Sorry for the outdated terminology. Basically, I inherited a hub and spoke network set up with Sonicwall peer to peer VPNs between each location. My goal is to be able to VPN into the main network and be able to use Dameware Remote Control software on sub-networks so helpdesk personnel can work remotely.
Logically, I know I need the Dameware ports open in and out on the Dial up VPN connection. That works fine to the main network. But where I get stuck is how do I roll to the satellite locations (connected by peer-to-peer VPNs).
Give your client access vpn a different
Ip range to your
Hub. Make sure each of your spokes have access to that range over the site to site vpns . Ie put the range in the address object for the site to aote bon.
I assume the VPN is IPsec with site-to-site or tunnel interface?
You will need to deploy routes between all relevant sites, and corresponding access rules.
Or are you using the SSL-VPN to connect from outside the enterpride network, and want to reach the spoke networks via the hub?
Then it’s slightly different, but still requires the right route and access rules inside the SSL-VPN profile settings.
If you could post more details, and maybe a diagram, I could give you more hints probably.
Source: managing 35+ SonicWall sites, currently moving from fully-meshed VPN to multi-hub + spoke
Sounds like you know more than a little about SonicWalls! You are right it is ipsec. It is one main site with separate tunnel interfaces between 6 branch offices. The diagram is like you would see in a book, the main office (domain) at the center, with branch offices jutting off from the center. I could pull a configuration if you know of any?
The one thing you mention that I haven’t looked into is the routes. Routes intimidate me, but I’ll do some poking around there and see if I can make heads or tails of it in the meantime. thanks