Solved

Sonicwall tz100, 2 different wan ip addresses

Posted on 2013-05-23
9
878 Views
Last Modified: 2013-05-29
Hi,

My Internetprovider gives my Internet an 212.x-range whereas 10.x for my setopbox (digital tv).

Now, the providers modem is connected toa switch (my switch), on the switch my sonicwall and the settopbox. On the spnicwall my lan. Works fine.

How do I remove the switch and put everything on the Sonicwall?

Internet is no problem but the settipbox should receive a 10.x address. Tried to put an interface/port of the sonicwall in wan-modus but that doesn t work (get an 169-address). What else should/can I do?

Please advise.
J
0
Comment
Question by:janhoedt
9 Comments
 
LVL 17

Expert Comment

by:TimotiSt
Comment Utility
The set-top-box should be layer2 bridged to the wan, otherwise it'll likely have multicast problems.
I think the sonicwall can have "portshield groups", which is pretty much a bridge group. Not sure if it's supported for the wan interface, or specifically on the tz100.

How many LAN interfaces do you have on the modem of your provider? Most IPTV providers use Cisco modems, that have 4 ports, in which case you wouldn't really need the switch.

Tamas
0
 

Author Comment

by:janhoedt
Comment Utility
Thanks for your answer, really helpfull!

Goal is not to have only switch removed, but really have the settopbox on the Sonciwall. This way I can use DLNA of the settopbox and reach DLNA hosts on my private network.
That's actually the goal.

You're absolutely right, it should indeed act as a layer2/switch.
I see Portshields in the firewall, not sure what I should do though.
Screenshot:

sonicwall
Thanks for your input TimotiSt!
0
 
LVL 12

Expert Comment

by:S00007359
Comment Utility
do u have a single wan  connection, i am curious how u get two ip's, are they fised or dhcp ip?
0
 
LVL 23

Expert Comment

by:Erik Bjers
Comment Utility
You can put your set top box inside your LAN on the LAN interface (along with your other devices) and then use the public server wizard to NAT the settopbox to the proper public IP and forward all traffic to it.  The end result should work.

eb
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:janhoedt
Comment Utility
Thanks, but I cannot put the settopbox in the same lan (switch is on the attic of the building).
In other words:


overview

So how should I configure it then? Btw, NAT to a public IP ...?

---
Note:  if I check the wizard, I get this:

Ports Assignment


Select the initial ports assigment for SonicWALL.


 Use Current - Use this option to keep your current settings.


 Basic WAN/LAN Switch
 WAN/OPT/LAN Switch
 WAN/LAN/LAN2 Switch

Not sure what I should choose, howto configure.
0
 

Author Comment

by:janhoedt
Comment Utility
To S00007359: it's dhcp, not sure how they assign it. Please see above my network drawing for clarification.
0
 

Author Comment

by:janhoedt
Comment Utility
Correction, I could set the settopbox to a switch. However, howto configure then? Ip is assigned based upon MAC-address of settopbox (10.x), ip address of Internet access is fully different (81.x) + I don't know the ports to open (it should have full access).

Please advise.
0
 
LVL 23

Accepted Solution

by:
Erik Bjers earned 500 total points
Comment Utility
On the interface settings you can spoof the MAC address to be the same as your settop box.

eb
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now