-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
Setup UTM SSL-VPN from the SonicWall Command-Line Interface (CLI)
03/26/2020 
1,102 People found this article helpful
485,294 Views
Description
Setup UTM SSL-VPN from the SonicWall Command-Line Interface (CLI)
Resolution
Feature/Application:
This article describes how to setup SSL-VPN from the SonicWall UTM CLI.
Note: There is no option to configure user settings in the CLI. SSL-VPN Users have to be created and VPN Access List set in the GUI.
Procedure:
Login to the SonicWall CLI using either SSH or Serial connection. For more information on how to login to the CLI, please refer this KB
Enter the administrator username and password.
You will be presented with the root prompt of the CLI.
Enter the following commands to setup SSL-VPN. All commands should be in lowercase.
SSL-VPN in the CLI has three Modules -
- client
- routes
- portal
Configuring Client settings
The following commands are available in the sslvpn client prompt:
>config <enter>
>sslvpn client <enter>
>address <IP address range begin> <IP address range end> <Interface> <enter> (Example: address 192.168.168.100 192.168.168.200 X0)
>sslvpn-access <zone> <enter> (Example: sslvpn-access WAN)
>dns1 <IP address of DNS server> <enter>
>dns2 <IP address of DNS server> <enter>
>user-domain LocalDomain <enter>
>dns-domain <name of Domain Controller> <enter>
>auto-update <enter>
>cache-username-password username-only OR password-username OR prohibitclient-communicate <enter> OR no client-communicate <enter>
>create-connection-profile <enter> OR no create-connection-profile <enter>
>exit-after-disconnect <enter> OR no exit-after-disconnect <enter>
>uninstall-after-exit OR no uninstall-after-exit <enter>
>wins1 <IP address of WINS server> <enter>
>wins2 <IP address of WINS server> <enter>
Configuring Client Route settings
The following commands are available in the sslvpn routes prompt:
>client routes <enter>
>add-routes <name of an Address Object or Address Group> (Example: LAN Subnets) <enter>
>tunnel-all <enter> (If Tunnel All mode is required)
>exit
Configuring Portal settings
The following commands are available in the sslvpn portal prompt, which can be enabled by invoking the following commands.
Related Articles
- How to Block Google QUIC Protocol on SonicOSX 7.0?
- How to block certain Keywords on SonicOSX 7.0?
- How internal Interfaces can obtain Global IPv6 Addresses using DHCPv6 Prefix Delegation
Categories
- Firewalls > TZ Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall NSA Series
YES
NO