Configuring the second sonicwall appliance – SonicWALL Internet Security Appliances User Manual

Page 208 SonicWALL Internet Security Appliance Administrator’s Guide

Default LAN Gateway if specifying the IP address of the default LAN route for incoming IPSec
packets for this SA. This is used in conjunction with the Route all internet traffic through this SA
check box.
VPN Terminated at LAN, DMZ, or LAN/DMZ- select one of the three terminating points for the
VPN tunnel.

15. Click OK to close the Advanced Settings window. Then click Update to update the SonicWALL.

Configuring the Second SonicWALL Appliance

To configure the second SonicWALL appliance, follow the same configuration steps as the first
SonicWALL. You must enter the same SPIs and Encryption keys as the first SonicWALL appliance
into the settings of the second SonicWALL appliance.

Example of Manual Key Configuration for Two SonicWALLs

Widgit, Inc. wants to connect their main office with a branch office on the East Coast. Using a
SonicWALL PRO 300 and a TELE3, they can configure a secure VPN tunnel between the two sites.
The main office has the following network settings:
•

SonicWALL LAN IP address - 192.168.11.1

•

LAN subnet mask - 255.255.255.0

•

WAN router address - 209.33.22.1

•

SonicWALL WAN IP address - 209.33.22.2

•

WAN subnet mask - 255.255.255.224

The remote office has the following network settings:
•

SonicWALL LAN IP address - 192.168.22.222

•

LAN subnet mask - 255.255.255.0

•

WAN router address - 207.66.55.129

•

SonicWALL WAN IP address - 207.66.55.130

•

WAN subnet mask - 255.255.255.248

To configure the main office PRO 300, use the following steps:

1. Configure the network settings for the firewall using the Network tab located in the General

section.

2. Click Update and restart the SonicWALL if necessary.
3. Click VPN, then the Configure tab.
4. Create a name for the main office SA, for example, Main Office.
5. Enter the remote office WAN IP address for the IPSec Gateway Address.
6. Create an Incoming SPI using alphanumeric characters.
7. Create an Outgoing SPI using alphanumeric characters.
8. Select Strong Encrypt (ESP 3DES) as the Encryption Method.
9. Write the Encryption Key down or use cut and paste to copy it to a Notepad window.