- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
How do I route all traffic to a SonicWall NSv using a different address space (different VNet)?
03/26/2020 
20 People found this article helpful
112,122 Views
Description
IP Addresses used in this article | ||
SonicWall NSv | ||
VNET | 10.5.0.0/16 | |
VNET NAME | AzureNSvSonicWALL | |
WAN IP | X1 :10.5.0.4/24 | |
LAN IP | X0: 10.5.1.4/24 | |
AZURE INSTANCE | 10.0.4.4/24 | |
AZURE VNET | MACHINE_TEST_DIFF_VNET | |
Resolution
- Create a virtual machine which is using a different address space (different resource group) and different subnet (10.0.4.4/24) and SonicWall NSv X0 interface of SonicWall 10.5.1.4/24 and X1 interface of SonicWall 10.5.0.4/24.
- Create a VNet peering between both the virtual network (SonicWall NSv) and (MACHINE_TEST_DIFF_VNET) under Virtual networks > AzureNSvSonicWall.
Note: Please allow traffic from AzureNSvSonicWalltoMACHINE_TEST_DIFF_VNET to MACHINE_TEST_DIFF_VNETtoAzureNSvSonicWall and vice-versa. - Create a route table under Home > Route table > Create route table.
- Add a route which will send any traffic to the next hop as 10.5.1.4 under Home > Route tables > MACHINE_TEST_DIFF_VNET_ROUTE_ALL.
- Associate the subnet to the route table by selecting the virtual network that the NSv is a part of and subnet as 10.0.4.0/24.
NOTE: After configuring please create a route in the SonicWall to reach 10.0.4.0/24 subnet via X0 of SonicWall with gateway as 10.5.1.1.
The local virtual machine will not be accessed through the public IP so a NAT and access rule are required to access the virtual machine via WAN to LAN.
Related Articles
- DNS Proxy: Creating DNS entries for internal/private network
- Global VPN Client Connectivity Error
- Unable to access certain websites, either slow or completely failing.
Categories
- Firewalls > NSv Series > Azure
YES
NO