature. I believe your IP addresses are on completely different subnets or ranges. That is another place to start. You really need to setup your internal networks at all locations on the SAME NETWORK in order for them to speak to one another.

127.0.0.1 is one network that is publicly unroutable or 192.168.0.1 or 192.168.111.1. These are common netoworks.

I'll try to give you a short lesson this. subnet masks (the 255.255.255.0) number under the ip address in the networks section allows you to segment your traffic to only communicate to a certain NUMBER of computers.

An IP Address of 192.168.0.0 with a subnet mask of 255.255.255.254 gives you zero computers. If you move the subnet mask to 255.255.255.252 you get 4 ip address but only 2 computers that can talk to one another. THe ip address in this configuration would be 192.168.0.0, 192.168.0.1, 192.168.0.2 and 192.168.0.3. The first ip address of any given network is ALWAYS the network address and should not be used (192.168.0.0) the next two ip address can be assigned to computers and the last ip address is always a "Broadcast" address for the network to speak on.

YOu could have started with another number to begin with for instance 192.168.1.54 subnet mask 255.255.252 and the same methodology would apply. 192.168.1.54 is the network, 192.168.1.55 and 56 are the computer addresses and 192.168.1.57 is the broadcast address.

If you want to have multiple computers at different locations you must all be on the same network with the same IP addressing scheme.

AN example 192.168.111.0 subnet mask of 255.255.255.0 would give you available address of 254 computers but 256 addresses (including zero).

The subnet masks are as follows for this network above (maybe you can use this)

192.168.111.0
255.255.255.254

Zero Computers only a network address and a broadcast address. Remember you only have 256 addresses in a range and the first is network and the last is broadcast so in this configuration you have 192.168.111.0 and 192.168.111.1 (only two addresses)

192.168.111.0
255.255.255.252

Two Computers 192.168.111.1 and 192.168.111.2 with network of 192.168.111.0 (first IP number) and broadcast of 192.168.111.3 (last IP Number) only two usable addresses but FOUR ip addresses.

192.168.111.0
255.255.255.248

Six computers with IPS of 192.168.111.1 to 192.168.111.6. Network of dot zero and broadcast of dot seven (192.168.111.7)

192.168.111.0
255.255.255.240

fourteen address 192.168.111.1 to 192.168.111.14
network .0, broadcast .15

subnet of 255.255.224
thirty computers 192.168.111.1 to 192.168.111.30
network of .0 and broadcast of .31

subnet of 255.255.192
sixty two computers 111.1 to 111.62
network of .0 and broadcast of .63

subnet of 255.255.128
One hundred twenty six computers 111.1 to 111.126
network of .0 and broadcast of .127

subnet of 255.255.0
Two hundred fifty four computers 111.1 to 111.254
network of .0 and broadcast of .255.

THis is one reason the actual computers wont talk to one another probably. ALL computers on the VPN must talk on the same Route or be ROUTED with the routers routing of networks options. to make the traffic move from one network to another.

May 03, 2009 | Network Software & Management Tools

1 Answer

Shared folder isn't visible when connected to VPN


this is an IT issue, your profile may need to be updated

Apr 26, 2009 | SonicWALL Global VPN Client for PC

1 Answer

VPN Connection problem with DSL


contact your ISP and ask them to enable IPPAssTHROUGH on your system.

make sure the ports::

TCP 10000
UDP::500, 4500 should be open

Mar 30, 2009 | SonicWALL Global VPN Client for PC

2 Answers

Cisco vpn sever set up


http://compnetworking.about.com/od/vpn/ht/newvpnwindowsxp.htm

Sep 07, 2006 | Cisco VPN 3000 (LL-VPN3000) for PC

1 Answer

Cisco vpn sever set up


Here's a tutorial for you on VPN: http://www.computernetworkinghelp.com/content/view/41/1/ As trying to type it down here would just be too much...lol Have fun with that!!

Sep 07, 2006 | Cisco VPN 3000 (LL-VPN3000) for PC

Not finding what you are looking for?
Network Software & Management Tools Logo

Related Topics:

290 people viewed this question

Ask a Question

Usually answered in minutes!

Top SonicWALL Network Software & Management Tools Experts

Jax Planet
Jax Planet

Level 2 Expert

921 Answers

caffeene

Level 1 Expert

4 Answers

Shahzad  Waseem...
Shahzad Waseem...

Level 3 Expert

746 Answers

Are you a SonicWALL Network Software and Management Tool Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...