Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Can it be done? 2

Status
Not open for further replies.
beholder95

beholder95

Technical User
Sep 4, 2003
65
US
I'm looking to create VPN Tunnels from 3 remote offices to the main offices to allow access to network resources, our Server, and to use IP Phones.
Each office will have their own T1 and i was wondering if there was a way for these offices to use their own T1 for all traffic except for traffic that needs the VPN (So just for the IP Phones, Active Directory, and access to one server). This way they wouldn't be using all of our bandwidth when they have plenty of their own.

Thanks for any ideas.
- Andy
 
Sort by date Sort by votes
Hi Beholder95 welcome back to the forum,

Yea this "can be done". By the very nature of VPN, it sets up something called "Split Tunnel" which means that all Internet traffic goes out it's own Internet link (T1); while all VPN related traffic (all traffic destined for your local sites) will be directed through the VPN tunnel. Therefore by creating a VPN tunnel with SonicWALL it will automatically set up VPN with the Split Tunnel feature on.



Roger L White CISSP, CISA, CISM, GSEC
Certified SonicWALL Instructor
Security Team
Invenio Technology
(212)244-4994 ext. 715
(917)326-0386
Need Help call anytime.
 
Upvote 0 Downvote
Really? So if someone puts in a in IE they won't be going through the VPN. SO due to this i'd assume i couldn't use my DHCP server (in the HQ office) to provide IPs could I? Would i have to enable the DHCP server on the sonicwall in each office?

Thanks,
Andy
 
Upvote 0 Downvote
Hi Andy,

For the best design and trouble free solution you should enable DHCP in each site on the firewall. If you do it the way you suggested then if the DHCP server goes down none of your sites will be able to obtain an IP. This will hinder any network communication via VPN or Internet. I know you don't want that.

Roger L White CISSP, CISA, CISM, GSEC
Certified SonicWALL Instructor
Security Team
Invenio Technology
(212)244-4994 ext. 715
(917)326-0386
Need Help call anytime.
 
Upvote 0 Downvote
Thanks for your reply. I agree. That's actually how its ran now with the MPLS Vpn, the routers in the remote offices provide DHCP. So i'll keep that same model, just swap the router for sonicwall.

Thanks!
- Andy
 
Upvote 0 Downvote
Good move Andy. If my post was helpful can you please click on "thank... for this valuable post. That way I and others from SonicWALL can track the how helpful and effective the posts are.

Roger White CISSP, CISA, CISM, GSEC
Certified SonicWALL Instructor
Network Security Team
Invenio Technology
(212)244-4994 ext. 715
(917)326-0386
Need Help call anytime.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Russtoleum
  • Locked
  • Question
SW GVC won't route traffic through sonicwall to offsite tunnel unless it leases an ip on the same su
Replies
1
Views
271
Russtoleum
Russtoleum
Ailuin
  • Locked
  • Question
Best Residential proxy provider.
Replies
1
Views
872
AvivBes
AvivBes
Russtoleum
  • Locked
  • Question
Windows client can't connect to sonicwall l2tp server
Replies
0
Views
218
Russtoleum
Russtoleum
ISDPCMAN
  • Locked
  • Question
Cannot connect to TZ-215 Sonicwall appliance with web browser!
Replies
0
Views
237
ISDPCMAN
ISDPCMAN
DivemasterBill
  • Locked
  • Question
Cannot connect via the SonicWall Login webpage
Replies
0
Views
269
DivemasterBill
DivemasterBill

Part and Inventory Search

Sponsor

Back
Top