We were trying today to configure an IPsec VPN connection on an NSA 2700 and connect to it via a Windows 10 end point. We just couldn’t get it to work no matter what we tried? We called SonicWall and they were pretty useless. Has anyone gotten this setup to work? If so what did you have to do? We did actually get it to work using the Net Extender but that isn’t what our goal. Thanks for any help. We are doing this due to an attack so it’s important to get it working reliably.
You should be using SSLVPN with a real certificate and 2-factor authentication.
Have you reviewed any of the SonicWALL KB’s for this? There are several (https://www.sonicwall.com/support/knowledge-base/l2tp-vpn-configuration/170504819998260/ or https://www.sonicwall.com/support/knowledge-base/configuring-l2tp-server-on-sonicos-enhanced/170505258972739/) and they all basically go over the same steps and work well.
I used these for setting up an NSA3600 with L2TP VPN and the built in Windows VPN Client
All that being said, if you’re doing this due to a prior attack, wouldn’t you want to go the SSL VPN route? That method will natively allow you to use MFA via email token or TOTP and works well to add that extra bit of security. You can get MFA on other VPN options, though it’s not native and requires additional setup.
Can you be a little more detailed? We did setup the Net Extender using the SSLVPN but I am thinking you aren’t referring to this implementation?