C613-16098-00 REV E

www.alliedtelesis.com

AlliedWare

How To |

Today’s network managers often need to incorporate other vendors’ equipment into their

networks, as companies change and grow. To support this challenge, Allied Telesis routers are

designed to inter-operate with a wide range of equipment.

This How To Note details one of the inter-operation solutions from Allied Telesis: creating

virtual private networks between Allied Telesis and SonicWALL routers. It shows you how to

configure a VPN between a local Allied Telesis router and a remote SonicWALL router, step-

by-step. On the Allied Telesis router, it uses the Site-To-Site VPN wizard for the VPN

configuration.

The wizard runs on selected AR400 Allied Telesis routers from the router’s web-based GUI

(graphical user interface). It asks you to enter a few details and from those it configures the

following settings:

z encryption to protect traffic over the VPN

z ISAKMP with a pre-shared key to manage the VPN

z the firewall, to protect the LANs and to allow traffic to use the VPN

z Network Address Translation (NAT), so that you can access the Internet from the private

LAN through a single public IP address. This Internet access does not interfere with the

VPN solution

z (in this example) NAT-Traversal because one end of the VPN tunnel is behind a separate

NAT device

Create a VPN between an Allied Telesis and a

SonicWALL Router, with NAT-T

Page 2 | AlliedWare™ OS How To Note: VPNs with SonicWALL routers

What information will you find in this document?

This How To Note begins with the following information:

z "Related How To Notes" on page 2

z "Which products and software version does it apply to?" on page 2

Then it describes the configuration, in the following sections:

z "The network" on page 3

z "How to configure the Allied Telesis router" on page 4

z "How to configure the SonicWALL router" on page 12

z "How to test the tunnel" on page 29

z "How to use the CLI instead of the GUI" on page 30

Related How To Notes

Allied Telesis offers How To Notes with a wide range of VPN solutions, from quick and

simple solutions for connecting home and remote offices, to advanced multi-feature setups.

Notes also describe how to create a VPN between an Allied Telesis router and equipment

from a number of other vendors.

For a complete list of VPN How To Notes, see the Overview of VPN Solutions in How To Notes

in the How To Library at www.alliedtelesis.com/resources/literature/howto.aspx.

Which products and software version does it apply to?

The VPN wizard is available on the following Allied Telesis routers, running Software Version

2.9.

or later:

z AR4

z AR440S, AR44

S, AR442S

You can use the command line to set up an equivalent configuration on AR700 and other

AR400 Series routers. See "How to use the CLI instead of the GUI" on page 30 for the

necessary commands.

We created this example with a SonicWALL TZ

70, running SonicOS Enhanced 2.5.

-65e.

SonicOS Standard does not support NAT-T draft 3, so this solution requires SonicOS

Enhanced.

The screenshots in this Note are from an Internet Explorer 6.0 browser running on

Windows XP.