1.
Firewall-Bandwidth Objects-Add
Firewall-Access Rules-Lan > Wan
SonicWall
Sonicwall SNMP v3 settings
Sonicwall SNMP v3 settings
SSL For Free + SonicWall + Windows
https://www.sslforfree.com
Get 3 files CA_bundle.crt,certificate.crt,Private.key
http://slproweb.com/products/Win32OpenSSL.html
Win32 OpenSSL v1.1.0e Light
http://slproweb.com/download/Win32OpenSSL_Light-1_1_0e.exe
Install OpenSSL
C:\OpenSSL-Win32\bin\openssl pkcs12 -export -out C:\Cert\certificate.pfx -inkey C:\Cert\private.key -in C:\Cert\certificate.crt -certfile C:\Cert\CA_bundle.crt
Export a new pfx
SonicWALL change certificates
System-Certificates-Import
我的測試是經Comodo申請後, 由IIS再Export出黎的pfx file
先用Import a local end-user….增加mydomain.pfx
再由Import a CA certificate…..增加COMODORSAAddTrustCA.crt及COMODORSAOrganizationValidationSecureServerCA.crt
在以下位置選擇新加的Certificate
System-Administration-Web Management Settings-Certificate Selection:
SSL VPN-Server Settings-Certificate Selection:
Sonicwall Chrome ERR_SSL_VERSION_OR_CIPHER_MISMATCH
https://x.x.x.x/diag.html
Uncheck
Enable RC4-Only Cipher Suite Support
SonicWall NAT Loopback
Allow Lan users connect intranet server via WAN IP
SonicWall SSL VPN
NSA 2400
SonicOS Enhanced 5.8.1.9-58o
Enable at Wan connection
Set IP range
Enable “Tunnel All Mode” for when VPN client connect to internet will route to this gateway, and add the local subnet let it know
Users – Local Users
Add “SSL VPN Services”
Add permissions
Allow SonicWall Lan User ping Wan Interface
Firewall
Access Rules
