Webcc
asked on
Two Sonicwalls in Series
Our Sonicwall NSA 3600 is managed by a third party thus, we don't have control to make the changes necessary at the times we want to make the changes.
A little overview of network:
Sonicwall -
X0 = LAN
X1 = WAN (Fiber circuit)
X2 = WAN (Cable circuit)
X3 = VLAN20
X4 = VLAN30
VPN
-Does it make sense to place another Sonicwall in back of the 3600 and plug in the LAN and the two VLAN's so that we can manage all the LAN traffic ourselves?
-Another scenario would be to split the WAN connections between the two. However, that may get messy with because that would require two VPN tunnels because ultimately every device has to access resources at another location.
-Last would a layer 3 switch provide enough routing capabilities to accomplish the goal of being able to manage most of the traffic instead of being hamstrung most of the time waiting for action.
Looking for a little enlightenment!
Thanks.
A little overview of network:
Sonicwall -
X0 = LAN
X1 = WAN (Fiber circuit)
X2 = WAN (Cable circuit)
X3 = VLAN20
X4 = VLAN30
VPN
-Does it make sense to place another Sonicwall in back of the 3600 and plug in the LAN and the two VLAN's so that we can manage all the LAN traffic ourselves?
-Another scenario would be to split the WAN connections between the two. However, that may get messy with because that would require two VPN tunnels because ultimately every device has to access resources at another location.
-Last would a layer 3 switch provide enough routing capabilities to accomplish the goal of being able to manage most of the traffic instead of being hamstrung most of the time waiting for action.
Looking for a little enlightenment!
Thanks.
I'm not sure what you mean by managing traffic?
ASKER
Being able to control the egress and ingress of packets. Being able to setup VLANs, rules, etc.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Have researched the topic myself and have concluded the we will run two firewalls with HA.