Also, are you having one or two VPNs with failover? Since you are seeing the packets being consumed, just check the statistics on the SA itself and see if the transmitted packets are bytes are increasing. If yes, then the SonicWall is forwarding the traffic correctly.

Each connection is counted against the maximum number of tunnels for your Azure VPN gateway, 10 for Basic and Standard SKUs, and 30 for HighPerformance SKU. In this configuration, the Azure VPN gateway is still in active-standby mode, so the same failover behavior and brief interruption will still happen as described above. But this setup SSL VPN NetExtender Clients (Maximum) 2 (3000) 2 (3000) 2 (3000) 2 (3000) VLAN Interfaces. 512. 512. 512. 512. SonicPoint Wireless Controller. N. S. S. S. WWAN Failover (4G/LTE) N. N. N. N. Network Switch Management. N. S. S. S. Firewall/VPN Performance. SonicWall SuperMassive 9800. SonicWall Supermassive 9600. SonicWall SuperMassive 9400 For small business, retail and branch office locations, the SonicWall TZ400 series delivers enterprise-grade protection. Flexible wireless deployment is available with optional 802.11ac dual-band wireless integrated into the firewall. SonicWall TZ300 series The SonicWall TZ300 series offers an all-in-one solution that protects networks from attack. Buy SonicWall TZ300 01-SSC-0215 VPN Wired Gen 6 Firewall appliance (hardware only) with fast shipping and top-rated customer service. Newegg shopping upgraded ™ Advanced networking features include multiple ISP failover and load balancing, optional dual-band secure wireless, IPSec VPN support, network segmentation and PCI compliance capabilities. Plus it is the only UTM firewall with a native VPN remote access client for iOS, Google Android, Windows, Mac OS and Linux that supports Clean VPN, which

Utilize clientless SSL VPN technology or an easy-to-manage IPSec client for easy access to email, files, computers, intranet sites and applications from a variety of platforms. Redundant VPN Gateway: When using multiple WANs, a primary and secondary VPN can be configured to allow seamless automatic failover and failback of all VPN sessions.

Microsoft Azure and SonicWALL STS - Part 2 – Configure SonicWALL OS VPN policy. Microsoft Azure and SonicWALL STS - Part 3 – Configure VPN policies and Routing. Extending the on-premises infrastructure to Azure, the obligatory need is to create site-to-site VPN to access resources in both side. Dead Peer Detection (page 6 of 6) of the IPSec VPN configuration) determines failover/failback time The default failover time is 115 seconds (Connection Idle Time + (Request Period x Maximum Request)) The default failback time is 10 seconds (Failback Retry Period) But, if one SonicWALL can ping the target but the other SonicWALL cannot, the HA Pair will failover to the SonicWALL that can ping the target. The configuration tasks on the High Availability > Monitoring page are performed on the Primary unit and then are automatically synchronized to the Secondary. After a failover to the Backup appliance, all the pre-existing network connections must be re-established, including the VPN tunnels that must be re-negotiated. The failover applies to loss of functionality or network-layer connectivity on the Primary SonicWall.

The VPN Policy window is displayed , Click the Advanced tab . Select the VPN bound to option. Select Interface X2 (3.3.3.3) as the Primary gateway as Site B is set as the same IP – 3.3.3.3. NOTE: By default, VPN policy bound to option is set to zone WAN where VPN tunnel will be established with Primary WAN as configured in Failover/Load balancing .

If unable to ping the remote site when the VPN to that site is down, the failover routes are not working. Check whether the Zones of the address objects for the remote sites is VPN. Make sure Disable route when the interface is disconnected is checked is enabled. Check whether LAN > VPN and VPN > LAN access rules have been auto-added. If not added, create them manually. Your WAN failover configuration should then take over the burden of reestablishing the VPN during an ISP outage. For your failover settings, make sure you're probing something on the internet and not simply monitoring layer 2 link since an ISP failure is rarely local to your next-hop router. P.S. - Netti, I think we used to work together! level 3