VPN Tracker is the leading Apple Mac VPN client and compatible with almost all IPSec VPN, L2TP VPN and PPTP VPN gateways (Try VPN Tracker for free).Please refer to the following table to find out if the VPN Tracker team has already successfully tested VPN Tracker with your DELL SonicWALL VPN gateway.
It sounds as though your VPN connection secures all networks and possibly that you have IP overlap i.e. Your LAN IPs match the remote LAN. Have not use the Sonicwall Netextender, but see whether you have an option to not set the VPN IP as the default route/gateway. Viscosity is an OpenVPN client for Mac and Windows, providing a rich user interface for creating, editing, and controlling VPN connections.
You can configure SSL VPN for Mac OS X using Tunnelblick VPN client by following the steps below. Configuration is to be done in Cyberoam and Mac OS using Administrator profile. Step 1: Configure SSL VPN with Tunnel Access Mode in Cyberoam. Cyberoam SSL VPN client helps the user remotely access the corporate network from anywhere, anytime. It provides the ability to create point-to-point encrypted tunnels between remote user and the organization’s Internal network. How to cyberoam vpn client for mac for By using our cyberoam vpn client for mac services you agree to our use of cookies to improve your visit. You can change your preferences here. Cyberoam IPSec VPN client is a software for Windows that allows establishing secure connections over the Internet. This article requires that you have already set up an SSL VPN Remote Access tunnel on your Sophos Firewall. How to configure SSL VPN for Mac OS X You can configure SSL VPN for Mac OS X using Tunnelblick VPN client by following the steps below. Cyberoam ssl vpn client for macbook pro.
Active7 months ago
I'm trying to get VPN access up and running. The company has a SonicWall firewall/concentrator and I'm working on a Mac. I'm not sure of the SonicWall's hardware or software level. My MacBook Pro is OS X 10.8, x64, fully patched.
The Mac Networking applet claims the remote server is not responding. The connection attempt subsequently fails:
This is utter garbage, as a Wireshark trace shows the Protected Mode negotiation, and then the fallback to Quick Mode:
I have two questions: (1) does Mac OS X VPN work in real life? (2) Are there any trustworthy (non-Apple) tools to test and diagnose the connection problem (Wireshark is a cannon and I have to interpret the results)?
And a third question (off topic): what is so broken in Cupertino such that so much broken software gets past their QA department? I pay good money for the software to run their hardware, and this is an absolute joke.
Sonicwall Ssl Vpn Client Settings
EDIT (12/14/2012, 6:00 PM): The network guy sent me 'VPN Configuration Guide' (Equinox document SonicOS_Standard-6-EN). It seems an IPSec VPN now requires a Firewall Unique Identifier. Just to be sure, I revisited RFC 2409, where Main Mode, Aggressive Mode, and Quick Mode are discussed. I cannot find a reference to Firewall Unique Identifier.
EDIT (12/14/2012, 11:00 PM): From the Mac OS X logs (so much for the garbage message box from this crummy operating system):
Sonicwall Ssl Vpn Client Install
EDIT (12/15/2012, 12:00 AM):
I think I am screwed here: http://forums.macrumors.com/showthread.php?t=383855. I am trying to connect to a broken (non-standard) firewall, with a broken Mac OS X client.
fixer1234
22.1k1414 gold badges5555 silver badges8989 bronze badges
jwwjww
4,7692727 gold badges8383 silver badges160160 bronze badges
migrated from serverfault.comNov 14 '12 at 20:38
This question came from our site for system and network administrators.
4 Answers
This thread comes up on a lot of Google searches for Mac OS X compatibility with SonicWall VPNs, so even though the thread is old, I just wanted to post that YES, Mac OS X's native VPN client works fine with SonicWall's L2TP VPN. Third-party VPN clients are nice and full-featured, but certainly not required. Proper configuration is necessary on the UTM-side, but the UTM admin should have confirmed Mac OS X compatibility before provisioning a VPN account to you (IMHO).
For troubleshooting, I recommend two things:
That said, I have been successful setting up a L2TP VPN configuration that uses certificate authentication (not PSK) and IKEv2, and I can verify that it works for both native Mac OS X 10.10 and native Windows 7 VPN clients. Windows 8 should also be OK, but I cannot confirm. (IKEv1 with PSK auth also works, but I implore you to not configure the VPN this way -- it's not secure.). Please note that at no point is the use of the SonicWall's Firewall Unique Identifier needed.
I'm not an advocate of people blindly configuring settings that they don't understand. However, here are the settings I used in the hopes that admins who are new to setting up VPNs use the following as a template to stop using IKEv1 PSK, and properly configure a solid and secure VPN for their organization. The following is on a SonicWall NSA-series unit with SonicOS 5.8.x. I hope it helps:
General tab
Proposals tabPhase 1 (I assume this these are settings for IKEv1 only??):
Advanced tab
(the Advanced Settings will change depending on your environment, so enable what you need)
Client Authentication:
Client tab
L2TP Server tab:
{set your DNS servers (and WINS servers, if needed)}
L2TP Users tab:
{Unless you are authenticating with RADIUS/LDAP, set your IP pool range and set the group to use as your VPN users}
PPP tab:
Set to this order: MSCHAPv2, CHAP, MSCHAP, PAP
Annonymous CowardAnnonymous Coward
SonicWall VPN does work with OSX devices, though not always out of the box. The SonicWall server's VPN policy has to be configured the right way. I've managed to get iPads and iPhones to connect to them once I got the VPN policy created right. If the SonicWall's VPN policy is not set up right, it just won't work.
Community♦
SysAdmin1138SysAdmin1138
I was able to connect OS X El Capitan to a Sonicwall TZ 215 using pre shared key (PSK), on the WAN GroupVPN. This was previously working for me with VPN Tracker, but now that I'm running El Capitan beta, VPN Tracker does not work, so I figured I'd give the native VPN another shot.
At first it wasn't working, and I thought I'd have to reconfigure the sonicwall as described by @AnnonymousCoward, to use certificates. However, I noticed in one of the KB documents referred to here that you should enable the Accept Multiple Proposals for Clients checkbox in the Advanced tab of the WAN GroupVPN if you're having problems connecting from iOS (and I figured, maybe OS X as well).
THIS WORKED.
To be clear, my WAN GroupVPN is configured for
ESP: 3DES/HMAC SHA1 (IKE) . Using Group2 for Phase 1. Life Time is 28800 on Phase 1 and 2. XAUTH is setup.
Under L2TP settings in the main VPN section of the Sonicwall, you must enable and configure the L2TP Server. I set mine up to assign IP addresses to trusted users (e.g. XAUTH users) in the same IP network range as the rest of my remote network.
On OS X side, I created a
VPN (L2TP) connection. Server address is that of the remote firewall. Account name is that of the XAUTH user. Authentication settings has Password set as the XAUTH user password, and Shared Secret set as the PSK that was configured on Sonicwall. Group Name is left blank.
I haven't totally figured out routing. Normally in VPN tracker I define the network ranges that I want to route over the VPN (and they must match the routes that are defined on Sonicwall for the endpoint, e.g. 10.72.0.0/16 in my case). I can define multiple remote networks, if I need them, But I don't see where to specify that kind of setup in OS X's VPN configuration. However, so far I am not having a problem accessing the remote network. So I'm guessing L2TP works differently than the configuration I'm using in VPN Tracker.
Mason G. ZhwitiMason G. Zhwiti
IPSecuritas is free and it supports El Captain too.
Kevin NguyenKevin Nguyen
Not the answer you're looking for? Browse other questions tagged macosvpnfirewall or ask your own question.I have only basic knowledge of Mac's so I need some help.OS version = 10.7.2 Netextender Version = can't remember, but its the latest version downloaded by accessing the download through https://sslvpn.demo.sonicwall.com/cgi-bin/portal# VPN Box = Sonicwall SSLVPN 200 Problem description: I've installed Netextender with no problems onto a Mac running 10.7.2, when i attempt to connect to my work Microsoft Server, it authenticates, and then connects. The Transmit and Reciveve counters then freeze on about 200 - 300k, and my Internet connection also freezes, no errors at all, launching Safari just gives me a blank white page with no error. When I view the Netextender log all is fine, with no errors. My first thought is that Netextender is somehow overruling the local internet settings with the VPN ones, but I have no idea where to look or how to solve this. Any help and guidance would be very much appreciated. regards Steve Walker Comments are closed.
|