TKWITS Community Legend ✭✭✭✭✭
Reactions
Comments
-
Are you sure the device is pingable? Most software firewalls block pings by default.
-
Some thoughts, and I accept 'i dont know' as an answer. What firmware does each device have? Have you tried doing the tunnel as Site-To-Site? Using IKEv1 Main Mode? DH Group greater than 2? SHA256? IKE ID's as IP address? Keep-alive enabled on both sides? BTW tunnel security recommendations are DH 14, AES256, SHA256 with a…
-
If you post your sanitized VPN config some of us with access to Gen 6 and 7 devices can try to re-create the issue. On a side note I have a number of Gen 6 and 7 devices with VPNs between with no issues passing ICMP or other traffic.
-
Let me search for you...
-
Did you read this thread?
-
To answer your question, you cannot modify the 'Default Gateway' object. It only changes when you change the default gateway of a WAN interface, or if a failover / load-balancing event occurs. You should be looking into using failover / load-balancing or policy-based routing options. Here is a couple KBs that have more…
-
See here: https://www.sonicwall.com/support/knowledge-base/can-settings-be-exported-imported-from-one-sonicwall-to-another-support-matrix/170505258332789/ While the matrix may say something is supported between models and versions, I do not recommend it for reasons I will not get into here.
-
See my last comment here: https://community.sonicwall.com/technology-and-support/discussion/comment/10869
-
You stated the Windows PCs work fine using the same connections, so your problem is the Apple products. (Shocking I know...)
-
Are these Wifi networks you control? If not good luck. If so, determine what configuration differences are between the functional and non-functional Wifi networks. If this is for a business find a cellular hotspot that works and force the users to use those. The more you control, the better off you'll be.
-
If you change the password complexity requirements and the original password doesn't meet the requirements, the device will ask for a password change.
-
What SSL certificate are you using on the Sonicwall side? That is what the error message is referring to, not Server 2012.
-
Have you seen? https://community.sonicwall.com/technology-and-support/discussion/comment/9143 To answer the question NetExtender does not require IIS to be installed. Whoever said that is........ You can also try using Sonicwall's Mobile Connect 'app' from the Microsoft Store.
-
There are limited docs in the KBs but there are a couple. Essentially the VPN tunnel needs to be configured as IKE (not IKEv2). There are two 'gateways': the central (where the DHCP server and original subnet reside), and the remote (where the subnet needs to be 'extended' to). On the 'central gateway' side, the tunnel…
-
It's been a few years since I've had to do this but the DHCP over VPN function is what I used to accomplish what you are asking. I don't recall the finer details of how the tunnels were configured, but as long as your servers can handle being DHCP assigned you should be fine. FWIIW I was doing this for client PCs, not…