Question : How do I pass Sonicwall GVC traffic through a TZ170 to terminate on a TZ210?

Hi,
I presently have a setup like this:

Remote user GVC client  --------> internet ---------> PIX -----------+--------> TZ210 ------Internal network
                                                                                                               +---------DMZ
I can use GVC presently and terminates fine on the TZ210, however I need to replace the PIX with a TZ170 to address another issue. A Cisco consultant configured the PIX so I don't know exactly how he did it, but I guess he setup port forwarding for IPSEC to the TZ210. I want to replicate this on the TZ170. the internal address of the PIX is 10.0.0.254 and the external address of the TZ210 is 10.0.0.1  I  suspect all I need to do is use the sonicwall wizards on the TZ170 to identify and pass through IPSEC packets to the TZ210, but I am usure what ports to open. Or have I got that wrong?  

I've just noticed there is facility for a diagram :) so if this doesn't look clear when i post it, i will add one...

Answer : How do I pass Sonicwall GVC traffic through a TZ170 to terminate on a TZ210?

What you'll want to do on the 170 is configure it in transparent mode.  This will disable NAT passing IPSEC to the 210 without altering the packets.  I've included a doc that walks through the steps for a DMZ, but the principle is the same.

Why not put the 210 in place of the PIX?
Random Solutions  
 
programming4us programming4us