Solved

Sonicwall TZ100: what to change on default settings + qos on rdp?

Posted on 2014-02-05
2
736 Views
Last Modified: 2016-11-23
Hi,

I have 2 questions on my Sonicwall TZ100 (Dell now):

1.what best practise changes would you do to default settings? Have some rules, policies but didn't change much to deafault settings

2.Can you set priority on specific protocols, f.e. I would like to have RDP absolute priority over SMB traffic. Cannot put it into KB or MB but copying files should not interfere with RDP.

J.
0
Comment
Question by:janhoedt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 25

Accepted Solution

by:
Blue Street Tech earned 500 total points
ID: 39837343
Hi janhoedt,

To address your first question, it really depends on what you are wanting to do. The defaults are pretty much Best Practice already. However, there are many hardening techniques you can apply as a Best Practice as well but they are very lengthy.

A few of the major ones would be as follows:
Firewall Settings > Advanced:
Check both Enable Stealth Mode & Randomize IP ID.
Under IP and UDP Checksum Enforcement check both Enable IP header checksum enforcement &  Enable UDP checksum enforcement.

Purchase CGSS and configure each module.

To answer your second question, yes you can prioritize Access Rules and NAT Policies. Click on the Priority to set higher or lower.

Let me know if you have any other questions!
0
 
LVL 25

Expert Comment

by:Blue Street Tech
ID: 39845760
Glad I cloud help. .. Thanks for the points!
0

Featured Post

Limited time offer using promo code EXPERTS25

Designed with a wealth of functionality and convenience, ATEN's new Thunderbolt™ 2 Sharing Switch takes your Thunderbolt setup to the next level. Now through August 31, 2017, Experts Exchange members get 25% off the US7220 on the ATEN USA eShop using promo code EXPERTS25.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Make the most of your online learning experience.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question