Link to home
Start Free TrialLog in
Avatar of Ravakl
Ravakl

asked on

How to configure SonicWall TZ210W to use the extra WAN IP range ?

I have SonicWall TZ210W Firewall (FW 5.8.0.3). This TZ210W is connected with ADSL2+ Draytek Router in bridge mode to ISP . I have ADSL2+ with static IP.  This IP is assigned to WAN port of TZ210W.
I have paid four extra WAN addresses. Two of this addresses I can use.
My question is:
I want to use this two extra IP’s to access my WEB server or another server inside my network .  Is it possible with TZ210W?  How can I configure SonicWall TZ210W ?
SOLUTION
Avatar of Syed Muhammad Usman
Syed Muhammad Usman
Flag of Bahrain image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
By the way if you want to access web server from global, you dont require extra Public ip (Unless speacial reasons), you can have one IP on your SNA WAN(X1) Interface and simply use Wizard to park web server (Like Exchange emails or OWA acess from outside-inside).
Avatar of Ravakl
Ravakl

ASKER

1) Thanks, I will try it.

2) I know it,  but the problem is when you have more than one servers on the same port, for example port 443 for OWA and for the SonicWall SSL VPN.
u r welcome
any luck???
Avatar of Ravakl

ASKER

I've contacted with Sonicwall support and they have the next solution:
--------------------------------------------------------------------------------
You need to create One to One NAT in the Sonicwall TZ210 to use the Extra IP's, please refer the provided KB article from the previous engineer i.e., KBID : 7484, to configure TZ210, example is given step by step :

Example : I want to access Remote desktop of Local Server(192.168.1.2) from outside Public IP(79.132.x.196)

Step 1 : Create 2 Address Objects :- Go to Network > Address objects > Add

First Address object :-
Name : Server1
Zone : LAN
Type : Host
IP : 192.168.1.2

Second Address object :-
Name : Server1 Public IP(79.132.x.196)
Zone : WAN
Type : Host
IP : 79.132.x.196

Step 2 : Create NAT policy :- go to Network > NAT Policies > Add

Original Source : Any
Translated Source : Original
Original Destination : Server1 Public IP(79.132.x.196) Translated Destination : Server1(192.168.1.2) Original Service : Terminal Services(3389 for RDP) Translated Service : Original.
Inbound Interface : Any or X1
Outbound Interface : Any

Step 3 : Create Firewall Access rule :- Go to Firewall > Access Rules > WAN to LAN rule > Add

From Zone: WAN
To Zone : LAN
Service : Terminal Services(3389)
Source : Any
Destination : Server1 Public IP(79.132.x.196)
--------------------------------------------------------------------------
Avatar of Ravakl

ASKER

What do you think about it?

Do you have working Scenario A?


in my case Senario A is working.
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Ravakl

ASKER

In my case I didnt wanted to change configuration of the first ADSL modem-router from bridge to NAT (Scenario 1)
One-to-one NAT than was exact what I was trying to find.