Sonicwall General Info -1
How to Setup Basic Sonicwall firewall?
In the meantime, if you want to limit user bandwith (Per-IP Bandwidth Management) such as every computer connect to internet max 5Mb; you need to per user bandwith limit. If you use interface bandwith limit, you limit the outgoing internet to the building. Your incoming internet may be 500Mbps, interface limit gives to all building as limit value.
========================
Do not forget to check and upgrade your Sonicwall firmware periodically.
========================
You may need to click HTTPS feature, otherwise HTTPS website will not be checked by Sonicwall. Also, if you have VPN you need to do same thing on VPN settings.
========================
If you purchase filtering licences; You can block some website categories. To be able to do that;
GO Firewall >> Content Filter Objects.
To Enable safe search enforcement or YouTube restrict Mode... etc. you need to click on the pencil icon on the content filter objects page; then click on the "Advanced" tab.
========================
What to do with external Multiple Static IPs?
You can use them for your camera server, phone server.. etc. (Don't put x.x.x.x: port number, just type x.x.x.x)
How?
One popular option is to use the Sonicwall wizard to create a port forwarding rule from a new public ip address to a device on your LAN. Just type in the internal IP address and the external IP address in your range you want to use and you are good. It will create all three NAT rules and the firewall rules for you.
=======================
Please note that if you plug the cable into Sonicwall management port, the ip address of sonicwall is 192.168.1.254. You may need to change your computer IP address accordingly!
========================
========================
X0=>LAN; comes from the building network X1=> WAN comes from ISP : It is like that!
But it is not mandatory! It is default and everyone uses the default!
=========================
Also, don't forget to enable IPS (Intrusion Prevention Service) which is network protection from application exploits, worms and malicious traffic.
==========================
- Setting up LAN (X0 interface) and WAN (X1 interface) settings.
- Create Sonicwall routing rule for VLANS. Otherwise, other vlans can't connect to internet. http://www.myiteducation.org/2018/04/sonicwall-creating-routing-rules.html
- If needed, set up DHCP.
- If needed, set up content filtering. (See below)
- Check firmware upgrade! (Create a my sonicwall account!)
- You may need Public Server Guide which helps Quickly configure your SonicWall to provide public access to an internal server.
- If you have more than one building, setup site to site VPN. http://www.myiteducation.org/2018/03/vpn-on-sonicwall.html
- You may need to open a port for a computer. https://www.myiteducation.org/2018/02/sonicwall-to-open-ports.html BE CAREFUL, do not open to anyone. Open it with specific IP address. I recommend to use SSL VPN. (Search for Setup SSL VPN on a SonicWall Firewall) https://www.myiteducation.org/2018/10/ssl-vpn-on-sonicwall.html
- And see below to have an idea what you may need.
In the meantime, if you want to limit user bandwith (Per-IP Bandwidth Management) such as every computer connect to internet max 5Mb; you need to per user bandwith limit. If you use interface bandwith limit, you limit the outgoing internet to the building. Your incoming internet may be 500Mbps, interface limit gives to all building as limit value.
========================
Do not forget to check and upgrade your Sonicwall firmware periodically.
========================
You may need to click HTTPS feature, otherwise HTTPS website will not be checked by Sonicwall. Also, if you have VPN you need to do same thing on VPN settings.
========================
If you purchase filtering licences; You can block some website categories. To be able to do that;
GO Firewall >> Content Filter Objects.
To Enable safe search enforcement or YouTube restrict Mode... etc. you need to click on the pencil icon on the content filter objects page; then click on the "Advanced" tab.
========================
What to do with external Multiple Static IPs?
You can use them for your camera server, phone server.. etc. (Don't put x.x.x.x: port number, just type x.x.x.x)
How?
One popular option is to use the Sonicwall wizard to create a port forwarding rule from a new public ip address to a device on your LAN. Just type in the internal IP address and the external IP address in your range you want to use and you are good. It will create all three NAT rules and the firewall rules for you.
=======================
Please note that if you plug the cable into Sonicwall management port, the ip address of sonicwall is 192.168.1.254. You may need to change your computer IP address accordingly!
========================
========================
X0=>LAN; comes from the building network X1=> WAN comes from ISP : It is like that!
But it is not mandatory! It is default and everyone uses the default!
=========================
Also, don't forget to enable IPS (Intrusion Prevention Service) which is network protection from application exploits, worms and malicious traffic.
This is an amazing blog; I was trying to figure out how to keep in contact with your blog until I found a decent information about general info. I really wish you to have a good day and keep with the good work! Oracle Fusion Applications Training
ReplyDelete