SonicWall: How to configure IPSec VPN Site to Site between 2 SonicWall firewalls

Overview

The article guides you to configure IPSec VPN Site to Site between two SonicWall firewall devices, to form a LAN system connecting the branch site and the central site.

The article will use the Preshared key authentication protocol

The article was made on a SonicWall NSv 270 device with SonicOSX version 7.0.1

Diagram

Steps of configuration

  1. On SonicWall 1
    • Create Network Host
    • Create IPSec VPN Rule
    • Create firewall rule
  2. On SonicWall 2
    • Create Network Host
    • Create IPSec VPN Rule
    • Create firewall rule
  3. Check the result

How to configure

On SonicWall 1

Create Network Host

  • Login to SonicWall firewall device by Admin account
  • Go to OBJECT -> Choose Addresses -> Click Add
  • Enter name for SonicWall LAN 1
  • In Zone Assignment: Choose LAN
  • In Type: Choose Network
  • In Netmask/Prefix Length: Enter subnet mask of SonicWall 1
  • Click Save
  • Enter name for SonicWall LAN 2
  • In Zone Assignment: Choose VPN
  • In Type: Choose Network
  • In Netmask/Prefix Length: Enter subnet mask of SonicWall 2
  • Click Save

Create IPSec VPN Rule

  • Go to NETWORK -> Choose Rule and Settings -> Click Add
  • In Policy Type: Choose Site to Site
  • In Authentication Method: Choose IKE Using Preshared Secret
  • In Name: Enter name of VPN Policy
  • In IPSec Primary Gateway Name or Address: Enter IP WAN of SonicWall 2 site
  • In Shared Secret: Enter preshared key
  • Move to tab Network
  • In Choose local network from list: Choose sonicwall LAN network that was created before
  • In Choose destination network from list: Choose sophos LAN that was created before
  • Move to tab Proposals
  • In Proposals: Choose security authentication parameters
  • Move to tab Advanced
  • Turn on Enable Keep Alive and you can turn more features that you want
  • Click Save

Create firewall rule

  • Go to POLICY -> Choose Security Policy -> Click Add -> Create 2 firewall for 2 networks SonicWall LAN 1 and SonicWall LAN 2 can connect together

On SonicWall 2

  • Configure the same the SonicWall 1

Check the result

  • SonicWall 1
  • SonicWall 2

Be the first to comment

Leave a Reply

Your email address will not be published.


*


This site uses Akismet to reduce spam. Learn how your comment data is processed.