How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs - Part 1

Printer-friendly versionPDF version
How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs

This tutorial is aimed at beginners who need guidance on configuring a site-to-site VPN using 2 SonicWalls. There are many more advanced features and security settings available, but this guide will show you step-by-step how to configure a working site-to-site VPN using 2 SonicWalls, both with static IP's and SonicOS Enhanced.

In this example, we have 2 sites. We'll call them Main & Remote. Main being your Main Office, and remote being your Remote Office. The Main Office has a LAN subnet of 172.31.0.0/24, and a static public IP of 9.9.9.1. The Remote Office has a LAN subnet of 10.0.0.0/24 and a static public IP of 9.9.9.2. This tutorial will make use of the built in SonicWall VPN Wizard to configure the site-to-site VPN. Follow these configuration steps:

Main Office:

After logging into the web interface of the SonicWall at the Main Office, click on the Wizards button in the top right corner:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs

Select  "VPN Wizard" from the list and click Next:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 1

Select  "Site-to-Site", and click Next:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 2

Give the Policy a name. It can be anything, just make it something descriptive. Choose a complex and secure Preshared Key. If possible, make this 15+ random characters, as you won't ever need to use it again, except for the on the Remote Office SonicWall. For the Remote Peer IP Address, enter the static IP of the Remote Office. You may also enter a domain name (remote.mydomainname.com):

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 3

For Local Network, you can basically choose anything related to your LAN. In my example I chose X0 Subnet. This will make the entire subnet assigned to X0 available over the VPN. For destination network, choose "Create New Address Object..":

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 4

Give the Address Object a descriptive name. Just remember, this will be the Remote Office network that you want to access over the VPN. For the Zone Assignment, choose LAN. The type is Network. Then enter the remote Network and Netmask:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 5

Choose the Address Object you just created as your Destination Network:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 6

You can leave the security settings at the default, just remember, they must be the same on the Remote Office SonicWall:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 7

Click Apply and Close to complete the VPN Wizard:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 8

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs 9

This concludes the configuration on the Main Office SonicWall. If you click on the VPN tab, you will see your VPN, but it will not be active, as we have not configured it on the Remote Office SonicWall yet. Continue to Part 2 to complete the VPN:

How to Configure Site-to-Site VPN on SonicWall Enhanced with Static IPs - Part 2

Post new comment