Sonicwall TZ170 and setting up a LAN while leaving a webserver with its own public IP

Posted on 2006-05-30
Medium Priority
Last Modified: 2008-02-01
I want to setup a TZ170 so that one public IP address points to our VPN LAN and so that the other points to a webserver on the same LAN which will need a different public IP address.  Has anyone done anything resembling my crude diagram below?

                                          webserver with public IP #1
WAN ----------Sonicwall TZ170 with public IP #2
                                           LAN PCs
Question by:dance1bb
  • 2
  • 2

Accepted Solution

1_UP earned 252 total points
ID: 16793306

You will need to use the OPT ZONE(on the back of the TZ-170, sometimes labeled DMZ) for the webservers LAN, configure your routing tables so that each of the Public IP's know where to terminate(which IP range) and you should be good to go...the two LAN's will have distinct IP ranges so if information is to be shared internally from the webserver to the VPN LAN another static route will need to be written to bridge the two subnets...cheers.

Hope this helps,


Expert Comment

ID: 16793505
With your TZ170 standard you only have one public IP address.

If you must use two public IP addresses you will need to upgrade the firware on the TZ170 to the enhanced version and use the alternate port as a second WAN access to the internet connecting both ports to a switch then to your modem.

Either way:

Configure the VPN through the VPN Page and setup an acess rule in the Firewall page to forward all Http: (Port 80) traffic to the local IP address of the server.

Expert Comment

ID: 16798161
Hi again...

artffjr is correct..you will need the enhanced version of the firmware, which I neglected to mention...


Author Comment

ID: 16880950
Where do I find the enhanced version of the software?  Only the standard version is available from mysonicwall.com for the TZ170.

Assisted Solution

artffjr earned 248 total points
ID: 16881408
Part number is 01-SSC-5568
Retail is $500.00

Here is a source that is less than retail:


As a dealer I can not purchase this for less than above.

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question