Solved

Setup a DMZ Zone for a Q-SEE CCTV in a SONICWALL to give access to a remote laptop that could be in any domain

Posted on 2014-12-16
7
379 Views
Last Modified: 2014-12-19
Currently I have a Q-SEE CCTV system that I have given a static ip address 192.168.1.x and I have a laptop that needs access to this CCTV system from anywhere as it moves from State to State within different networks.

I have a fairly new SONICWALL NSA 250M and believe the best thing to do is to set up a DMZ. I could be wrong...but please I am open for suggestions.

How do I go about achieving this?

Thanks.
0
Comment
Question by:CarloVasquez
  • 4
  • 3
7 Comments
 
LVL 11

Expert Comment

by:rharland2009
ID: 40503412
You could certainly put the CCTV system in the DMZ if you wanted to - this would also officially segregate it from your LAN and would require some rules to allow connection from inside your network.
If the CCTV system has authentication, then perhaps the easiest way to accomplish this would be use NAT/PAT to map a public IP address to the private IP of the CCTV system, and have the traveling laptop access the CCTV system via the public IP.
Even if you put the CCTV in the DMZ, you'd still need to do some amount of port forwarding/NAT translation to make it accessible from the external Internet.
If your laptop user connects to your network via VPN, then you could leave the CCTV system where it is.
0
 

Author Comment

by:CarloVasquez
ID: 40503567
I was thinking about the VPN too...never done a NAT/PAT configuration.
0
 
LVL 11

Expert Comment

by:rharland2009
ID: 40503570
Re: NAT/PAT - not too bad on a Sonicwall. The wizard's actually really good and will do most of the heavy lifting for you.
However, if you go the VPN route, you won't have to do anything - as long as the laptop user is okay with getting on the VPN before they can view the cameras.
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 

Author Comment

by:CarloVasquez
ID: 40504804
I have a Sonicwall Firewall, so if I wanted to set this up correctly using a VPN, I would have to do it using a VPN Tunnel and not  a Site to Site configuration correct?
0
 
LVL 11

Accepted Solution

by:
rharland2009 earned 500 total points
ID: 40504942
That's correct - or you could simply have the user leverage the Sonicwall VPN client on their laptop. Very easy.
0
 

Author Comment

by:CarloVasquez
ID: 40508021
I am trying to setup the Sonicwall as a VPN and having issues doing it thru a POLICY TYPE Tunnel.
Can you help with this as well? Thanks.
0
 

Author Closing Comment

by:CarloVasquez
ID: 40509833
Thanks that be all. I called Dell for my SonicWall, they were able to help me setting up the VPN. :)
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SQL Server Communications Audit 5 91
cisco switch POE watt limitation 5 76
Issue with seeing default gateway on ASA 5506 firewall 4 47
CISCO Smartnet agreement 5 34
This article will step through configuring a SonicWALL appliance to utilize an internal DHCP server for Global VPN Client (GVC) hosts.  There are times when using an external (external to the SonicWALL) DHCP server, such as Windows Servers, isn’t pr…
Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question