Like every other website on the planet, SmallNetBuilder uses cookies. Our cookies track login status, but we only allow admins to log in anyway, so those don't apply to you. Any other cookies you pick up during your visit come from advertisers, which we don't control.
If you continue to use the site, you agree to tolerate our use of cookies. Thank you!

Router Charts

Click for Router Charts

Router Ranker

Click for Router Ranker

NAS Charts

Click for NAS Charts

NAS Ranker

Click for NAS Ranker

More Tools

Click for More Tools

LAN & WAN Reviews



At a Glance
Product Sonicwall SSL-VPN 200 Appliance (SSL-VPN 200)
Summary Entry level SSL VPN gateway supporting SSL proxy and IPsec tunnel connections
Pros • Works with both IE and Firefox
• No per-use licensing
• Vista support for VPN client
Cons • Unequal local > remote and remote > local throughput
• Support plan ($) required for firmware updates after 90 days

We previously looked at rolling your own SSL VPN and Netgear's SSL-312 as affordable ways for SOHO / SMB users to explore the SSL alternative to IPsec VPN gateways. This time, I'll look at Sonicwall's entry-level SSL-VPN 200 appliance.

The 200 is Sonicwall's entry-level SSL gateway with ten recommended maximum concurrent users. Also available are the 2000 and 4000 models that have recommended maximum concurrent users of 50 and 200 users respectively. In a departure from Sonicwall's usual per-user license model, all the SSL VPN's come with unrestricted users licenses. So if you want to try loading them beyond the recommended maximums you can have at it. But as you'll see later, the recommendations are probably reasonable, if not a bit optimistic.

The 200 provides secure remote access via two main methods. Proxies are provided for HTTP, HTTPS, FTP, SSH (V1 or V2), Telnet, RDP (via ActiveX control or Java applet), VNC and Windows File Sharing (Windows SMB/CIFS). The proxies provide remote access to these services via IE or Firefox running on any OS. For other TCP/IP-based applications, you use what Sonicwall calls NetExtender. I'll let Sonicwall explain:

NetExtender is a SonicWALL SSL-VPN client for Windows that allows users to run TCP/IP-based applications securely on the company’s network. NetExtender is downloaded transparently and uses a Point-to-Point Protocol (PPP) adapter instance to negotiate ActiveX controls.

NetExtender first queries whether the ActiveX component is present, and if not, allows the user todownload and install it. When installed, NetExtender allows users to tunnel to the remote network and virtually join the remote network in order to mount drives, upload and download files, and access resources in the same way as if they were on the local network.

The 200's silver and blue metal enclosure is designed for utility and has mounting screw slots on the bottom and plenty of vent holes on each side. The indicators and connectors are shown in Figure 1 below.

SSL-VPN 200 Front and Rear Panels

Figure 1: SSL-VPN 200 Front and Rear Panels

Figure 2 shows that the 200 is based on a proprietary Sonicwall CPU joined with a Cavium XL Security Acceleration Board (PDF link). The Cavium spec sheet rates the board at 200 Mbps "IPsec performance" and 1750 (1024 bit exp) SSL TPS (Transactions Per Second). While this sounds impressive, we'll see later that actual performance doesn't have numbers that large.

The 200's Status page reports 128 MB of RAM and 16 MB of Flash, which is the same as contained in Netgear's SSL-312. All five 10/100 Ethernet ports are handled by the Micrel KSZ8995XA switch chip. Note the absence of heatsinks, which didn't seem to be needed for cool operation.

Inside the VPN 200
Click to enlarge image

Figure 2: Inside the VPN 200

More LAN & WAN

Wi-Fi System Tools
Check out our Wi-Fi System Charts, Ranker and Finder!

Support Us!

If you like what we do and want to thank us, just buy something on Amazon. We'll get a small commission on anything you buy. Thanks!

Over In The Forums

I want to configure my router so all traffic on my network goes through my VPN (PIA). However, I would like a single machine to be excluded from the V...
Hello everyone I have a home lab that I dib and dabble in. I have recently taking up an interest in PBX and am about to connect to a Trunk. My PBX is ...
I'm am trying to update the firmware on my RT-AC68U. It is currently Merlin build Initially my goal was to try and return it to the la...
Small business. Main network is handled by ISP. We manage our wireless network. We have 3 AC66U. 1 is running in AP Mesh Router mode, 2 are in node mo...
hi i just bought the ax88u and replaced my ac88u.but i have a problem with the 5ghz wifi band. on my old ac88u i had around 300Mbit speed on my 5ghz b...

Don't Miss These

  • 1
  • 2
  • 3