Today we are setting up a VPN between an onsite SonicWall and AWS.

  1. Log into your AWS account and navigate to your VPC
  2. vpn01Scroll down and navigate to VPN Connections -> Customer Gateways
  3. Click on Create Customer Gateway
  4. Name it, configure the routing and assign it the external IP address of your SonicWall (IP of the WAN interface)
    vpn02
  5. Navigate to VPN Connections -> Virtual Private Gateways and create a new Virtual Private Gateway and attach it to the VPC
    vpn03
  6. Navigate to VPN Connections -> VPN Connections
    Create a new VPN Connection.
    vpn04
  7. Go to ‘Route Tables’ and add the private local route
    vpn05
  8. If all worked fine so far, go back to VPN Connections and download the Config File for the SonicWall. It has to the generic one as there is no specific one for SonicWall.
    vpn06
  9. You are done in AWS for now. Take a coffee brake… :o)
  10. Log into your SonicWall and navigate to:
    VPN -> Settings -> VPN Policies -> Add…
  11. Setup a VPN:
    IPSec Primary Gatey: AWS Tunnel 1 IP
    Shared Secret, see downloaded generic documentation (open in word!)
    Local IKE: Ext IP from Sonicwall
    Peer IKE: Same as IPSec Gateway

    vpn07

  12. Setup the proposal accordingly:
    vpn08
  13. Setup the Advances settings accordingly:
    vpn09
  14. Go to VPN -> Advanced and disable NAT Traversal
    vpn10
  15. Go to Network -> Routing and configure a new router for the VPN.
    vpn11
  16. Go to Firewall -> Access Rules and create a new rule for the AWS VPN
    (VPN -> LAN and LAN -> VPN)
    vpn12
  17. Check in both AWS and SonicWall that the tunnel is up and check the firewalls. Once that is done start pinging from local to AWS and vice versa to confirm all is good.

    All done :o)

Post Navigation