Download Print this page

Dell sonicwall x series Deployment Manual

Hide thumbs

Advertisement

Quick Links

Dell™ SonicWALL™ X-Series Solution
Deployment Guide

Advertisement

loading

  Summary of Contents for Dell sonicwall x series

  • Page 1 Dell™ SonicWALL™ X-Series Solution Deployment Guide...
  • Page 2 This product is protected by U.S. and international copyright and intellectual property laws. Dell™, the Dell logo, and SonicWALL are trademarks of Dell Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.
  • Page 3: Table Of Contents

    Contents About the Dell SonicWALL X-Series Solution ......4 Overview ............4 TZ/X-Series Solution: a unified approach .
  • Page 4: About The Dell Sonicwall X-Series Solution

    TZ/X-Series Solution: a unified approach Critical network elements, such as a firewall and switch, need to be managed, usually individually. The Dell™ SonicWALL™ X-Series Solution allows unified management of both the firewall and the switch using the firewall management interface (UI) and GMS.
  • Page 5: Performance Requirements

    For complete information about X-Series switches, see the Dell™ Networking™ X1000 and X4000 Series Switches User Guide and the Dell™ Networking™ X1000 and X4000 Series Switches Getting Started Guide. Table 1. X-Series switches supported by TZ series appliances These TZ Series appliances •...
  • Page 6: Features Provided By The Dell Sonicwall X-Series Solution

    PoE Power Limit Mode – By default, the mode is set to Port limit (default) • Managing of the extended switch using GMS – The Dell X-Series switch integration feature allows unified management of both the firewall and the switch using the SonicOS management interface and Dell SonicWALL GMS version 8.1 SP1 or higher.
  • Page 7: Portshield Functionality And X-Series Switches

    Administration Guide. The Dell TZ-X-Series solution allows support for portshielding interfaces on the extended switch to firewall interfaces. X-Series switches are L2 switches, and by default, all ports on the extended switch are configured as access ports part of the default VLAN 1. When ports of the extended switch are portshielded to firewall interfaces, the ports are reconfigured as access ports part of the VLAN corresponding to the PortShield VLAN, also known as the IDV VLAN of the PortShield host interface.
  • Page 8: X-Series Solution And Sonicpoints

    SonicPoint's power requirements. A SonicPoint ACe/ACi/N2 access point requires a minimum of 25.5 watts. If your Dell X-Series switch model does not support PoE+, you must use a SonicPoint power injector. For which switches support PoE+, see PoE/PoE+ and SFP/SFP+ support on page 7.
  • Page 9: Provisioning An X-Switch On A Tz Series Appliance

    Further information about provisioning switches can be found in: • Dell SonicWALL TZ - X solution: How to provision X-Series switches on SonicWALL TZ series firewalls (185057) • Dell SonicWALL X-Series Solution: How to provision Dell X-Series Switches on a SonicWALL TZ High Availability (HA) system (186085) •...
  • Page 10 X1052/X1052P switches are delivered from the factory in Managed Mode. All other switches are delivered from the factory in Unmanaged Mode to avoid unauthorized access to the switch. For further details, see the Dell™ Networking™ X1000 and X4000 Series Switches User Guide. If the switch is: •...
  • Page 11 11 Verify the Static IP Properties information. 12 Configure the IP addresses of the switch in the appropriate fields; for example: IP address 192.168.2.1/24 Subnet Mask 255.255.255.0 Gateway 192.168.2.2 Dell SonicWALL X-Series Solution Deployment Guide Provisioning an X-Switch on a TZ series appliance...
  • Page 12 X4000 Series Switches User Guide. 17 Click Next. The Simple Network Management Protocol (SNMP) Settings page displays. 18 Complete the SNMP Settings page as described in the Dell™ Networking™ X1000 and X4000 Series Switches User Guide. Dell SonicWALL X-Series Solution Deployment Guide...
  • Page 13 21 Configure the interface as VLAN 1. 22 Ensure the firewall can reach the X-Series switch by pinging the X-Series switch from the firewall before provisioning/managing the switch from the firewall. Dell SonicWALL X-Series Solution Deployment Guide Provisioning an X-Switch on a TZ series appliance...
  • Page 14: Adding A Default Gateway Through The X-Switch Ui

    To add a default gateway to a switch through its UI: In the UI, select Switch Management > IPv4 Addressing (or IPv6 Addressing). The Edit IPv4 Addressings page displays. Dell SonicWALL X-Series Solution Deployment Guide Provisioning an X-Switch on a TZ series appliance...
  • Page 15: Provisioning Through The Cli

    9. Enter the following CLI commands: console#configure terminal console(config)#username admin <password> console(config)#interface vlan 1 console(config-if)#ip address 192.168.2.1 255.255.255.0 console(config-if)#end console#write memory Dell SonicWALL X-Series Solution Deployment Guide Provisioning an X-Switch on a TZ series appliance...
  • Page 16: Provisioning With A Default Gateway

    Ensure the firewall can reach the X-Series switch by pinging the X-Series switch from the firewall before provisioning/managing the switch from the firewall. Dell SonicWALL X-Series Solution Deployment Guide Provisioning an X-Switch on a TZ series appliance...
  • Page 17: Adding The X-Series Switch To Sonicos

    In the IP Address field, enter the IP address of the switch obtained from the label on the switch. In the User Name field, enter the user ID obtained from the label on the switch. Dell SonicWALL X-Series Solution Deployment Guide Adding the X-Series switch to SonicOS...
  • Page 18 Port limit (default) – The power limit of the port depends on the port configuration. • Class limit – Each port can get up to the maximum power. Dell SonicWALL X-Series Solution Deployment Guide Adding the X-Series switch to SonicOS...
  • Page 19: Deleting An Extended Switch

    22 Click Add. Deleting an extended switch To delete an extended switch: Click the Delete icon. Dell SonicWALL X-Series Solution Deployment Guide Adding the X-Series switch to SonicOS...
  • Page 20: Configuring The X-Series Solution In Various Topologies

    Isolated links configuration for management and data traffic • HA and PortShield configurations with dedicated uplink(s) • VLAN(s) with dedicated uplink(s) configuration • SonicPoints with dedicated uplink configuration Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 21: About Links

    For example, if the management connection between the switch and the TZ is through X2, then X2 must have an IP address from the same subnet, such as 192.168.2.1/24. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 22: Configuring The Different Topologies

    If necessary, you may choose to have different links carry the PortShield traffic and management traffic. For more information, see Configuring isolated links for management and data uplinks on page 32. Figure 1. Common uplink topology Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 23 Adding the X-Series switch to SonicOS on page 17. Select the port on the switch via which the firewall manages the switch from the Switch Management drop-down menu. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 24 Status – a green Enabled icon • Switch Management – port 2 • Firewall Uplink – X3 • Switch Uplink – port 2 13 Click the Port Graphics tab. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 25: Configuring A Dedicated Uplink

    The uplink between X3 on the firewall and port 1 on the extended switch is used to manage the switch. In this configuration, X3 is configured in the same subnet as the IP of the X-Series switch. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 26 Set up the switch as described in Provisioning an X-Switch on a TZ series appliance on page 9. Navigate to the Network > PortShield Groups page. Click the External Switch Configuration tab. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 27 Port Configuration tab, click the Edit icon of the desired PortShield Interface. The Edit Switch Port dialog displays. 12 Select the Dedicated Uplink option. 13 Click OK. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 28 Set up the common uplink as described in Adding an extended switch on page 17. The External Switch Configuration tab is updated. The External Switch Configuration and Port Graphics tabs are updated. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 29 On the Port Graphics tab, the icons for TZ port X3 and switch port 2 are the same color and contain an up arrow. Click either the: • Port Graphics tab. • Port Configuration tab. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 30 Click the Configure button. • Port Configuration tab, click the Edit icon of the desired PortShield Interface. The Edit Switch Port dialog displays. Select the Dedicated Uplink option. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 31: Configuring A Hybrid System With Common And Dedicated Uplink(S)

    PortShield VLAN-tagged traffic. In this configuration, the link between X3 and 2 is also used to carry management traffic between the firewall and the switch. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 32: Configuring Isolated Links For Management And Data Uplinks

    X3 is configured as the firewall uplink. • Port 1 is configured as the switch MGMT port. • Port 2 is configured as the switch data uplink. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 33 Adding an extended switch on page To specify the port on the switch via which the firewall manages the switch, select the port from the Switch Management drop-down menu. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 34 The extended switch port 1 is management (it is grey with a human icon in it). • The data uplink is between X3 and extended port 2. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 35: Configuring Ha And Portshield With Dedicated Uplink(S)

    Primary Switch Management and Secondary Switch Management are set to 1. Figure 5. HA pair using one extended switch management port topography Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 36 When the secondary firewall is active, the link between X0 of the secondary and port 7 of the switch is used by the firewall to manage the switch. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 37: Configuring Vlan(S) With Dedicated Uplink(S)

    The Firewall Uplink and Switch Uplink options are not relevant for a firewall operating in HA mode. Click Add. Configuring VLAN(s) with dedicated uplink(s) For more information about X-Series Solution support for VLAN, see Dell SonicWALL X_Series Solution - Support for SonicWALL Virtual Interfaces (VLANs) (189771). Topics: •...
  • Page 38 The link between X5 on the firewall and port 3 on the extended switch is a dedicated link set up to carry traffic tagged with VLANs 100, 150, and 200 and untagged traffic for X5. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 39 When a dedicated uplink is set up for a given firewall interface, if VLAN(s) exist under the firewall interface, a new tab, VLANs, displays on the Edit Switch Port dialog when the PortShield Interface is selected: Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 40 Choosing VLAN 150 from the available list of VLANs. Portshield port 12 to X5 and configure it as an access for VLAN 200 by: Selecting Disabled for the VLAN Trunk option. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 41 The link between X5 on the firewall and port 3 on the extended switch is a dedicated link carrying traffic tagged with VLANs 100, 150, and 200 and untagged traffic for X5. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 42: Configuring A Dedicated Link For Sonicpoint Access

    RJ45 are portshielded to that dedicated port. IMPORTANT: Any SonicPoint with an external power source (AC power supply or power adapter) can be portshielded to any Ethernet port. Dell SonicWALL X-Series Solution Deployment Guide Configuring the X-Series Solution in various topologies...
  • Page 43 Figure Figure 9. SonicPoints and a dedicated uplink For more information about using SonicPoints with an X-Series switch, see Dell SonicWALL TZ Series and Dell SonicWALL X-Series solution managing SonicPoint ACe/ACi/N2 access points (SW13970). To configure a dedicated uplink for SonicPoints:...
  • Page 44: About Dell

    1-949-754-8000. Technical support resources Technical support is available to customers who have purchased Dell software with a valid maintenance contract and to customers who have trial versions. To access the Support Portal, go to https://support.software.dell.com/. The Support Portal provides self-help tools you can use to solve problems quickly and independently, 24 hours a day, 365 days a year.
  • Page 45: Index

    20 TZ series appliances, 5 interface uplink, 21 isolated link, 21 link common, 21 dedicated, 21 isolated, 21 Managed Mode button, 10 PoE (Power over Ethernet), 5 PoE+ (Power over Ethernet Plus), 5 Dell SonicWALL X-Series Solution Deployment Guide Index...