sonicwall TZ 210 multiple default gateways

Hi, I have a sonicwall TZ 210 that I'd like to setup a second default gateway on running on a different sub net, is this possible or will I need a high end Cisco router?

 Eg. Gateway 1 : 172.168.215.1
       Gateway 2: 172.168.5.1
philpugAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Bryant SchaperCommented:
is it on the same interface?  I would think two interfaces correct?
0
Bryant SchaperCommented:
could you just another default 0.0.0.0 /0 pointing to the other gateway with a different weight.

Again I assume this is the outbound side not the internal network
0
Blue Street TechLast KnightCommented:
Hi philpug,

What are you trying to do...have multiple WANs, VLANs...? You can have a Default Gateway and a Secondary Gateway but it's a multihomed device so do you need two *default* gateways in one single Zone? You are obviously going to have multiple gateways in the firewall on each Zone/VLAN.

Please clarify. Thanks!
0
Simple Misconfiguration =Network Vulnerability

In this technical webinar, AlgoSec will present several examples of common misconfigurations; including a basic device change, business application connectivity changes, and data center migrations. Learn best practices to protect your business from attack.

Benjamin Van DitmarsCommented:
You can do policy based routing on sonicwall firewall. but first we need to know what you wanna do.
can you provide a drawing of what you wanna build
0
philpugAuthor Commented:
Wanting it to be something like this, so the test server can have internet access without being on the same network.

test.jpg
0
Blue Street TechLast KnightCommented:
You can do a few different ways depending on how many WAN connections you have.

If you have a single WAN connection you can achieve this by creating a new VLAN (consisting of a new sub-interface and a new zone). Then make sure the Access Rules are set to deny interzone communication e.g. LAN>LAN-TEST  and vice versa to proved security context. You will need to exclude the IP of the Workstation with both IPs respectively to allow traffic in to both ingress/egress of the LAN>LAN-TEST rule sets. You can further restrict the access to isolated ports/services and time of day as well.

Let me know if you have any other questions!
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Blue Street TechLast KnightCommented:
Glad I could help. ..thanks for the points!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.