Configuring the sonicwall – SonicWALL Internet Security Appliances User Manual

SonicWALL VPN Page 199

Manual Key Configuration for the SonicWALL and VPN Client

Configuring the SonicWALL

To configure the SonicWALL appliance, click VPN on the left side of the browser window, and select
Enable VPN to allow the VPN connection.

1. Select Disable VPN Windows Networking (NetBIOS) broadcast. Leave the Enable Fragmented

Packet Handling unselected until the SonicWALL logs show many fragmented packets
transmitted.

2. Click the Configure tab and select Add New SA from the Security Association menu. Then select

Manual Key from the IPSec Keying Mode menu.

3. Enter a descriptive name that identifies the VPN client in the Name field, such as the client’s

location or name.

4. Enter "0.0.0.0" in the IPSec Gateway Address field.
5. Define an Incoming SPI and an Outgoing SPI. The SPIs are hexadecimal (0123456789abcedf)

and can range from 3 to 8 characters in length.

Alert Each Security Association must have unique SPIs; no two Security Associations can share the
same SPIs. However, each Security Association Incoming SPI can be the same as the Outgoing SPI.
6. Select Encrypt and Authenticate (ESP 3DES HMAC MD5) from the Encryption Method menu.
Alert It is important to remember the Encryption Method selected as you need to select the same
parameters in the VPN Client configuration.