Community discussions

MikroTik App
  4. RouterOS
  5. General

IPSec tunnel to SonicWall

Post Reply
 
jroy
newbie
Topic Author
Posts: 33
Joined: Fri May 28, 2004 9:41 pm
Location: Orange/LA county California
Contact:
Contact jroy

IPSec tunnel to SonicWall

Fri May 28, 2004 9:46 pm

I have a hub and spoke VPN design. I have a MT RouterBoard at the spoke side. It gets its IP from the cable provider Via DHCP. Anyone set this up before? I set to aggresive mode and have all necessary parameters to talk to the sonicwall but I need a unique ID to talk to the sonicawall since the routerboard gets a dynamic address. Anyone know where in RouterOS to set the unique Identifier for the VPN tunnel to work?
Top
 
jroy
newbie
Topic Author
Posts: 33
Joined: Fri May 28, 2004 9:41 pm
Location: Orange/LA county California
Contact:
Contact jroy

VPN Aggresive mode does not work?

Sat May 29, 2004 3:07 am

Question, John Tully - MT support - Does MT work in Aggresive Mode?

If not I will just stop trying.

Thanks,

Jerry
Top
 
tully
MikroTik Support
MikroTik Support
Posts: 502
Joined: Fri May 28, 2004 11:07 am

Re: VPN Aggresive mode does not work?

Sat May 29, 2004 10:38 am

[quote="jroy"]Question, John Tully - MT support - Does MT work in Aggresive Mode?

You need to send support question to: support@mikrotik.com

John
Top
 
User avatar
Eugene
Forum Veteran
Forum Veteran
Posts: 986
Joined: Mon May 31, 2004 5:06 pm
Location: Cranfield, UK

Re: IPSec tunnel to SonicWall

Mon May 31, 2004 5:17 pm

I have a hub and spoke VPN design. I have a MT RouterBoard at the spoke side. It gets its IP from the cable provider Via DHCP. Anyone know where in RouterOS to set the unique Identifier for the VPN tunnel to work?
You can use the following setting:
generate-policy (yes | no; default: no) - allow this peer to establish SA for non-existing policies. Such policies are created dynamically for the lifetime of SA. This way it is possible, for example, to create IPsec secured L2TP tunnels, or any other setup where remote peer's IP address is not known at configuration time
Top
 
jroy
newbie
Topic Author
Posts: 33
Joined: Fri May 28, 2004 9:41 pm
Location: Orange/LA county California
Contact:
Contact jroy

Re: IPSec tunnel to SonicWall

Sat Jun 05, 2004 9:33 am

I have a hub and spoke VPN design. I have a MT RouterBoard at the spoke side. It gets its IP from the cable provider Via DHCP. Anyone know where in RouterOS to set the unique Identifier for the VPN tunnel to work?
You can use the following setting:
generate-policy (yes | no; default: no) - allow this peer to establish SA for non-existing policies. Such policies are created dynamically for the lifetime of SA. This way it is possible, for example, to create IPsec secured L2TP tunnels, or any other setup where remote peer's IP address is not known at configuration time
OK, BUT the MT is the client side that has the dynamic address and the other side (SoicWall) has a static IP. Will this work then?
Top
 
jroy
newbie
Topic Author
Posts: 33
Joined: Fri May 28, 2004 9:41 pm
Location: Orange/LA county California
Contact:
Contact jroy

Does MikroTik have an Answer to my question?

Thu Jun 10, 2004 9:22 am

Can this work? Is there an example?
Top
 
User avatar
Eugene
Forum Veteran
Forum Veteran
Posts: 986
Joined: Mon May 31, 2004 5:06 pm
Location: Cranfield, UK

Fri Jun 18, 2004 6:29 pm

It depends whether SonicWall has the same feature as MT's 'generate-policy'.


BTW, you can use pppoe to MT router from SonicWall and then encrypt pppoe tunnel.
Top
Post Reply
  4. RouterOS
  5. General