Solved

Moving from DSL to T1 using Sonicwall TZ170 Enhances OS

Posted on 2006-11-06
11
1,038 Views
Last Modified: 2013-12-14
Im getting my company a T1 internet connection as opposed to our current dsl.
We currently have only one static ip address which we use for OWA 2003 AND EMAIL.
What do I need to do on the sonicwall firewall to ensure user can get online ?
do I need a crossover cable to connect the ISP router etherent port to the sonicwall wan port ?
do I need to tell the isp tech not to nat since my sonicwall will be doing that ?
do I need to tell him to put the router into transparent mode ?
Ive read that you usally get about 5 ips with a T1 one for router, one for soncwall wan port, 3 for whatever ?
If thats so which IP would I reference when accessisng my OWA, the router IP or Sonicwal IP ?
Any advice would be helpful !!!
0
Comment
Question by:derek4017
11 Comments
 
LVL 1

Expert Comment

by:BJHarris
ID: 17897580
1) Ensure that NAT is enabled for the trust side of the firewall.
2) Set up port forwarding in the firewall for the exchange server.  You will want it to be able to accept incoming smtp connections.
3) You should not need a crossover cable.  But it never hurts to have one handy.
4) If you're going to get a block of 8 ips you can set whatever you desire to use them.  Only 5 of them will be usable ( 1 for broadcast, 1 for network, 1 for wan side of router)
0
 
LVL 1

Author Comment

by:derek4017
ID: 18030526
ISP CUTSHEET

WAN IP ADDRESS INFORMATION

# OF IP ADDRESSES:   N/A
RANGE:                       66.83.170.124 - 66.83.170.127 DLCI 3232

WAN IP addresses are used for NuVox equipment only. These should not be for customer static IP address.

Equipment Information

CISCO CISCO 1720 W/ WIC1CSU/DSU 0 1 1720ROUTER


 

 

0
 
LVL 1

Author Comment

by:derek4017
ID: 18030801
By the looks of it  I think I need more ip adresses, what do you think
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 18035509
I think you need more information from the ISP
This IP range listed probably has a /30 mask of 255.255.255.252 and would be for the T1 WAN link only for their own equipment.
You would probably need another /30 address for your T1 WAN interface and another /29 block of IP's for your LAN, unless they request that you use "ip unnumbered" on the WAN and just get a block of IP's for your LAN for static assignment..

0
 
LVL 15

Expert Comment

by:riteheer
ID: 18061387
Why would you need more ip addresses?  Most people don't need all the additional ip addresses.  You need one for the network, and if you want to isolate parts of your network you can use a second or third one, like if you want to run an ftp server seperate from your regular network.  
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 1

Author Comment

by:derek4017
ID: 18069364
I  think your right riteheer, I dont need but one public ip address, which will hit the sonicwall firewall, and from
there the firewall will port forward any OWA or smtp traffic to the destination I choose internally.
That sound right ?
I just didnt understand the ips cutsheet with number of ip address n\a.
only for nuvox equipment.
0
 
LVL 15

Expert Comment

by:riteheer
ID: 18070486
Yup, that sounds about right to me. I did the same setup a while back and used a second address from the range the isp gave me to isolate an ftp server. Works great, I think after you use the tz170 for a while you will really like it. I have several of them around the area here.
Good luck and let us know if you need any more help.
Jappo
0
 
LVL 1

Author Comment

by:derek4017
ID: 18070767
Okay well while I was at lunch the Nuvox guy
came and installed the T1 router although the scheduled date for cut over was this thrusday.
Guy told my boss he was just here to install it and make sure it could connect okay..
Next guy will be here thursday to finish I guess and also do our new point to point t1.. between our locations.
The router is a cisco 1720 one wic one ethernet port. Told boss that I could not have username and password. dooh..
I plugged my laptop into ethernet port and of course dhcp is running, that has to change..
I went to www.whatismyip.com and got 66.83.170.126.
should I tell the guy thursday that I need the router in bridge mode ??
0
 
LVL 1

Author Comment

by:derek4017
ID: 18077949
Someone posted this in a sonicwall forum.
Does this sound right riteheer ?

You would typically get a block of IP addresses with the T1. Assign the lowest address to the routers Ethernet port and the next address to the SonicWALL's WAN port. Then, you can do One-to-One NAT on the remaining addresses to pass them to individual servers that need to be accessible from the outside world.

Good luck!
0
 
LVL 1

Author Comment

by:derek4017
ID: 18079716
I think I should use Ip unnumbered instead of bridging.
0
 
LVL 15

Accepted Solution

by:
riteheer earned 500 total points
ID: 18085498
You don't need to use it in bridge mode, or at least I didn't.... if you tell your isp what you are doing, they are usually pretty good about giving you the setup that works. You can bridge, but no need to change it, one to one nat on the sonic wall is the way I usually set it up...
Sorry about the delayed response, been a couple of long days, haven't been near my system.  
Jappo
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Honest bandwidth testing 14 96
Wifi speeds 83 119
Can I use mobile broadband with my PC. What is required. 13 95
Model ES-601WS 5 112
    Over the past few years, small business and home owners have become so dependent on internet that a need for redundancy has arisen.    What happens when your small business or home / home office loses its internet connection?  The results c…
Cable Modem Provisioning from DPoE compliant server  This Article is to support CMTS administrators to provide an overview of DOCSIS compliance configuration file, and to provision a cable modem located at customer place from a Back office serve…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now