SonicWALLメーカーOS 2.xの使用説明書/サービス説明書
ページ先へ移動 of 20
SonicWALL SonicOS 2.x Enhanced Quick Start Guide Rev 1.1 February 2004.
Sonic OS 2.x Quick Start Guide Intr oduction This guide walks you through the steps required to configure a typical customer network using the new SonicOS 2.
Sonic OS 2.x Quick Start Guide Basic W AN & LAN Configuration Refer to the Sonicwall Quick Start G uide included on the product CD. Security Zones and Objects There are several new concepts in troduced with SonicOS 2.x Enhan ced firmware. In this section, we’ll discuss the Security Zones and Objects.
Sonic OS 2.x Quick Start Guide Creating a Custom Zone There are four fixed Zone types: Trusted, Untrus ted, Public and Encrypted. Only the number of interfaces limits the number of Zone instances for Trusted and Public Zone types. The Untrusted Zone type (i.
Sonic OS 2.x Quick Start Guide Security Zones - Configuration The following will guide you through the process of configuring and assi gning interfaces to Security Zones: 1. We start out with the LAN and W AN interfaces as previously defined. 2. Click the configure icon ( ) associated with the X2 interface.
Sonic OS 2.x Quick Start Guide 15. e d to the X3 interface. Enter the network m ask assigned to the 17. Enter your comments as applicable. e nt and User Logins on this interface. quipment to be 20. Click OK to save your settings. The new DMZ interface is displayed in the settings.
Sonic OS 2.x Quick Start Guide Objects and Groups - Configuration T ting objects and groups. W e will use the Instant Messenger example from above. ss Objects option under the of the GUI. ct. NO gs will be slightly different for other objects. For the Mail Server in the 5.
Sonic OS 2.x Quick Start Guide 8. Repeat the steps above to de fine other address objects required for your installation. In the case of our example, you’ll need to create objects for: a. Web Server (10.0.0.2/32) b. Mail Server (192.168.168.4/32) c.
Sonic OS 2.x Quick Start Guide Fir ewall Access Rules W uch more functionality and flexibility when configuring Firewall Access Rules. However, rule configuration requires a dvance planning and depend.
Sonic OS 2.x Quick Start Guide Mail Server NAT Policy: To create an Inbound NAT po licy for our Mail Server: 1. Select the NAT Policies option under the Network button of the GUI. 2. Click the ADD button. 3. For Original Source, select ANY. Allow E-Mail from anywhere on the Internet.
Sonic OS 2.x Quick Start Guide 1. Click the intersection of the WAN (on the le ft) and LAN (on the top) to display any rules applicable for incoming packets fro m the WAN to the LAN. 2. Click ADD, to create a new entry in the WAN > LAN ruleset for our Mail Server.
Sonic OS 2.x Quick Start Guide While there are many other possibilities for crea ting Access Rules in SonicOS Enhanced, this “Public LAN Server” example should give you an unders tanding of where to start.
Sonic OS 2.x Quick Start Guide 3. Click ADD, to create a new entry in the LAN -> WAN ruleset for our IM users. 4. Select the ALLOW radio button. 5. For Service, select ANY. We want to block all access to the IM registration sites. 6. For Source, select LAN Subnets.
Sonic OS 2.x Quick Start Guide * The ability to NAT traffic as it enters the VPN Tunnel, or as it exits (inbound or outbound), and the capability to have firewall ru les specified on VPN traffic. Defining the Security Associations (SA) For the purpose of this exam ple, we will keep th e VPN configuration sim ple.
Sonic OS 2.x Quick Start Guide 11. gressive 13. Select the rest of the Phase 1 and 14. not use any of the 15. Click OK. For the TZ170, we assume that it is also runnin om the GUI, select the VPN 2. ct 3. te 4. 32.2. d 5. ec Secondary e X2 c 6. same value as the Pro 4060 Shared Secret.
Sonic OS 2.x Quick Start Guide 8. For the Remote IKE ID, select Sonicwall Identifier and enter the serial number of the Pro 4060. 9. Select the Network Tab. 10. For the Local Network, choose LAN Primary Subnet. This is a pre-defined address object for t LAN interface of the TZ170.
Sonic OS 2.x Quick Start Guide W AN-W AN Load Balancing & Fail Over SonicOS Enhanced provides the capability to co nn ect two WAN links and configure them for Load Balancing and/or Fail Over. This is the perfect feature for customer s who want to back up their T1 lines with DSL or Cable.
Sonic OS 2.x Quick Start Guide 3. Customize the probing interval, deactivate, and reactivate values as required. NOTE – Be careful with the values y ou set. Making them too small may cause the Sonic w all to identify a link as down even if connectivity w as only b interrupted.
Sonic OS 2.x Quick Start Guide WAN Load Balancing As previously mentioned, the Load Balancing cap ability can be Active-Passive, or Active-Active. If you decide to use the Active-Ac tive option, you will select one of the three lo ad balancing algorithms.
Sonic OS 2.x Quick Start Guide 9. For Translated Destination, select Original. We want the traffic to still go to its original destination. 10. For Original Service, select ANY. Leav e the service as the original service. 11. For Translated Service, selec t Origin al.
デバイスSonicWALL OS 2.xの購入後に(又は購入する前であっても)重要なポイントは、説明書をよく読むことです。その単純な理由はいくつかあります:
SonicWALL OS 2.xをまだ購入していないなら、この製品の基本情報を理解する良い機会です。まずは上にある説明書の最初のページをご覧ください。そこにはSonicWALL OS 2.xの技術情報の概要が記載されているはずです。デバイスがあなたのニーズを満たすかどうかは、ここで確認しましょう。SonicWALL OS 2.xの取扱説明書の次のページをよく読むことにより、製品の全機能やその取り扱いに関する情報を知ることができます。SonicWALL OS 2.xで得られた情報は、きっとあなたの購入の決断を手助けしてくれることでしょう。
SonicWALL OS 2.xを既にお持ちだが、まだ読んでいない場合は、上記の理由によりそれを行うべきです。そうすることにより機能を適切に使用しているか、又はSonicWALL OS 2.xの不適切な取り扱いによりその寿命を短くする危険を犯していないかどうかを知ることができます。
ですが、ユーザガイドが果たす重要な役割の一つは、SonicWALL OS 2.xに関する問題の解決を支援することです。そこにはほとんどの場合、トラブルシューティング、すなわちSonicWALL OS 2.xデバイスで最もよく起こりうる故障・不良とそれらの対処法についてのアドバイスを見つけることができるはずです。たとえ問題を解決できなかった場合でも、説明書にはカスタマー・サービスセンター又は最寄りのサービスセンターへの問い合わせ先等、次の対処法についての指示があるはずです。