Any Sonic Wall users ? - Site 2 Site VPNs

[Vegito]

I'm getting ready to shell out some $$$ for VPN for two office.. SonicWall happens to be the cheapest.. anyone here used it or not ? Recommend something else ? Like to get an appliance type, takes less space...


LAN Site 1 - Sonicwall -> Internet <- Sonicwall - LAN Site 2

Simple VPN setup where the appliance connects 24/7 and hopefully it'll be transparant between the two.

In a W2K VPN - VPN, when you request internet address, it goes through the VPN, i'm assuming you can set static routes so anything for remote LAN goes through the VPN and everything else for the internet will not right ?

 

[spidey07]

sonic wall works great for small VPNs. I use it all the time.

Be carefull though. They can't handle more than three VPN tunnels at once. What you described about web surfing and not traversing the VPN tunnel is called split tunneling and is supported in the sonicwall.

spidey

 

[Akash]

how much is it? try the netopia r9100 its god for me

 

[Vegito]

3 tunnels ? Really, I was getting the Sonic Wall Pro, around 2500 and one smaller one for the remote office for 4 computer... should I get two Sonic Wall pro ? Do you know if the pro has the same limitation as the 500 telecommuter models ?

 

[spidey07]

I don't recall. The three tunnel thing is a software bug and I reported it to sonicwall months ago. Let me look through my notes and I'll get back to ya.

spidey

 

[Dark]

I was reading the docs of the products. It seems like it can do the job of a router if that one is used only for nat purposes...

 

[Vegito]

yeah, right now, my cisco 3640 with 128mb is doing nat/pat, port blocking and BGP.. it's taking a beating.. would be nice to offload the NAT&amp;PAT to this device and firewall function... and I can reclaim my second ethernet off the 3640 and move the DMZ into the sonicwall device..

looks like the way to go..

 

[spidey07]

3640 doing NAT/PAT, bgp. should be fine with that 100 Mhz proc.

what do you mean &quot;3640 is taking a beating&quot;? proc utilization high or is it memory? Do you have a fair amount of LAN interfaces on this 3640? Doing any translational bridging or source routing? Tons of access lists?

Strange that a good router like that would be having trouble unless your pulling full inet tables or have some kind of flapping going on somewhere.

Call cisco TAC.

ps - forgot that NAT takes memory. How many clients is the router perferming NAT/PAT for? 1000, 5000?

 

[Slap]

I have a SonicWall Pro here at our main site and Netopia R series routers at the remotes. The Netopia connects back to the Sonicwall just fine using IPSec. I have four connections going now with no problem. THe only problem I am having is getting Win2k clients to logon to the domain across the VPN. The one Win98 client logs on just fine accross the VPN. Any suggestions?

Slap

 

[Dark]

Slap: I have a similar problem. Sonicwall TELE2 at the office and linksys router at the remote. Win98 works fine, logs on to the domain etc. Win2k logs on, find the shared folders but won't browse them. I contacted sonicwall technical staff, they said that it's a win2k problem and not their problem since the win2k machine can ping successfully the machines on the main lan, then they said that they're having a lot of problems with pptp and win2k. I couldn't fix it but from my home computer (directly connected to the internet) using win2k, it's perfect. If you find anything plz let me know.