Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 411
  • Last Modified:

Opening up a second interface on Sonicwall.

We've had a standard setup on our Sonicwall of X0 interface internal subnet and X1 interface outward facing to the internet. I would like to open up another outward interface, let's say X2, to pipe in wireless internet with a wireless router. So my question is, do I use the same outward facing IP address as X1? Or will that mess things up for our internal network? Do I need a different outward facing IP address for this?
0
new_to_networks
Asked:
new_to_networks
  • 8
  • 5
  • 3
2 Solutions
 
Blue Street TechLast KnightsCommented:
Hi new_to_networks,

I'm not sure what you are asking for here. If you just want to setup a Wireless Access Point so that you can provide wireless access to your users then you'd just configure a port like X2 and configure it for wireless access (Port Shielding, Interface, Zone, Access Rules)

No you don't need an additional Public IP address for this and no it will not mess up anything.

Let me know if you have any other questions!
0
 
new_to_networksAuthor Commented:
Oh, I didn't know you could do that. Do you have a recommended setup guide or anything that exclusively deals with configuring the interface to just do wireless ( I realize I can just go to the manual, just wondering you have any other suggestions. I'm very green in my SonicWall understanding.)
0
 
Blue Street TechLast KnightsCommented:
Sure no problem! What is your model, TZ 105, TZ 215, NSA 220, etc.)?
0
Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

 
new_to_networksAuthor Commented:
NSA 2400
0
 
masnrockCommented:
What type of environment is this? The best recommendation really depends on your exact goal... assuming this is a business environment, is the wireless network for guests or for employees? (The value of having a separate IP for that is debatable at best)

Now if this is something like a hotel environment, then I would have the corporate and guest networks use separate public IP addresses.
0
 
new_to_networksAuthor Commented:
This is for guests in an office environment. I'm going to plug in a wireless router into that interface. I want it to only be connected to the internet and not the intranet.
0
 
new_to_networksAuthor Commented:
I've requested that this question be deleted for the following reason:

No one is answering me.
0
 
Blue Street TechLast KnightsCommented:
You have to be patient...we all have demanding jobs too. If you change your mind...just re-post. Best of luck!
0
 
masnrockCommented:
You can define a new subnet on a different interface, then within the firewall rules, prevent that new subnet from communicating with the subnet already in place.
0
 
new_to_networksAuthor Commented:
Wouldn't I just configure it as a WAN interface?
0
 
masnrockCommented:
You do not need another WAN interface unless you are hooking up a second internet connection. You just need a second LAN defined .
0
 
new_to_networksAuthor Commented:
So this secondary LAN interface would share the same external outward facing IP as our primary LAN?
0
 
masnrockCommented:
Yes. If you want to have a different externally facing ip, just order an additional one. If the subnet mask is the same, then you can just use NAT rules.
0
 
new_to_networksAuthor Commented:
Ok, I have another problem. The Sonicwall itself is using an internal server for DNS.  I do not want this secondary LAN interface to use that DNS. That DNS is involved with a VPN tunnel to our datacenter. Can I have this secondary LAN interface use different DNS? It literally can have nothing to do with our intranet, it should be completely separate and see only the internet connection.
0
 
masnrockCommented:
You can have the DHCP server for the second LAN use other DNS servers. Just make sure to specify within that DHCP server..
0
 
new_to_networksAuthor Commented:
Got it working.
0

Featured Post

Ask an Anonymous Question!

Don't feel intimidated by what you don't know. Ask your question anonymously. It's easy! Learn more and upgrade.

  • 8
  • 5
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now