Currently, our company network rests behind a Barracuda Link Balancer 330 (BLB) with three ISP connections. The BLB is in firewall mode with very few ports forwarded (Fonality system, and Daylite server). The folks in charge have decided that they would like to give some members of the staff VPN connectivity. The BLB has point-to-point capabilities, but not client-based or SSLVPN. There are obviously several options out there, and many of them are relatively expensive. Fortunately, I personally own a SonicWALL TZ215 (SW) we can test things with.
Installing a SonicWALL behind a functioning Barracuda Link Balancer 330
Posted 05 January 2016 - 10:47 AM
Posted 05 January 2016 - 11:08 AM
You need to use the LB as the primary firewall, and lesson the SW role here. The SW should not do any actual firewall functions. Having the firewall turned on for both does not really make sense.
If you want to use the SW for personal VPN's forward connections to it from the LB for that process. Although I would recommend a Barracuda SSL VPN appliance for this. On a related note, I'm going to be selling an SSL VPN 230 in the near future (to be replaced with clustered 430's). If you're interested, let me know.
Posted 05 January 2016 - 12:25 PM
I'm using the LB in Firewall Disabled Mode when installing the SW-- per Figure 2 in the second link.
Posted 07 January 2016 - 10:07 AM
Note-- I was able to resolve this: I had mistakenly entered the identical WAN IP on both devices, which triggered IP Spoof protection on the SonicWALL.