?
Solved

Sonicwall TZ 215 Config

Posted on 2014-07-25
6
Medium Priority
?
355 Views
Last Modified: 2014-08-08
X0- LAN1 Data Switch (192.168.1.0 network)
X1- WAN1 (FIOS)
X2- WAN2 (T-1)
X3- LAN2 VoIP switch (192.168.2.0 network)
X4 and X5 Portshield to X0

Pretty much I want all traffic for VoIP switch (X3) to use ONLY T-1 WAN (X2).  All traffic  from data switch (X0) can use ONLY FIOS (X1).  I also have failover setup.  Just want to make sure my setup is correct.

Custom Routing Policies 1:
Source: Address Object (VoIP Traffic- 192.168.2.0)
Destination: Any
Service: VOIP
Gateway: X2 Default Gateway
Interface: X2
Metric: 1
Priority: 8

Custom Routing Policies 2:
Source: LAN Primary Subnet
Destination: Any
Service: Any
Gateway: X1 Default Gateway
Interface: X1
Metric: 1
Priority: 11

Would also like to implement QOS for VOIP.  I had some phone call quality issues a couple nights ago, but after adding custom routing policy 2 things improved.
0
Comment
Question by:Pedro Guerrero
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 30

Expert Comment

by:masnrock
ID: 40221286
I would have done NAT policies. That way, it routes the traffic just the way you want it, and also does the translations properly.

Since you have one whole interface for VOIP and nothing else, you really will not need to do QoS. Is your VOIP system hosted or in house?
0
 

Author Comment

by:Pedro Guerrero
ID: 40221411
VoIP system is hosted through ringcentral.  After opening their required UDP ports phone quality has been great.

Can you explain exactly how NAT policies would work better than what I have?
0
 
LVL 30

Accepted Solution

by:
masnrock earned 2000 total points
ID: 40221429
Having reviewed again what you did, you might have actually basically accomplished the exact same thing. So no point in going and changing things around. Have you checked the firewall rules to make sure that the two LANs cannot communicate with one another? Only other thing I can think of to review is whether the failover is working the way you want it to.

BTW - If you ever start looking at an in house solution (I remember your mentioning 35 voip phones in house), I'd recommend 3CX, which has a bit of an upfront learning curve, but isn't overly difficult to get the features you need going. I can always recommend some vendors if need be. I've been in the process of testing it for rolling out in my office and to a few clients in need of replacement phone systems.
0
Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

 

Author Comment

by:Pedro Guerrero
ID: 40224048
The two LANs do communicate; i will setup that rule today. I tested failover and works just fine.

My scan to email stopped working after I installed sonicwall.  Getting a SMTP Gateway error.  Any idea?  Could it be router blocking access?
0
 
LVL 30

Expert Comment

by:masnrock
ID: 40225910
Could be many different reasons. Is the email being sent to a relay outside of the network, or using an in house mail server?
0
 

Author Comment

by:Pedro Guerrero
ID: 40225956
relay outside of network.  was doing some troubleshooting and it worked using ip address of mail server.  Looks like it may be a DNS issue?  Everything DNS related on computers have been working just fine though.
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question