English dropdown-ico

SonicWALL OS 2.x manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

Go to page of

Similar user manuals

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of SonicWALL OS 2.x, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of SonicWALL OS 2.x one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of SonicWALL OS 2.x. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of SonicWALL OS 2.x should contain:
- informations concerning technical data of SonicWALL OS 2.x
- name of the manufacturer and a year of construction of the SonicWALL OS 2.x item
- rules of operation, control and maintenance of the SonicWALL OS 2.x item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of SonicWALL OS 2.x alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of SonicWALL OS 2.x, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the SonicWALL service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of SonicWALL OS 2.x.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the SonicWALL OS 2.x item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    SonicWALL SonicOS 2.x Enhanced Quick Start Guide Rev 1.1 February 2004[...]

  • Page 2

    Sonic OS 2.x Quick Start Guide Intr oduction This guide walks you through the steps required to configure a typical customer network using the new SonicOS 2.x Enhanced firmware. If you are familiar with Sonicwall’s existing products and firmware, this guide will help you make the trans ition from those products to the next generation of Sonicwall[...]

  • Page 3

    Sonic OS 2.x Quick Start Guide Basic W AN & LAN Configuration Refer to the Sonicwall Quick Start G uide included on the product CD. Security Zones and Objects There are several new concepts in troduced with SonicOS 2.x Enhan ced firmware. In this section, we’ll discuss the Security Zones and Objects. Wh en configuring the new products, yo u w[...]

  • Page 4

    Sonic OS 2.x Quick Start Guide Creating a Custom Zone There are four fixed Zone types: Trusted, Untrus ted, Public and Encrypted. Only the number of interfaces limits the number of Zone instances for Trusted and Public Zone types. The Untrusted Zone type (i.e. the WAN) is r eserved for the WAN interface( s). The Encrypted Zone type is a special sys[...]

  • Page 5

    Sonic OS 2.x Quick Start Guide Security Zones - Configuration The following will guide you through the process of configuring and assi gning interfaces to Security Zones: 1. We start out with the LAN and W AN interfaces as previously defined. 2. Click the configure icon ( ) associated with the X2 interface. 3. Select the ZONE as WAN and the IP assi[...]

  • Page 6

    Sonic OS 2.x Quick Start Guide 15. e d to the X3 interface. Enter the network m ask assigned to the 17. Enter your comments as applicable. e nt and User Logins on this interface. quipment to be 20. Click OK to save your settings. The new DMZ interface is displayed in the settings. Select the Zone as DMZ. 16. Enter the IP address assign interface. 1[...]

  • Page 7

    Sonic OS 2.x Quick Start Guide Objects and Groups - Configuration T ting objects and groups. W e will use the Instant Messenger example from above. ss Objects option under the of the GUI. ct. NO gs will be slightly different for other objects. For the Mail Server in the 5. Enter eps above for the ot her Instant Messenger orks. When completed, you w[...]

  • Page 8

    Sonic OS 2.x Quick Start Guide 8. Repeat the steps above to de fine other address objects required for your installation. In the case of our example, you’ll need to create objects for: a. Web Server (10.0.0.2/32) b. Mail Server (192.168.168.4/32) c. Local Pro 4060 LAN for the VPN (192.168.168.0/24) d. Re mote TZ170 LAN for the VPN (192.168.1.0/24[...]

  • Page 9

    Sonic OS 2.x Quick Start Guide Fir ewall Access Rules W uch more functionality and flexibility when configuring Firewall Access Rules. However, rule configuration requires a dvance planning and depends on the ith Sonic OS Enhanced, you will find m proper configuration of Interfaces, Zones, NAT Policies, Network Address Objects, Service Objects, and[...]

  • Page 10

    Sonic OS 2.x Quick Start Guide Mail Server NAT Policy: To create an Inbound NAT po licy for our Mail Server: 1. Select the NAT Policies option under the Network button of the GUI. 2. Click the ADD button. 3. For Original Source, select ANY. Allow E-Mail from anywhere on the Internet. 4. For Translated Source, select Original. We want to leave the o[...]

  • Page 11

    Sonic OS 2.x Quick Start Guide 1. Click the intersection of the WAN (on the le ft) and LAN (on the top) to display any rules applicable for incoming packets fro m the WAN to the LAN. 2. Click ADD, to create a new entry in the WAN > LAN ruleset for our Mail Server. 3. Select the ALLOW radio button. 4. For Service, select SMTP (Send E-Mail). We on[...]

  • Page 12

    Sonic OS 2.x Quick Start Guide While there are many other possibilities for crea ting Access Rules in SonicOS Enhanced, this “Public LAN Server” example should give you an unders tanding of where to start. In this section, we saved a couple fields for future expl anation, so let’s talk about them now: User Level Authentication and Schedules B[...]

  • Page 13

    Sonic OS 2.x Quick Start Guide 3. Click ADD, to create a new entry in the LAN -> WAN ruleset for our IM users. 4. Select the ALLOW radio button. 5. For Service, select ANY. We want to block all access to the IM registration sites. 6. For Source, select LAN Subnets. This will apply the rule to all networks in the LAN Subnets group. 7. For Destina[...]

  • Page 14

    Sonic OS 2.x Quick Start Guide * The ability to NAT traffic as it enters the VPN Tunnel, or as it exits (inbound or outbound), and the capability to have firewall ru les specified on VPN traffic. Defining the Security Associations (SA) For the purpose of this exam ple, we will keep th e VPN configuration sim ple. Refer to the network diagram at the[...]

  • Page 15

    Sonic OS 2.x Quick Start Guide 11. gressive 13. Select the rest of the Phase 1 and 14. not use any of the 15. Click OK. For the TZ170, we assume that it is also runnin om the GUI, select the VPN 2. ct 3. te 4. 32.2. d 5. ec Secondary e X2 c 6. same value as the Pro 4060 Shared Secret. mber of the TZ170. Select the Proposal tab. 12. For Exchange, se[...]

  • Page 16

    Sonic OS 2.x Quick Start Guide 8. For the Remote IKE ID, select Sonicwall Identifier and enter the serial number of the Pro 4060. 9. Select the Network Tab. 10. For the Local Network, choose LAN Primary Subnet. This is a pre-defined address object for t LAN interface of the TZ170. he 11. For Destination Networks, select the previously defined addre[...]

  • Page 17

    Sonic OS 2.x Quick Start Guide W AN-W AN Load Balancing & Fail Over SonicOS Enhanced provides the capability to co nn ect two WAN links and configure them for Load Balancing and/or Fail Over. This is the perfect feature for customer s who want to back up their T1 lines with DSL or Cable. The dual WAN links ca n be setup either as Ac tiv e-Activ[...]

  • Page 18

    Sonic OS 2.x Quick Start Guide 3. Customize the probing interval, deactivate, and reactivate values as required. NOTE – Be careful with the values y ou set. Making them too small may cause the Sonic w all to identify a link as down even if connectivity w as only b interrupted. riefly 4. Select the Enable Probe Monitoring, if you want to do both p[...]

  • Page 19

    Sonic OS 2.x Quick Start Guide WAN Load Balancing As previously mentioned, the Load Balancing cap ability can be Active-Passive, or Active-Active. If you decide to use the Active-Ac tive option, you will select one of the three lo ad balancing algorithms. Round Robin The Sonicwall balances the outgoing traffic on a per-destination basis by examinin[...]

  • Page 20

    Sonic OS 2.x Quick Start Guide 9. For Translated Destination, select Original. We want the traffic to still go to its original destination. 10. For Original Service, select ANY. Leav e the service as the original service. 11. For Translated Service, selec t Origin al. Again, we want the traffic to go to its original destination, via its original se[...]