ondrejko1
asked on
Need help installing a sonicwall 2040 with following network settings
I need help installing my sonicwall firewall 2040. My network settings are as follows.
I have a main machine IP adress of
Main IP: 205.252.89.211
Subnet Mask: 255.255.255.0
Gateway: 205.252.89.
Then, I have a block of IP addresses assigned to us.
206.161.205.97 through 125
The question is, how would I go about installing the firewall. Sonic wall was not sure, but said that they think i would have to use Private and Public doing the following:
WAN Settings
Wan Nat Enabled
IP 205.252.89.211
wan subnet 255.255.255.0
wan gateway router address 205.252.89.1
Sonicwall LAN IP address
192.168.168.168
Lan subnet 255.255.255.0
Under One to One Nat
We have two machines, so we would have to assign two separate entries.
Private begin 192.168.168.10
Public 206.161.205.97 length 27
Second Entry
192.168.168.38
public begin 206.161.205.125 length 1
Can anyone help?
Thx!
I have a main machine IP adress of
Main IP: 205.252.89.211
Subnet Mask: 255.255.255.0
Gateway: 205.252.89.
Then, I have a block of IP addresses assigned to us.
206.161.205.97 through 125
The question is, how would I go about installing the firewall. Sonic wall was not sure, but said that they think i would have to use Private and Public doing the following:
WAN Settings
Wan Nat Enabled
IP 205.252.89.211
wan subnet 255.255.255.0
wan gateway router address 205.252.89.1
Sonicwall LAN IP address
192.168.168.168
Lan subnet 255.255.255.0
Under One to One Nat
We have two machines, so we would have to assign two separate entries.
Private begin 192.168.168.10
Public 206.161.205.97 length 27
Second Entry
192.168.168.38
public begin 206.161.205.125 length 1
Can anyone help?
Thx!
ASKER
Thanks, however I am not a network engineer and none of this makes sense to me. Was wondering if someone could assist by indicating what addresses go where?
on the network settings page
use IP 205.252.89.211
wan subnet 255.255.255.0
wan gateway router address 205.252.89.1 for the wan ip info, your 205.x.x.x address did you get that from your ISP?
Sonicwall LAN IP address
192.168.168.168
Lan subnet 255.255.255.0
use this for the lan ip address, The 192.168.168.168 is the default address that ships with the sonicwall you can change it too a different address like 192.168.50.x or whatever. the PC'S on the lan need to use the same ip or obtain ip address automatically.
on the system status page > System Information are you using standard or enhanced firmware?
use IP 205.252.89.211
wan subnet 255.255.255.0
wan gateway router address 205.252.89.1 for the wan ip info, your 205.x.x.x address did you get that from your ISP?
Sonicwall LAN IP address
192.168.168.168
Lan subnet 255.255.255.0
use this for the lan ip address, The 192.168.168.168 is the default address that ships with the sonicwall you can change it too a different address like 192.168.50.x or whatever. the PC'S on the lan need to use the same ip or obtain ip address automatically.
on the system status page > System Information are you using standard or enhanced firmware?
ASKER
i am using standard firmware
ASKER
"205.x.x.x address did you get that from your ISP?"
That is my main machine IP.. yes, they gave me that address. Does this make a difference?
That is my main machine IP.. yes, they gave me that address. Does this make a difference?
ASKER
I can download the enhanced firmware if that helps..
Have you configured the lan and wan settings in the firewall? your above lan and wan addresses go in the network > settings page in the sonicwall.
ASKER
yes, they have. I called sonic wall and they said i have to use 1 to 1 nat. Remember, the servers right now have public IP's assigned to them. So my question is now is i guess i have to change the server IP settings to private. However, since we run a DNS server on the other side for public IP's, how does that work?
These are my settings currently.
Under network settings IP Subnet
WAN NAT Enabled 205.252.89.211 255.255.255.0
LAN 192.168.168.168 255.255.255.0
DNS 205.177.10.10
DNS2 199.0.216.222
one to one nat Private Begin Public Begin Length
192.168.168.10 206.161.205.97 27
192.168.168.38 206.161.205.125 1
These are my settings currently.
Under network settings IP Subnet
WAN NAT Enabled 205.252.89.211 255.255.255.0
LAN 192.168.168.168 255.255.255.0
DNS 205.177.10.10
DNS2 199.0.216.222
one to one nat Private Begin Public Begin Length
192.168.168.10 206.161.205.97 27
192.168.168.38 206.161.205.125 1
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
It is not possible with the above settings. Please close question.
for the one to one nat you will need to create a inbound and outbound nat policy and a firewall access rule to allow this traffic.
http://www.sonicwall.com/support/pdfs/SOS2e_Enhanced_NAT_Policies_How_To.pdf
page 9,10,11. you can create an address object for a server first with the ip address you are using then when configuring the nat policy and firewall access rule use the address object from the drop down list.
to configure your wan and lan interface see chapter 11 here
http://www.sonicwall.com/support/pdfs/SonicOS_Enhanced_3.1_Administrators_Guide.pdf