Solved

Route Policy for Sonicwall Pro 4060

Posted on 2013-10-28
5
395 Views
Last Modified: 2013-10-28
For route #1 in the attached file, does it mean any source coming through interface X0, it source IP will be translated to "WAN Primary IP" and then route to outgoing interface X1 ?

Since X0 is our internal LAN address, will that mean all source IP of the LAN traffic will be translated to "WAN Primary IP" and redirect to X1 interface ?  However, X1 interface doesn't connect to anything ?

Any idea ?

Tks
Route-Policy.png
0
Comment
Question by:AXISHK
  • 3
  • 2
5 Comments
 
LVL 25

Expert Comment

by:Diverse IT
ID: 39605382
Hi AXISHK,

Yes, you are correct and X1 should be your default WAN. These are default NAT Policies for the default setup where X1 is your default WAN. Have you made the X2 your primary now? If communication is flowing this shouldn't be of concern, since there are about ~40 NAT policies above it...click All to view all NAT policies.

Let me know if you have any other questions.
0
 

Author Comment

by:AXISHK
ID: 39605765
Yes, X2 is the default WAN and X0 is the LAN. The firewall had been setup few year ago and I'm now follow up the configuration.

So, the orginal policy aims to change the source LAN IP to the WAN IP before going out to internet, correct ? If yes, I can remove it from the policy.

The lowest priority number take the lowest Precedence, correct ?

Tks
0
 
LVL 25

Accepted Solution

by:
Diverse IT earned 500 total points
ID: 39605784
If everything is function OK...I'd leave it. The fact that X2 is your Primary WAN is odd...so who knows what other weird configurations are present.

The lowest priority (1) takes the highest precedence.

If you have the network & firewall well documented...the best way to clean-up the firewall is factory default then start over from scratch.
0
 

Author Closing Comment

by:AXISHK
ID: 39607627
Tks
0
 
LVL 25

Expert Comment

by:Diverse IT
ID: 39607647
No problem!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question