Dell SonicWall SRA 4200 Administrator's Manual page 407

appliance is in one-port mode on the X0 interface using the default IP address of
192.168.200.1, create a pool of addresses from 192.168.200.151 to 192.168.200.171. In
the 1.5 firmware release, you can create multiple unique pools on a per-group or per-user
basis.
What do I enter for NetExtender client routes?
7.
Answer: These are the networks that will be sent to remote NetExtender clients and should
contain all networks that you wish to give your NetExtender clients access to. For example,
if your SRA appliance was in one-port mode, attached to a Dell SonicWALL NSA 3500
appliance on a DMZ using 192.168.200.0/24 as the subnet for that DMZ, and the Dell
SonicWALL NSA 3500 had two LAN subnets of 192.168.168.0/24 and 192.168.170.0/24,
you would enter those two LAN subnets as the client routes to provide NetExtender clients
access to network resources on both of those LAN subnets.
What does the 'Tunnel All Mode' option do?
8.
Answer: Activating this feature will cause the SRA appliance to push down two default
routes that tell the active NetExtender client to send all traffic through the SRA appliance.
This feature is useful in environments where the SRA appliance is deployed in tandem with
a Dell SonicWALL security appliance running all UTM services, as it will allow you to scan
all incoming and outgoing NetExtender user traffic for viruses, spyware, intrusion attempts,
and content filtering.
Is there any way to see what routes the SRA appliance is sending NetExtender?
9.
Answer: Yes, right-click on the NetExtender icon in the taskbar and select route
information. You can also get status and connection information from this same menu.
Once I install the NetExtender is it uninstalled when I leave my session?
10.
Answer: By default, when NetExtender is installed for the first time it stays resident on the
system, although this can be controlled by selecting the Uninstall On Browser Exit > Yes
option from the NetExtender icon in the taskbar while it is running. If this option is checked,
NetExtender will remove itself when it is closed. It can also be uninstalled from the "Add/
Remove Program Files" in Control Panel. NetExtender remains on the system by default to
speed up subsequent login times.
How do I get new versions of NetExtender?
11.
Answer: New versions of NetExtender are included in each Dell SonicWALL SRA firmware
release and have version control information contained within. If the SRA appliance has
been upgraded with new software, and a connection is made from a system using a
previous, older version of NetExtender, it will automatically be upgraded to the new version.
There is one exception to the automatic upgrading feature: it is not supported for the MSI
version of NetExtender. If NetExtender was installed with the MSI package, it must be
upgraded with a new MSI package. The MSI package is designed for the administrator to
deploy NetExtender through Active Directory, allowing full version control through Active
Directory.
How is NetExtender different from a traditional IPSec VPN client, such as Dell SonicWALL's
12.
Global VPN Client (GVC)?
Answer: NetExtender is designed as an extremely lightweight client that is installed via a
Web browser connection, and utilizes the security transforms of the browser to create a
secure, encrypted tunnel between the client and the SRA appliance.
Is NetExtender encrypted?
13.
Answer: Yes, it uses whatever cipher the NetExtender client and SRA appliance negotiate
during the SSL connection.
Is there a way to secure clear text traffic between the SRA appliance and the server?
14.
FAQs | 407