Solved

Sonicwall TZ 215 Config

Posted on 2014-07-25
6
352 Views
Last Modified: 2014-08-08
X0- LAN1 Data Switch (192.168.1.0 network)
X1- WAN1 (FIOS)
X2- WAN2 (T-1)
X3- LAN2 VoIP switch (192.168.2.0 network)
X4 and X5 Portshield to X0

Pretty much I want all traffic for VoIP switch (X3) to use ONLY T-1 WAN (X2).  All traffic  from data switch (X0) can use ONLY FIOS (X1).  I also have failover setup.  Just want to make sure my setup is correct.

Custom Routing Policies 1:
Source: Address Object (VoIP Traffic- 192.168.2.0)
Destination: Any
Service: VOIP
Gateway: X2 Default Gateway
Interface: X2
Metric: 1
Priority: 8

Custom Routing Policies 2:
Source: LAN Primary Subnet
Destination: Any
Service: Any
Gateway: X1 Default Gateway
Interface: X1
Metric: 1
Priority: 11

Would also like to implement QOS for VOIP.  I had some phone call quality issues a couple nights ago, but after adding custom routing policy 2 things improved.
0
Comment
Question by:Pedro Guerrero
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 27

Expert Comment

by:masnrock
ID: 40221286
I would have done NAT policies. That way, it routes the traffic just the way you want it, and also does the translations properly.

Since you have one whole interface for VOIP and nothing else, you really will not need to do QoS. Is your VOIP system hosted or in house?
0
 

Author Comment

by:Pedro Guerrero
ID: 40221411
VoIP system is hosted through ringcentral.  After opening their required UDP ports phone quality has been great.

Can you explain exactly how NAT policies would work better than what I have?
0
 
LVL 27

Accepted Solution

by:
masnrock earned 500 total points
ID: 40221429
Having reviewed again what you did, you might have actually basically accomplished the exact same thing. So no point in going and changing things around. Have you checked the firewall rules to make sure that the two LANs cannot communicate with one another? Only other thing I can think of to review is whether the failover is working the way you want it to.

BTW - If you ever start looking at an in house solution (I remember your mentioning 35 voip phones in house), I'd recommend 3CX, which has a bit of an upfront learning curve, but isn't overly difficult to get the features you need going. I can always recommend some vendors if need be. I've been in the process of testing it for rolling out in my office and to a few clients in need of replacement phone systems.
0
Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

 

Author Comment

by:Pedro Guerrero
ID: 40224048
The two LANs do communicate; i will setup that rule today. I tested failover and works just fine.

My scan to email stopped working after I installed sonicwall.  Getting a SMTP Gateway error.  Any idea?  Could it be router blocking access?
0
 
LVL 27

Expert Comment

by:masnrock
ID: 40225910
Could be many different reasons. Is the email being sent to a relay outside of the network, or using an in house mail server?
0
 

Author Comment

by:Pedro Guerrero
ID: 40225956
relay outside of network.  was doing some troubleshooting and it worked using ip address of mail server.  Looks like it may be a DNS issue?  Everything DNS related on computers have been working just fine though.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
VLAN CONFIGURATION 2 63
Setting up a trunk port on a Cisco switch? 20 66
ESXi vmnic Stand By Status 3 60
Citrix App 7 34
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question