?
Solved

sonicwall tz190

Posted on 2009-04-28
4
Medium Priority
?
893 Views
Last Modified: 2012-05-06
is there a way to setup multiple gateway subnets behind a tz190 sonicwall router.

let me explain.
i want to have two subnets   a 192.168.0.x subnet and a 10.0.30.x subnet behind the sonicwall.
i want to sonicwall to be the gateway for both but do not want the 192.168.0.x network to see the 10.0.30.x network
0
Comment
Question by:webiis
  • 2
  • 2
4 Comments
 
LVL 1

Expert Comment

by:Jaime Campos
ID: 24274724
You can setup a DMZ Zone and assign 10.0.30.X network on it. and keep 192.168.0.X on LAN interface.
0
 

Author Comment

by:webiis
ID: 24274778
will i still be able to setup nats to dmz zone? what about the default gateways do you normally assign a port to the dmz zone?
0
 
LVL 1

Accepted Solution

by:
Jaime Campos earned 1500 total points
ID: 24274990
You want to configure the DMZ in NAT mode

Solution: In SonicOS Standard, SonicOS Enhanced and version 6.x Firmware, it is possible to configure the DMZ to operate in NAT Mode. If you choose to enable NAT Mode on the DMZ port of the SonicWALL, you must use a different subnet than the one specified for the LAN.

To Configure DMZ in NAT Mode in SonicOS Enhanced firmware:

Click Network > Interfaces.
Click the Notepad icon in the Configure column for the Unassigned Interface you want to configure. The Edit Interface window is displayed.
Select the DMZ in the dropdown next to Zone.
Choose Static in the IP Assignment dropdown menu.
Type the Private IP address, which is in a different subnet than that of the LAN. The DMZ IP address should be the gateway for the computers connected to the DMZ.
If you want to enable remote management of the SonicWALL from this interface, select the supported management protocol(s): HTTP or HTTPS (either or both). Ping and/or SNMP are optional protocols that can also be enabled.
Enter any optional comment text in the Comment field. This text is displayed in the Comment column of the Interface table.
Click OK to save changes.
To Configure DMZ in NAT Mode in SonicOS Standard Firmware.

Click Network > Settings.
Click the Notepad icon in the Configure column for the OPT/DMZ interface. The Edit Interface window is displayed.
Select OPT (or DMZ) in NAT Mode. In the alternative, you can select an unassigned interface and configure it (depending on your unit).
Type the Private IP address, which is in a different subnet than that of the LAN. The OPT/DMZ IP address should be the gateway for the computers connected to the DMZ.
Click OK to save the changes.
Please note the following Caveats:

The NAT engine in SonicOS Standard is not capable of performing inbound port address translation (mapping an external port to a different internal port) for any unique 1-2-1 NAT configured on the SonicWALL; if you require this capability, it will be necessary to upgrade to SonicOS Enhanced.
The NAT engine in SonicOS Standard is not capable of performing many-to-many NAT (mapping a specified number of internal addresses to a specified number of external addresses); if you require this capability, it will be necessary to upgrade to SonicOS Enhanced.
The NAT engine in SonicOS Standard is not capable of performing NAT across VPN tunnels; if you require this capability, it will be necessary to upgrade to SonicOS Enhanced.
To Configure DMZ in NAT Mode in 6.x Standard Firmware:

Click Advanced > DMZ Addresses.
Select DMZ in NAT Mode.
Type the Private IP address, which is in a different subnet than that of the LAN. The DMZ address should be the gateway for the computers connected to the DMZ.
Click Update to save changes.
Note: The Private IP address assigned to the DMZ/OPT is a non-pingable IP in the Standard Firmware.
0
 

Author Comment

by:webiis
ID: 24355790
can i do a VPN to this other znoe? example behind the sonic wall i waill have a 192.168.0.x subnet and a 192.168.1.x subnet. I need to be able to setup a vpn tunnel to the 192.168.1.x subnet. the 192.168.0.x subnet is already hooked up to the lan port and do not want to interrupt that subnet.
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Make the most of your online learning experience.
How to fix a SonicWall Gateway Anti-Virus firewall blocking automatic updates to apps like Windows, Adobe, Symantec, etc.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question