Need help installing a sonicwall 2040 with following network settings

Posted on 2006-10-21
Last Modified: 2010-04-09
I need help installing my sonicwall firewall 2040.  My network settings are as follows.
I have a main machine IP adress of
Main IP:
Subnet Mask:
Gateway: 205.252.89.

Then, I have a block of IP addresses assigned to us. through 125

The question is, how would I go about installing the firewall.  Sonic wall was not sure, but said that they think i would have to use Private and Public doing the following:

WAN Settings
Wan  Nat Enabled
wan subnet
wan gateway router address

Sonicwall LAN IP address
Lan subnet

Under One to One Nat
We have two machines, so we would have to assign two separate entries.

Private begin
Public  length 27

Second Entry
public begin length 1

Can anyone help?  

Question by:ondrejko1
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 4

Expert Comment

ID: 17780704
if you have enhanced firmware:
for the one to one nat you will need to create a inbound and outbound nat policy and a firewall access rule to allow this traffic.
page 9,10,11. you can create an address object for a server first with the ip address you are using then when configuring the nat policy and firewall access rule use the address object from the drop down list.
to configure your wan and lan interface see chapter 11 here

Author Comment

ID: 17790361
Thanks, however I am not a network engineer and none of this makes sense to me.  Was wondering if someone could assist by indicating what addresses go where?

Expert Comment

ID: 17793251
on the network settings page
use IP
wan subnet
wan gateway router address for the wan ip info, your 205.x.x.x address did you get that from your ISP?

Sonicwall LAN IP address
Lan subnet
use this for the lan ip address, The is the default address that ships with the sonicwall you can change it too a different address like 192.168.50.x or whatever. the PC'S on the lan need to use the same ip or obtain ip address automatically.

on the system status page > System Information are you using standard or enhanced firmware?
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users


Author Comment

ID: 17796690
i am using standard firmware

Author Comment

ID: 17796734
"205.x.x.x address did you get that from your ISP?"

That is my main machine IP.. yes, they gave me that address.  Does this make a difference?


Author Comment

ID: 17811558
I can download the enhanced firmware if that helps..

Expert Comment

ID: 17813513
Have you configured the lan and wan settings in the firewall? your above lan and wan addresses go in the network > settings page in the sonicwall.

Author Comment

ID: 17813594
yes, they have. I called sonic wall and they said i have to use 1 to 1 nat.  Remember, the servers right now have public IP's assigned to them.  So my question is now is i guess i have to change the server IP settings to private.  However, since we run a DNS server on the other side for public IP's, how does that work?

These are my settings currently.
Under network settings            IP      Subnet
WAN      NAT Enabled


one to one nat      Private Begin      Public Begin      Length      27      1


Accepted Solution

jasonpaine earned 500 total points
ID: 17815995
you can assign private IP's to the servers then your above setting will work, what type of servers are you using? with windows servers you use the IP of the domain controller 192.168.168.x as your internal dsn server and you use forwarders and root hints for extrenal dns

Author Comment

ID: 18003271
It is not possible with the above settings.  Please close question.

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question