How Can We Help?
< All Topics
You are here:
Print

Configure SonicWall L2TP VPN

Created OnMarch 27, 2020
Last Updated OnApril 2, 2020
byJames Gray

To enable internet access via the L2TP connection:

  • Create an address object for the L2TP “subnet”. I had used a “range” of IP addresses when configuring the L2TP server, but a “range” cannot be used in Firewall rules or NAT policies.
  • Add a firewall rule from VPN to LAN: SRC=L2TP subnet, DEST=ANY, Service= Any. This should be a reflexive policy, so an equivalent LAN to VPN rule is created.
  • Create NAT Policies:
    • SRC: L2TP_subnet TRANS: LAN Interface IP, DEST: LAN Subnets TRANS: Original
    • SRC: L2TP_subnet TRANS: WAN Primary IP, DEST: Any TRANS: Original
  • In VPN->WAN Group VPN settings-> Client Tab,
    • Virtual Adapter = DHCP Lease
    • Allow connection to: THIS GATEWAY ONLY
    • Set Default Route as This Gateway: CHECKED
    • All other boxes UNCHECKED

Source: http://community.spiceworks.com/topic/120516-l2tp-user-not-able-to-access-internet-and-local-subnets-at-same-time

Tags:
Table of Contents