ee hdi configure sonicwall firewalls

Upload: ron-andi

Post on 07-Apr-2018

223 views

Category:

Documents


0 download

TRANSCRIPT

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    1/10

    Version 1.0October 10, 2006Configure firewall security on a

    SonicWALL device?

    By Erik Eckel

    Takeaway

    SonicWALL firewalls are a staple of network security in the small and medium business market. SonicWALLsproprietary SonicOS operating system powers its firewall devices, which means the mechanisms and proceduresrequired to configure their security settings is similar for all of them. Here are the basic to configuring SonicWALLfirewalls.

    SonicWALLSonicWALL firewalls are a staple of the small and medium business market. Everyone from small nonprofitorganizations to medium-size and enterprise class businesses depend upon SonicWALL devices to secure their

    network communications.SonicWALLs proprietary SonicOS operating system powers its firewall devices. Most every SonicWALL device isnow powered by the SonicOS Enhanced operating system. The main difference between the two operatingsystems is the Enhanced version enables the systems firmware to provide ISP failover services, zonemanagement and WAN load balancing.

    The setup wizardSonicWALL includes numerous wizards with its firewall devices. Available menus differ by model (for example, theWEP/WAP Encryption settings menu is available only on those models possessing wireless features).

    The Setup Wizard is a time-saving tool that simplifies new router deployment. Or, if a network is beingredesigned, a SonicWALL device can be reset to factory defaults and the Setup Wizard can be used to roll thedevice out anew.

    To use the Setup Wizard, log in to a SonicWALL firewall and click the Wizards button. The Wizards (Figure A)button can be found on the main System | Status page.

    Click this tag search to find other How do I articles and downloads.

    Page 1Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

    http://www.sonicwall.com/http://search.techrepublic.com.com/index.php?c=1&q=firewall&t=11http://techrepublic.com.com/5264-1-0.html?query=how%20do%20ihttp://techrepublic.com.com/5264-1-0.html?query=how%20do%20ihttp://search.techrepublic.com.com/index.php?c=1&q=firewall&t=11http://www.sonicwall.com/
  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    2/10

    How do I: Configure firewall security on a SonicWALL device?

    Figure A

    The SonicWALL System Status page provides a wealth of information regarding a firewalls configuration.

    Heres a walkthrough of the process using a SonicWALL PRO 1260.

    After clicking the Wizards button, the SonicWALL Configuration Wizard presents four options (Figure B).

    Figure B

    The SonicWALL Configuration Wizard presents four options. Administrators can either choose to select the SetupWizard (used to configure the SonicWALL device to secure network connections), the PortShield Interface Wizard(for segmenting networks), the Public Server Wizard (used to provide internal server access to the public) or theVPN Wizard (for configuring access to a virtual private network).

    Page 2Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    3/10

    How do I: Configure firewall security on a SonicWALL device?

    Specify whether you wish to select the Setup Wizard, PortShield Interface Wizard, Public Server Wizard or VPNWizard. For this example, well choose Setup Wizard and click Next. The Setup Wizard appears.

    1. Step 1: The Change Password screen appears. Enter the default or old password, then enter a newpassword and confirm the new entry. When finished, click Next.

    2. Step 2: The Change Time Zone menu appears. Specify the applicable time zone, and check the box ifyou want the firewall to automatically adjust for daylight saving time, and click Next.

    3. Step 3: The WAN Network Mode screen appears. Select the radio button indicating the method used toconnect to your ISP (Static IP, DHCP, PPPoE or PPTP). Then, click Next. For this example well selectStatic IP. (Figure C)

    Figure C

    The WAN Network Mode menu enables specifying the most appropriate ISP connection method.

    4. Step 4: The WAN Network Mode: NAT Enabled menu appears. Enter the SonicWALL WAN IP Address,WAN Subnet Mask, Gateway (Router) Address, DNS Server Address and a secondary DNS address, andclick Next. (Figure D)

    Page 3Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    4/10

    How do I: Configure firewall security on a SonicWALL device?

    Figure D

    Specify WAN settings using the WAN Network Mode screen.

    5. Step 5: The LAN Settings menu appears. Supply an IP address for the SonicWALLs LAN. Be sure toprovide a subnet mask, and then click Next. (Figure E)

    Figure E

    Specify LAN settings using the SonicWALLs LAN Network Settings screen.

    Page 4Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    5/10

    How do I: Configure firewall security on a SonicWALL device?

    6. Step 6: The LAN DHCP Settings screen appears. Check the Enable DHCP Server On LAN box if youwish for the SonicWALL device to provide DHCP services. If you check the box, youll also have to enterthe valid LAN address range. When done, click Next. (Figure F)

    Figure F

    Specify DHCP settings using the DHCP Server menu.

    7. Step 7: The SonicWALL Configuration Summary (Figure G). Review the information the wizard provides,and if all settings are correct, click Apply. If the configuration requires adjustment, click the Back button.

    Figure G

    Review the Confirmation Summary carefully before proceeding; clicking Apply triggers the settings reviewed onthis menu.

    Page 5Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    6/10

    How do I: Configure firewall security on a SonicWALL device?

    A screen will appear indicating that the SonicWALL configuration is being saved, and youll be asked to wait.When the configuration is completed, youll see a Congratulations message stating the changes have been madeand the Setup Wizard has completed.

    SonicWALL Log InOnce the Setup Wizard is complete, log in to the firewall by entering the IP address you assigned to the

    SonicWALL device in Step 5 (on the LAN Settings menu). Youll be greeted with a standard name and passworddialog box. Enter the name and password you supplied for the firewall and click the Login button.

    By default, the SonicWALL device displays the System | Status menu. To configure additional firewall settings,click the Firewall button from the menu appearing on the SonicWALL interface screens left edge.

    The Firewall | Access Rules | All menu appears. The SonicWALL application displays important information aboutthe firewalls configuration within this screen. In addition to revealing zone and priority information, the AccessRules menu displays source and destination data, service type, action status, and user information (Figure H).

    Figure H

    Administrators can review SonicWALLs Access Rules using three different views; here the All Rules view isdisplayed.

    Traffic statistics for each access rule can be obtained simply by mousing-over the graph icon that appears towardthe end of each access rule line. Access rule configurations can be tweaked by clicking the pencil and paper icon,or an access rule can be deleted by clicking its trash can icon.

    Creating access rulesTo create an access rule:

    1. Log on to the SonicWALL firewall.

    2. Click the Firewall button.3. Click the Matrix or Drop-down Boxes View Style radio button. (See Figure I)

    4. Click the appropriate From And To Zone (such as WAN to LAN).

    5. Click the Add button that appears at the bottom of the menu.

    Page 6Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    7/10

    How do I: Configure firewall security on a SonicWALL device?

    Figure I

    When creating an access rule, you must specify the appropriate criteria. SonicWALLs firmware provides pre-

    populated drop-down boxes for configuring most settings.6. Using the General tab, specify the action to be taken to traffic matching the access rules settings; Allow,

    Deny and Discard are the three options.

    7. Select the appropriate service from the Service drop-down box. Do the same for the Source, Destination,Users Allowed and Schedule drop-down boxes.

    8. Enter a comment that describes the access rule or its purpose.

    9. Uncheck the Enable Logging checkbox if you dont wish to log events related to the new access rule.

    10. Configure any advanced options (such as a timeout for TCP connection inactivity or the number ofconnections permitted) using the Advanced tab.

    11. Click OK.

    Editing access rulesTo edit an access rule:

    1. Log on to the SonicWALL firewall.

    2. Click the Firewall button.

    3. Select Access Rules.

    4. Click the pencil and paper icon for the access rule you wish to edit.

    5. Use the resulting drop-down boxes to adjust the access rule as required (Figure J). Alternatively, you canclick an access rules corresponding trash can icon to delete it.

    Page 7Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    8/10

    How do I: Configure firewall security on a SonicWALL device?

    Figure J

    SonicWALLs drop-down boxes make quick work when editing access rules.

    6. Click OK to apply the edits (if you delete an access rule, the deletion occurs upon confirming the action).The SonicWALL firmware will write the changes and update the firewalls configuration.

    Editing service groupsSonicWALL devices, by default, include service objects and groups designed to simplify firewall administration.Using SonicWALL firewalls, service groups and objects are used to make common applications and services(such as PC Anywhere, ShoreTel, VNC and Yahoo Messenger) available to network users.

    To review a firewalls services settings:

    1. Log on to the SonicWALL firewall.

    2. Click the Firewall button.

    3. Select Services.

    Numerous service groups are provided by default (Figure K). To add additional groups or objects:

    1. Log on to the SonicWALL firewall.

    2. Click the Firewall button.

    3. Select Services.

    4. Click the Custom Services radio button.

    5. Click Add Group to create a new Service Group or Add to create a new service (Figure L).

    Page 8Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    9/10

    How do I: Configure firewall security on a SonicWALL device?

    Figure K

    SonicWALLs firmware provides numerous pre-populated service groups to simplify firewall configuration.

    Figure L

    Administrators needing to create their own firewall services can do so by specifying the appropriate criteria.

    6. If you click Add Group, numerous options are pre-populated in the left pane. You can choose to selectone of those or enter your own name and click OK; to configure its settings, click its subsequent penciland paper icon. To create a new service, click the Add button, provide a name, specify the appropriateprotocol, enter the port range or sub type if required and click OK.

    Page 9Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

  • 8/6/2019 Ee Hdi Configure Sonicwall Firewalls

    10/10

    How do I: Configure firewall security on a SonicWALL device?

    Additional resources TechRepublic'sDownloads RSS Feed

    Sign up for TechRepublic's Downloads Weekly Update newsletter Sign up for TechRepublic's Network Administration NetNote newsletter

    Check out all of TechRepublic's free newsletters

    Catch up with all the How do I articles on TechRepublic.

    Version historyVersion: 1.0

    Published: October 10, 2006

    Tell us what you think

    TechRepublic downloads are designed to help you get your job done as painlessly and effectively as possible.Because we're continually looking for ways to improve the usefulness of these tools, we need your feedback.Please take a minute to drop us a line and tell us how well this download worked for you and offer yoursuggestions for improvement.

    Thanks!

    The TechRepublic Downloads Team

    Page 10Copyright 2006 CNET Networks, Inc. All rights reserved.

    For more downloads and a free TechRepublic membership, please visit http://techrepublic.com.com/2001-6240-0.html

    http://techrepublic.com.com/5155-22-0.xmlhttp://techrepublic.com.com/5155-22-0.xmlhttp://nl.com.com/MiniFormHandler?brand=techrepublic&list_id=e072http://nl.com.com/MiniFormHandler?brand=techrepublic&list_id=e102http://nl.com.com/acct_mgmt.jsp?brand=techrepublic&return_to=http://techrepublic.com.com/http://techrepublic.com.com/5264-1-0.html?query=how%20do%20imailto:[email protected]?subject=Download_Feedback-How%20do%20I:%20Configure%20firewall%20security%20on%20a%20SonicWALL%20device?&body=How%20do%20I:%20Configure%20firewall%20security%20on%20a%20SonicWALL%20device?mailto:[email protected]?subject=Download_Feedback-How%20do%20I:%20Configure%20firewall%20security%20on%20a%20SonicWALL%20device?&body=How%20do%20I:%20Configure%20firewall%20security%20on%20a%20SonicWALL%20device?http://techrepublic.com.com/5264-1-0.html?query=how%20do%20ihttp://nl.com.com/acct_mgmt.jsp?brand=techrepublic&return_to=http://techrepublic.com.com/http://nl.com.com/MiniFormHandler?brand=techrepublic&list_id=e102http://nl.com.com/MiniFormHandler?brand=techrepublic&list_id=e072http://techrepublic.com.com/5155-22-0.xmlhttp://techrepublic.com.com/5155-22-0.xml