- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
Unable to Send Radius Request Across the VPN from Dedicated Interfaces
03/26/2020 
19 People found this article helpful
43,274 Views
Description
Issue- Not able to send Radius Request across the VPN from dedicated interfaces
Cause
Binding effect of inbuilt Feature "SEND THROUGH VPN TUNNEL"
Resolution
Customer has a Radius server across the Site to Site VPN behind another SonicWall and customer’s requirement is to send request to the Radius Server from a VLAN interface X1:V10 and not from X0 interface.
We configured the Radius Server on Site A’s SonicWall and enabled “SEND THROUGH VPN TUNNEL”:
Under the Site to Site VPN settings, we set up LOCAL Network as “X1:V10 INTERFACE IP” and REMOTE Network as 192.168.17.0/24 Address Object (Site B Subnet) on Site A:
After setting up the Radius Server on Site A and Site to Site VPN, we tried to test a User and found that the request was going through X0 interface instead of X1:V10 interface:
In this scenario, the Check Box “SEND THROUGH VPN TUNNEL” is required to be checked to send the requests across the VPN tunnel but it also binds these requests to X0 interface even if we have specified LOCAL network for Site to Site VPN as “X1:V10 Interface IP” on Site A.
After running a couple of tests we were unable to redirect the traffic via X1:V10 interface as X0 interface was always taking precedence. So for testing purpose we UNCHECKED the “SEND THROUGH VPN TUNNEL” check box and traffic started redirecting through X1:V10 interface.
So the conclusion to the above discussed issue is, if you want to redirect traffic to send Radius requests via a dedicated interface of your choice then “SEND THROUGH VPN TUNNEL” must be unchecked.
Example, we have the option to redirect traffic for SYSLOGS via dedicated interface:
Similarly, we can do the same for Radius server but by unchecking the “SEND THROUGH VPN TUNNEL” check box.
Related Articles
- DNS Resolution of Wildcard FQDN Address Objects
- All associated wildcard FQDN IP addresses do not display in the web browser
- How to Re-Install The Junk Store
YES
NO