Sonicwall – Configuration Setup

Most common SonicWALL firewall configuration listed below with detailed

explanation & step by step procedures.

 Configuring LAN Interface

 Configuring the WAN (X1) connection
 Configuring other interfaces (X2, X3 or DMZ etc)
 Port forwarding to a server behind SONICWALL
 Configuring remote VPN connections (GroupVPN, GVC, SSL-
VPN, L2TP, etc.)
 Site to Site VPN and Route Based VPN configuration
 Configuring Wireless
 Connect via Console
 Resetting the SonicWall and Uploading firmware
 Enabling SonicWall Security Services (Content Filter, IPS, GAV,
etc.)
 Configuring user authentication
 Configuring High Availability
 Installing GMS/Analyzer

Configuring LAN Interface

How to configure the LAN interface on a SonicWall firewall, including step-by-step

instructions and example data?

Step-by-Step Procedure to Configure LAN Interface

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall firewall
(e.g., 192.168.168.168).
o Log in with your administrator credentials.
2. Navigate to Network Settings:
o Go to the Network tab.
o Select Interfaces from the left-hand menu.
3. Configure the LAN Interface:
o Click on the Edit icon next to the LAN interface (usually X0).
o In the Edit Interface window, configure the following settings:
 IP Address: Enter the desired IP address for the LAN interface
(e.g., 192.168.1.1).
 Subnet Mask: Enter the appropriate subnet mask (e.g.,
255.255.255.0).
 Zone: Ensure the zone is set to LAN.
 DHCP Server: Enable or disable the DHCP server as needed.
For example, enable DHCP and set the range from
192.168.1.100 to 192.168.1.200.
4. Save the Configuration:
o Click OK to save the changes.
o Apply the changes to make them effective.

Example Data

 IP Address: 192.168.1.1
 Subnet Mask: 255.255.255.0
 DHCP Range: 192.168.1.100 to 192.168.1.200

Certainly! DHCP (Dynamic Host Configuration Protocol) is a network management

protocol used to automate the process of configuring devices on IP networks. Here’s
a detailed explanation of the DHCP settings you might encounter when configuring
the LAN interface on a SonicWall firewall:

DHCP Settings

1. Enable DHCP Server:

o This option allows the SonicWall firewall to act as a DHCP server,
automatically assigning IP addresses to devices on the network.
2. DHCP Range:
o Start IP: The beginning of the range of IP addresses that the DHCP
server can assign (e.g., 192.168.1.100).
o End IP: The end of the range of IP addresses that the DHCP server can
assign (e.g., 192.168.1.200).
3. Lease Time:
o The duration for which an IP address is leased to a device. After this
period, the lease must be renewed. Common lease times are 24 hours
or 7 days.
4. Gateway:
o The IP address of the gateway (usually the LAN interface of the
SonicWall firewall) that devices will use to access other networks (e.g.,
192.168.1.1).
5. DNS Servers:
o The IP addresses of the DNS servers that devices will use to resolve
domain names to IP addresses. You can specify primary and secondary
DNS servers (e.g., 8.8.8.8 for Google DNS).
6. Domain Name:
 o The domain name that will be assigned to devices on the network
(optional).

Example Configuration

 Enable DHCP Server: Yes

 DHCP Range: 192.168.1.100 to 192.168.1.200
 Lease Time: 24 hours
 Gateway: 192.168.1.1
 DNS Servers: 8.8.8.8, 8.8.4.4
 Domain Name: example.local

Steps to Configure DHCP on SonicWall

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Navigate to DHCP Server Settings:
o Go to the Network tab.
o Select DHCP Server from the left-hand menu.
3. Enable DHCP Server:
o Check the box to enable the DHCP server.
4. Configure DHCP Range:
o Enter the start and end IP addresses for the DHCP range.
5. Set Lease Time:
o Specify the lease time for the IP addresses.
6. Enter Gateway and DNS Servers:
o Provide the IP address of the gateway and DNS servers.
7. Save the Configuration:
o Click OK to save the changes.
o Apply the changes to make them effective.

Configuring the WAN (X1) connection

Configuring the WAN (X1) interface on a SonicWall firewall is essential for

establishing internet connectivity. Here’s a step-by-step guide to help you configure

the WAN interface with a static IP address:

Step-by-Step Procedure to Configure WAN (X1) Interface

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall firewall
(e.g., 192.168.168.168).
o Log in with your administrator credentials.
 2. Navigate to Network Settings:
o Go to the Network tab.
o Select Interfaces from the left-hand menu.
3. Configure the WAN Interface:
o Click on the Edit icon next to the WAN interface (X1).
o In the Edit Interface window, configure the following settings:
 IP Assignment: Select Static from the drop-down menu.
 IP Address: Enter the static IP address provided by your ISP
(e.g., 204.180.153.105).
 Subnet Mask: Enter the subnet mask provided by your ISP
(e.g., 255.255.255.0).
 Default Gateway: Enter the default gateway provided by your
ISP (e.g., 204.180.153.1).
 DNS Server 1: Enter the primary DNS server IP address (e.g.,
4.2.2.1).
 DNS Server 2: Enter the secondary DNS server IP address
(e.g., 4.2.2.2).
4. Enable Management and User Login (Optional):
o If you want to enable remote management of the SonicWall from this
interface, select the supported management protocols (e.g., HTTP,
HTTPS, SSH).
o To allow selected users with limited management rights to log in, select
HTTP and/or HTTPS in User Login.
5. Save the Configuration:
o Click OK to save the changes.
o Apply the changes to make them effective.
6. Test the Connectivity:
o Navigate to Device > Diagnostics.
o Use the Ping tool to ping your ISP’s default gateway or any IP that is
pingable on the internet (e.g., 4.2.2.2).
o Also, try to ping a website (e.g., www.google.com) to ensure that DNS
resolution is working.

Example Data

 IP Address: 204.180.153.105
 Subnet Mask: 255.255.255.0
 Default Gateway: 204.180.153.1
 DNS Server 1: 4.2.2.1
 DNS Server 2: 4.2.2.2

Configuring other interfaces (X2, X3 or DMZ etc)

Configuring additional interfaces like X2, X3, or DMZ on a SonicWall firewall allows
you to segment your network for different purposes, such as creating a demilitarized
zone (DMZ) for public-facing services. Here’s a step-by-step guide to help you
configure these interfaces:

Step-by-Step Procedure to Configure X2, X3, or DMZ

Interface

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall firewall
(e.g., 192.168.168.168).
o Log in with your administrator credentials.
2. Navigate to Network Settings:
o Go to the Network tab.
o Select Interfaces from the left-hand menu.
3. Configure the Interface:
o Click on the Edit icon next to the interface you want to configure (e.g.,
X2, X3).
o In the Edit Interface window, configure the following settings:
 Zone: Select the appropriate zone (e.g., DMZ, LAN, WAN, or
create a new custom zone).
 IP Assignment: Choose Static or DHCP based on your
network requirements.
 IP Address: Enter the IP address for the interface (e.g.,
192.168.2.1 for X2).
 Subnet Mask: Enter the appropriate subnet mask (e.g.,
255.255.255.0).
 Comment: Add any useful information for the interface
(optional).
4. Save the Configuration:
o Click OK to save the changes.
o Apply the changes to make them effective.

Example Configuration for DMZ (X2)

 Zone: DMZ
 IP Assignment: Static
 IP Address: 192.168.2.1
 Subnet Mask: 255.255.255.0
 Comment: DMZ Interface

Example Configuration for LAN (X3)

 Zone: LAN
 IP Assignment: Static
 IP Address: 192.168.3.1
 Subnet Mask: 255.255.255.0
 Comment: LAN Interface
Additional Steps for DMZ Configuration

1. Create Address Objects:

o Go to Network > Address Objects.
o Create address objects for the devices in the DMZ.
2. Configure Access Rules:
o Go to Firewall > Access Rules.
o Create rules to allow or restrict traffic between the DMZ and other
zones.
3. Test the Configuration:
o Ensure that devices connected to the DMZ interface can access the
necessary resources and that the firewall rules are working as
expected.

Port forwarding to a server behind SONICWALL

Configuring port forwarding on a SonicWall firewall to allow access to a server behind

it:

Step-by-Step Procedure for Port Forwarding

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall firewall
(e.g., 192.168.168.168).
o Log in with your administrator credentials.
2. Create Address Objects:
o Go to the Network tab.
o Select Address Objects from the left-hand menu.
o Click Add to create two address objects:
 Public IP Address: The public IP address assigned by your ISP.
 Private IP Address: The internal IP address of the server (e.g.,
192.168.1.100).
3. Create Service Objects:
o Navigate to Network > Services.
o Click Add to create a service object for the port you want to forward
(e.g., HTTP, TCP port 80).
4. Create NAT Policies:
o Go to Network > NAT Policies.
o Click Add to create a new NAT policy:
 Original Source: Any
 Translated Source: Original
 Original Destination: Public IP Address (created in step 2)
 Translated Destination: Private IP Address (created in step 2)
 Original Service: Service Object (created in step 3)
 Translated Service: Original
 Inbound Interface: WAN
  Outbound Interface: Any
5. Create Firewall Access Rules:
o Go to Firewall > Access Rules.
o Select WAN to LAN from the drop-down menu.
o Click Add to create a new rule:
 Action: Allow
 From Zone: WAN
 To Zone: LAN
 Service: Service Object (created in step 3)
 Source: Any
 Destination: Private IP Address (created in step 2)
6. Save and Apply Changes:
o Click OK to save the NAT policy and firewall rule.
o Apply the changes to make them effective.

Example Configuration

 Public IP Address: 203.0.113.5

 Private IP Address: 192.168.1.100
 Service Object: HTTP (TCP port 80)

Configuring remote VPN connections (GroupVPN, GVC, SSL-VPN,

L2TP, etc.)

Configuring remote VPN connections on a SonicWall firewall allows users to securely

connect to the network from remote locations.

Here’s a step-by-step guide for configuring different types of VPN connections:

1. GroupVPN (WAN GroupVPN)

Step-by-Step Procedure

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Enable VPN:
o Navigate to Network > IPSec VPN > Rules and Settings.
o Ensure the Enable VPN and WAN GroupVPN options are toggled on.
3. Configure WAN GroupVPN:
o Click the Configure icon for the WAN GroupVPN entry.
o In the General tab, set the Authentication Method to IKE using
Preshared Secret.
o Enter a Shared Secret.
 4. Set Proposals:
o Go to the Proposals tab and configure the encryption and
authentication settings for Phase 1 and Phase 2.
5. Advanced Settings:
o In the Advanced tab, enable Require Authentication of VPN
Clients via XAUTH.
o Select the Trusted Users group.
6. Client Settings:
o In the Client tab, configure settings such as Cache XAUTH User
Name and Password on Client and Virtual Adapter Settings.
7. Save and Apply:
o Click OK to save the settings and apply the changes.

2. Global VPN Client (GVC)

Step-by-Step Procedure

1. Configure WAN GroupVPN:

o Follow the steps above to configure WAN GroupVPN.
2. Install GVC Software:
o Download and install the latest Global VPN Client (GVC) software on the
user's PC.
3. Create a New Connection:
o Launch GVC and click File > New Connection.
o Enter the WAN IP address or domain name of the SonicWall.
4. Enable the Connection:
o Click on the new connection and select Enable.
o Enter the preshared secret, username, and password when prompted.

3. SSL-VPN (NetExtender)

Step-by-Step Procedure

1. Enable SSL-VPN:
o Navigate to Network > SSL VPN > Server Settings.
o Enable the SSL VPN and configure the SSL VPN Port (default is 4433).
2. Configure SSL-VPN Client Settings:
o Go to Network > SSL VPN > Client Settings.
o Configure the Client Address Range and DNS Settings.
3. Create User Accounts:
o Navigate to Users > Local Users & Groups.
o Add users and assign them to the SSLVPN Services group.
4. Install NetExtender:
o Download and install the NetExtender client on the user's PC.
o Launch NetExtender and enter the server address, username, and
password.
4. L2TP VPN

Step-by-Step Procedure

1. Enable L2TP Server:

o Navigate to Network > L2TP Server.
o Enable the L2TP Server and configure the L2TP IP Address Range.
2. Create User Accounts:
o Navigate to Users > Local Users & Groups.
o Add users and assign them to the L2TP Services group.
3. Configure L2TP on Client Device:
o On the client device, configure a new VPN connection using the L2TP
protocol.
o Enter the server address, username, password, and shared secret.

Example Data

 WAN IP Address: 203.0.113.5

 Shared Secret: YourSharedSecret
 SSL VPN Port: 4433
 Client Address Range: 192.168.1.100 to 192.168.1.200
 L2TP IP Address Range: 192.168.2.100 to 192.168.2.200

Site to Site VPN and Route Based VPN configuration

Configuring Site-to-Site VPN and Route-Based VPN on a SonicWall firewall allows

secure communication between different networks over the internet.

Here’s a detailed guide for both configurations:

Site-to-Site VPN Configuration

Step-by-Step Procedure

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Create Address Objects:
o Navigate to Network > Address Objects.
o Create address objects for the local and remote networks.
3. Configure VPN Policies:
o Go to Network > IPSec VPN > Rules and Settings.
o Click Add to create a new VPN policy.
o In the General tab, configure the following:
  Policy Type: Site to Site
 Authentication Method: IKE using Preshared Secret
 Name: Enter a name for the VPN policy.
 IPSec Primary Gateway Name or Address: Enter the public
IP address of the remote SonicWall.
 Shared Secret: Enter a shared secret.
4. Configure Proposals:
o In the Proposals tab, configure the encryption and authentication
settings for Phase 1 and Phase 2.
5. Configure Network Settings:
o In the Network tab, configure the local and remote networks using the
address objects created earlier.
6. Advanced Settings:
o In the Advanced tab, configure any additional settings as needed.
7. Save and Apply:
o Click OK to save the VPN policy.
o Apply the changes to make them effective.

Route-Based VPN Configuration

Step-by-Step Procedure

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Create Tunnel Interface:
o Navigate to Network > IPSec VPN > Rules and Settings.
o Click Add to create a new VPN policy.
o In the General tab, configure the following:
 Policy Type: Tunnel Interface
 Authentication Method: IKE using Preshared Secret
 Name: Enter a name for the VPN policy.
 IPSec Primary Gateway Name or Address: Enter the public
IP address of the remote SonicWall.
 Shared Secret: Enter a shared secret.
3. Configure Proposals:
o In the Proposals tab, configure the encryption and authentication
settings for Phase 1 and Phase 2.
4. Create Route Policies:
o Navigate to Network > Routing.
o Click Add to create a new route policy.
o Configure the source, destination, and service settings.
o Set the interface to the previously created Tunnel Interface VPN.
5. Save and Apply:
o Click OK to save the route policy.
 o Apply the changes to make them effective.

Example Data

 Local Network: 192.168.1.0/24

 Remote Network: 192.168.2.0/24
 IPSec Primary Gateway: 203.0.113.5
 Shared Secret: YourSharedSecret

Configuring Wireless

Configuring wireless on a SonicWall firewall involves setting up the wireless

interface, creating wireless zones, and configuring SonicPoint access points. Here’s a
step-by-step guide to help you configure wireless on your SonicWall firewall:

Step-by-Step Procedure to Configure Wireless

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Assign Interface to WLAN Zone:
o Navigate to Network > Interfaces.
o Click on the Configure icon for the interface you want to assign to the
WLAN zone (e.g., X2).
o In the Edit Interface window, configure the following:
 Zone: Select WLAN.
 IP Address: Enter an IP address for the WLAN interface (e.g.,
172.16.31.1).
 Subnet Mask: Enter the subnet mask (e.g., 255.255.255.0).
 SonicPoint Limit: Select the maximum number of SonicPoints
allowed on this interface.
o Click OK to save the settings.
3. Configure the WLAN Zone:
o Go to Network > Zones.
o Click the Edit icon for the WLAN zone.
o In the General tab, configure the following:
 Uncheck Allow Interface Trust.
 Enable SonicWall Security Services as needed (e.g., Content
Filtering, Gateway Anti-Virus, IPS).
o In the Wireless tab, select Only allow traffic generated by a
SonicPoint.
o Click OK to save the settings.
4. Configure SonicPoint Profiles:
o Navigate to Device > Access Points > Settings.
o Click Add to create a new SonicPoint profile.
 o In the General tab, configure the following:
 Enable SonicPoint: Check this box.
 Name Prefix: Enter a prefix for the SonicPoints (e.g.,
SonicPoint).
 Country Code: Select your country.
o In the 802.11g and 802.11a tabs, configure the radio settings:
 Enable Radio: Check this box.
 SSID: Enter a recognizable SSID (e.g., SonicLAB).
 Authentication Type: Select WPA2-PSK.
 Passphrase: Enter a passphrase (e.g., YourPassphrase).
o Click OK to save the profile.
5. Connect SonicPoint to the Firewall:
o Physically connect the SonicPoint LAN port to the WLAN interface port
on the SonicWall firewall.
o The SonicPoint will automatically be provisioned with the settings from
the SonicPoint profile.
6. Test the Wireless Connection:
o Ensure that the SSID appears in the list of available wireless networks
on your client device.
o Connect to the SSID using the passphrase configured earlier.

Example Configuration

 WLAN Interface IP Address: 172.16.31.1

 Subnet Mask: 255.255.255.0
 SSID: SonicLAB
 Authentication Type: WPA2-PSK
 Passphrase: YourPassphrase

Connect via Console

To connect to your SonicWall firewall via the console port, follow these steps:

Step-by-Step Procedure

1. Gather Required Equipment:

o A SonicWall UTM appliance.
o The original SonicWall console cable (null modem cable).
o A computer with a serial port or a USB to DB9 adapter.
o Terminal emulation software (e.g., PuTTY, Tera Term, or SecureCRT).
2. Connect the Console Cable:
o Attach one end of the null modem cable to the console port on the
SonicWall appliance.
o Attach the other end of the cable to the serial port on your computer
(or use a USB to DB9 adapter if necessary).
3. Launch Terminal Emulation Software:
 o Open your terminal emulation software (e.g., PuTTY, Tera Term, or
SecureCRT).
o Configure the connection settings:
 Serial Line: COM1 (or the appropriate COM port for your setup).
 Speed (Baud rate): 115200
 Data Bits: 8
 Parity: None
 Stop Bits: 1
 Flow Control: None
4. Establish the Connection:
o Click Open or Connect in your terminal software.
o Press Enter to display the DEVICE NAME> prompt.
5. Log In:
o At the User: prompt, enter the admin username (default is admin).
o At the Password: prompt, enter the admin password (default is
password).
6. Configure the Firewall:
o Once logged in, you can use CLI commands to configure the firewall.
For example, to configure an interface, you might use commands like:
shell configure interface X0 ip address 192.168.1.1
255.255.255.0 exit

Example Configuration Commands

configure
interface X0
ip address 192.168.1.1 255.255.255.0
exit

Tips for Using Terminal Software

 Logging Output: To capture and save the console output, you can enable
logging in your terminal software. In PuTTY, go to Session > Logging and
select the desired options.
 Keep Alives: Enable keep-alives in your terminal software to prevent the
connection from timing out.

Resetting the SonicWall and Uploading firmware

Resetting your SonicWall firewall and uploading new firmware can help resolve
issues or update the device with new features. Here’s a step-by-step guide for both
processes:

Resetting the SonicWall to Factory Default Settings

1. Access the SonicWall Management Interface:

 o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Create a Backup:
o Navigate to Manage > Updates > Firmware & Backups.
o Click Create Backup and select Local Backup to save your current
settings.
3. Reset to Factory Default:
o In the Firmware & Backups section, click the drop-down arrow next
to the current firmware.
o Select Boot current firmware with Factory Default
Configuration.
o Confirm the action. The firewall will reboot and reset to factory default
settings[1].

Uploading New Firmware

1. Download the Firmware:

o Log in to your MySonicWall account.
o Download the latest firmware version for your SonicWall model.
2. Access the SonicWall Management Interface:
o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
3. Upload the Firmware:
o Navigate to Manage > Updates > Firmware & Backups.
o Click Upload Firmware and select the firmware file you downloaded.
o Click Upload.
4. Boot the New Firmware:
o Once the firmware is uploaded, it will appear in the Firmware &
Backups section.
o Click the Boot icon next to the new firmware version.
o Select Boot Uploaded Firmware with Current Configuration to
retain your settings, or Boot Uploaded Firmware with Factory
Default Configuration to start fresh.

Accessing Safe Mode (if needed)

If you encounter issues during the firmware upload or need to reset the device when
it’s not accessible via the GUI:

1. Enter Safe Mode:

o Power off the SonicWall.
o Use a paperclip to press and hold the reset button on the device.
o Power on the SonicWall while holding the reset button until the test
light starts blinking.
 2. Connect to Safe Mode:
o Connect a computer directly to the SonicWall’s X0 interface.
o Set the computer’s IP address to 192.168.168.10 and subnet mask to
255.255.255.0.
o Open a web browser and go to http://192.168.168.168.
3. Upload Firmware in Safe Mode:
o In the Safe Mode interface, click Upload New Firmware.
o Select the firmware file and upload it.
o Choose to boot the new firmware with current or factory default
settings.

Enabling SonicWall Security Services (Content Filter, IPS, GAV,

etc.)

Enabling SonicWall Security Services like Content Filtering, Intrusion Prevention

System (IPS), and Gateway Anti-Virus (GAV) is crucial for enhancing your network
security. Here’s a step-by-step guide to help you enable these services:

Step-by-Step Procedure to Enable Security Services

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Verify Licenses:
o Navigate to System > Status > Licenses.
o Ensure that the licenses for the security services (GAV, IPS, Content
Filtering) are active.
3. Enable Gateway Anti-Virus (GAV):
o Go to Policy > Security Services > Gateway Anti-Virus.
o Under GATEWAY ANTI-VIRUS GLOBAL SETTINGS, check the box to
Enable Gateway Anti-Virus.
o Configure inbound and outbound inspection for protocols like HTTP,
FTP, IMAP, SMTP, and POP3 as needed[1].
4. Enable Intrusion Prevention System (IPS):
o Navigate to Policy > Security Services > Intrusion Prevention.
o Under IPS GLOBAL SETTINGS, check the box to Enable IPS.
o Configure the detection and prevention settings for High, Medium, and
Low Priority Attacks[1].
5. Enable Anti-Spyware:
o Go to Policy > Security Services > Anti-Spyware.
o Under ANTI-SPYWARE GLOBAL SETTINGS, check the box to Enable
Anti-Spyware.
6. Enable Content Filtering Service (CFS):
o Navigate to Policy > Security Services > Content Filter.
 o Enable the Content Filtering Service and configure the settings
according to your requirements.
7. Apply Security Services to Zones:
o Go to Object > Match Objects > Zones.
o Edit the appropriate zone (e.g., LAN, WAN) by clicking the Configure
icon.
o Enable the checkboxes for Enable Gateway Anti-Virus Service,
Enable IPS, and Enable Anti-Spyware Service.
o Click OK to save the settings.

Example Configuration

 Gateway Anti-Virus: Enabled for HTTP, FTP, IMAP, SMTP, POP3

 IPS: Enabled with detection for High, Medium, and Low Priority Attacks
 Anti-Spyware: Enabled
 Content Filtering: Enabled with custom policies

Configuring user authentication

Enabling SonicWall Security Services like Content Filtering, Intrusion Prevention

System (IPS), and Gateway Anti-Virus (GAV) is crucial for enhancing your network
security. Here’s a step-by-step guide to help you enable these services:

Step-by-Step Procedure to Enable Security Services

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Verify Licenses:
o Navigate to System > Status > Licenses.
o Ensure that the licenses for the security services (GAV, IPS, Content
Filtering) are active.
3. Enable Gateway Anti-Virus (GAV):
o Go to Policy > Security Services > Gateway Anti-Virus.
o Under GATEWAY ANTI-VIRUS GLOBAL SETTINGS, check the box to
Enable Gateway Anti-Virus.
o Configure inbound and outbound inspection for protocols like HTTP,
FTP, IMAP, SMTP, and POP3 as needed.
4. Enable Intrusion Prevention System (IPS):
o Navigate to Policy > Security Services > Intrusion Prevention.
o Under IPS GLOBAL SETTINGS, check the box to Enable IPS.
o Configure the detection and prevention settings for High, Medium, and
Low Priority Attacks.
5. Enable Anti-Spyware:
o Go to Policy > Security Services > Anti-Spyware.
 o Under ANTI-SPYWARE GLOBAL SETTINGS, check the box to Enable
Anti-Spyware.
6. Enable Content Filtering Service (CFS):
o Navigate to Policy > Security Services > Content Filter.
o Enable the Content Filtering Service and configure the settings
according to your requirements.
7. Apply Security Services to Zones:
o Go to Object > Match Objects > Zones.
o Edit the appropriate zone (e.g., LAN, WAN) by clicking the Configure
icon.
o Enable the checkboxes for Enable Gateway Anti-Virus Service,
Enable IPS, and Enable Anti-Spyware Service.
o Click OK to save the settings.

Example Configuration

 Gateway Anti-Virus: Enabled for HTTP, FTP, IMAP, SMTP, POP3

 IPS: Enabled with detection for High, Medium, and Low Priority Attacks
 Anti-Spyware: Enabled
 Content Filtering: Enabled with custom policies

Configuring High Availability

Configuring High Availability (HA) on a SonicWall firewall ensures network

redundancy and reliability by using two firewalls in an Active/Standby or
Active/Active setup. Here’s a step-by-step guide to help you configure HA:

Step-by-Step Procedure to Configure High Availability

1. Access the SonicWall Management Interface:

o Open a web browser and enter the IP address of your SonicWall
firewall.
o Log in with your administrator credentials.
2. Verify Licenses:
o Navigate to System > Status > Licenses.
o Ensure that the HA license is active on both the primary and secondary
units.
3. Initial Setup:
o Connect the primary and secondary SonicWall appliances using a
dedicated HA link (e.g., X5 interface).
o Ensure both appliances are registered and associated with the same
MySonicWall account.
4. Configure HA on the Primary SonicWall:
o Go to Device > High Availability > Settings.
o Check Enable High Availability.
o Select Active/Standby or Active/Active mode.
 o Enter the serial number of the secondary SonicWall in the Backup
SonicWall Serial Number field.
o Check Enable Stateful Synchronization (if using Active/Standby).
o Check Enable Virtual MAC to simplify network routing during failover.
5. Configure HA Interfaces:
o Under HA Interfaces, select the interface used for HA Control and HA
Data (e.g., X5).
o Ensure the interfaces are connected directly with a Cat 5e cable or
better.
6. Advanced Settings:
o Navigate to Device > High Availability > Advanced.
o Configure the Heartbeat Interval, Failover Trigger Level, and
Probe IP Addresses as needed.
o Click Accept to save the settings.
7. Configure Monitoring IPs:
o Go to Device > High Availability > Monitoring.
o Assign unique management IP addresses for both the primary and
secondary units on the LAN interface (e.g., X0).
o Configure probe IP addresses to monitor network connectivity.
8. Synchronize Settings:
o Click Synchronize Settings to manually synchronize the settings
between the primary and secondary appliances.
o Ensure the secondary unit reboots and synchronizes with the primary
unit.

Example Configuration

 Primary SonicWall Serial Number: 1234567890

 Backup SonicWall Serial Number: 0987654321
 HA Control Interface: X5
 HA Data Interface: X5
 Heartbeat Interval: 1000 ms
 Failover Trigger Level: 5 missed heartbeats
 Probe IP Address: 8.8.8.8

Installing GMS/Analyzer

Installing SonicWall Global Management System (GMS) or Analyzer involves several

steps. Here’s a detailed guide to help you through the process:

Step-by-Step Procedure to Install GMS/Analyzer

1. Download the Software

1. Log in to MySonicWall:
o Go to mysonicwall.com.
 o Log in with your credentials.
2. Navigate to the Download Center:
o Click on Downloads in the left pane.
o Select Free Downloads.
3. Select the Software:
o Choose GMS/Analyzer – Windows from the Software Type drop-
down menu.
o Click on the link to download the latest version of the software[1].

2. Install the Software on Windows

1. Run the Installation File:

o Locate the downloaded file and run it as an administrator.
o The InstallAnywhere self-extractor will initialize.
2. Follow the Installation Wizard:
o Click Next on the greeting message.
o Accept the license agreement and click Next.
o Choose the installation folder and click Next.
o Configure the GMS settings, including the IP address and ports for GMS
management.
o Click Install and allow the installation to complete[1].
3. Complete the Installation:
o After installation, you may need to allow certain features through the
Windows firewall.
o Restart your system if prompted[1].

3. Configure GMS/Analyzer

1. Initial Setup:
o Open a web browser and enter the IP address of the GMS server.
o Log in with the default credentials.
2. Register GMS:
o Navigate to the System > Licenses section.
o Register your GMS instance using your MySonicWall account[2].
3. Add Devices:
o Go to Manage > Units.
o Click Add Unit and enter the details of the SonicWall devices you want
to manage.
4. Configure Reporting and Alerts:
o Set up syslog or flow-based reporting as needed.
o Configure email alerts and other notifications[2].

Example Configuration

 GMS Server IP Address: 192.168.1.10

 Management Port: 8443
 Admin Username: admin
 Admin Password: password