Sonicwall add Physical interface to VLAN-Sub-Interface

I have a client with a Sonicwall TZ 215  (SonicROM 5.0.5.6 ) that is using a SonicPointN for wireless access. The SonicPoint is setup on Physical interface X2 with a 192.168.17.0 network and the X2 interface also has two VLAN Sub-Interfaces on it, X2:V18( 192.168.18.0) and X2:V19 (192.168.18.0). These VLAN’s are used to create the two wireless zones, one for Guest and one for employee’s. The customer now wants to add a remote lighting “Hub” that is manipulated via an Android or iPhone apps. Even though the “Hub” is accessed via the internet the initial setup has to be done with the phone app being able to see the unit on the same local network segment. Since the hub only has a Ethernet jack and the phone only has wireless, the phone and the hub need to be on the same wireless network. So I what I am trying to accomplish and can’t seem to get working it make the X3 interface on the Sonicwall be on the same VLAN Sub-Interface as the wireless access point. In this case that would be X2:V18. So to sum the whole deal up.  I need to get X3 interface assigned to the same network (192.168.18.0) and the VLAN-Sub-Interface as X2:V18. I can’t seem to get it the way I need, no problem getting the X3 on the X2 network (192.168.17.0) but not on the X2:V18. Any help would be appreciated. Thanks

Glenn Thibeault
Onsite Information Technologies
LVL 1
OnsiteITAsked:
Who is Participating?
 
Blue Street TechLast KnightCommented:
Hi Glenn,

Yes, this is easily accomplished by Bridging the sub-Interface (X2:V18) to the Interface (X3). You could even create a sub-Interface off of X1, say X1v40, and bridge both sub-interfaces too. But note, that you cannot create the Bridge Pair to WAN which is an Untrusted Zone or any Interface which is part of the WAN Zone...it has to be marked as Trusted or Public.

In order to do this you need to change the Mode/IP Assignment from Static IP to Layer 2 Bridge Mode on the X2:V18 sub-interface then in the Bridge to: field select the X3 Interface.

This will make both Interfaces share the same network (the X3 subnet). If you want the converse to apply simply modify the X3 Interface from Static IP to Bridge, etc. So keep in mind where the DHCP server is, etc. That is why it may make more sense to bridge from the WLAN to a newly created sub-interface off of X1.

FYI: Is this a typo: X2:V18 (192.168.18.0) and X2:V19 (192.168.18.0)...they should be separate networks.

Let me know if you have any questions!
0
 
OnsiteITAuthor Commented:
Thanks for the fast feed back. That is kind of what I thought. Since I want to keep the same network  on the wireless side I think I would need to bridge X3 to X2:V18. Not matter what I try I can't seem to get that network to show up in the available "bridge too" list. Depending what "zone"  assignment I pick for the X3 interface I can get the X2 interface to show up in the Bridge too list but never the X2:V18 sub-interface. Thanks
0
 
Blue Street TechLast KnightCommented:
As I stated in my previous comment: https:a42455208, make sure X2:v18 is not assigned as an Untrusted Zone (which is typical of how the WLAN zones are configured; they aren't Trusted inherently), because the Bridge Pair cannot be created to an Untrusted Zone. So assign X2:v18 as a Trusted Zone and you should see it on the drop down.
0
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

 
OnsiteITAuthor Commented:
Not to sound like a dope. But I believe a sub interface is just a VLAN tag. If so the device I am using on X3 doesn't know anything about VLAN's so wouldn't it just see the main interface setup on X3 not the sub interface setup?
0
 
Blue Street TechLast KnightCommented:
I modified my last comment because I thought you probably have the X2:V18 sub-interface setup as an Untrusted Zone....

It depends on which interface you select to be the Primary and Secondary but regardless it will be bridged so it will be on the same subnet.
0
 
Blue Street TechLast KnightCommented:
Yes, there is a zone assignment for each interface that needs to be configured for this to work.
0
 
OnsiteITAuthor Commented:
Answer was correct just I was trying to bridge the X3 to the Vlan on X2. Had to do it the other way around.
0
 
Blue Street TechLast KnightCommented:
Glad I could help Glenn and thanks for the points!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.