SSL VPN Configuration on SonicWall Firewall

From Notes_Wiki
Revision as of 07:03, 5 November 2025 by Rehaman (talk | contribs) (→‎SSL VPN Configuration on SonicWall Firewall)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

SSL VPN Configuration on SonicWall Firewall

Prerequisites Before starting the configuration, ensure:

  • Need a public static IP for configuring remote access VPN
  • You have administrative access to the SonicWall Firewall.
  • The appropriate SSL VPN licenses are active.
  • A valid user account or group exists to assign SSL VPN access.

Configure SSL VPN Server Settings

  1. Navigate to Network → SSL VPN → Server Settings.
  2. Under SSL VPN Status on Zones, review the SSL VPN access status for each zone.
  • A green indicator means SSL VPN access is active for that zone.
  1. Enable or disable SSL VPN for the desired zone by toggling the switch
  2. Under SSL VPN Server Settings, specify:
  • SSL VPN Port Number (default is 4433 or as per requirement).
  • Domain Name for VPN access (optional, if using FQDN).

Configure SSL VPN Client Settings

  1. Navigate to Network → SSL VPN → Client Settings.
  2. Click on the Configure icon for the Default Device Profile.
  3. the following:
  • Zone IPv4: Select SSL VPN Zone.
  • Network Address IPv4: Choose the Address Object (or) create for VPN clients (e.g., SSLVPN IP Pool).
  1. Apply and save the configuration.
  2. Go to the Client Routes tab and add the LAN Subnets that VPN users should have access to.
  3. Go to the Client Settings tab and set the DNS Servers.
  • Scroll down, enable Create client connection profile, and click OK.

Configure SSL VPN Portal Settings

  1. Go to SSL VPN → Portal Settings.
  2. Customize the appearance and functionality of the SSL VPN Virtual Office portal.

Note:You can add company branding, modify login messages, or control available resources.

Configure User Access

  1. Navigate to Device → Users → Local Users & Groups.
  2. Verify that each SSL VPN user or group is a member of the SSLVPN Services group.
  • This membership allows the user to authenticate and establish an SSL VPN connection.
  1. If necessary, create a new user and add it to the SSLVPN Services group.

Configure Access Rules

  1. Go to Policy - Rules and Policies - Access Rules.
  2. Verify that a rule exists allowing SSL VPN - LAN traffic.
  • Click the matrix icon between SSL VPN and LAN zones to check.
  1. If remote users require access to other zones (e.g., DMZ or Custom Zones), create or adjust the necessary rules accordingly.

Verification

  • connect using the SonicWall Connect Tunnel client.
  • Confirm that the user receives an IP from the SSLVPN pool and can access internal resources as intended.
Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=SSL_VPN_Configuration_on_SonicWall_Firewall&oldid=9702"