Site to Site IPSec VPN setup between SonicWall and Cisco ASA firewall
03/26/2020 234 39918
When configuring a Site-to-Site VPN tunnel in SonicOS Enhanced firmware using Main Mode both the SonicWall appliances and Cisco ASA firewall (Site A and Site B) must have a routable Static WAN IP address.
Configure the address objects as mentioned in the figure above, click Add and click Close when finished.
Configuring a VPN policy on Site A SonicWall
Navigate to Manage | Connectivity | VPN | Base Settings page. Click Add . The VPN Policy window is displayed.
Click General tab.
Select IKE using Preshared Secret from the Authentication Method menu.
Enter a name for the policy in the Name field.
Enter the WAN IP address of the remote connection in the IPSec Primary GatewayName or Address field (Enter Site B's WAN IP address).
Enter a Shared Secret password to be used to setup the Security Association the Shared Secret and confirm Shared Secret fields. The Shared Secret must be at least 4 characters long, and should comprise both numbers and letters.
Click Network tab.
Under Local Networks, select a local network from Choose local network from list: and select the address object HBMTLAN_10.9.0.0 (LAN Subnet).
Under Remote Networks, select Choose destination network from list: and select the address object HBMTJM (Site B network).