SonicWALL ECLASS NSA E8500 Getting Started Manual
  1. Manuals
  2. Brands
  3. SonicWALL Manuals
  4. Network Hardware
  5. ECLASS NSA E8500
  6. Getting started manual
SonicWALL ECLASS NSA E8500 Getting Started Manual

SonicWALL ECLASS NSA E8500 Getting Started Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
NSA_E8500_GSG.book Page 1 Friday, January 21, 2011 4:17 PM
NSA E8500 Getting Started Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the ECLASS NSA E8500 and is the answer not in the manual?

Questions and answers

Related Manuals for SonicWALL ECLASS NSA E8500

Summary of Contents for SonicWALL ECLASS NSA E8500

  • Page 1 NSA_E8500_GSG.book Page 1 Friday, January 21, 2011 4:17 PM NSA E8500 Getting Started Guide...

  • Page 2: Table Of Contents

    The SonicWALL® E-Class Network Security Appliance (NSA) E8500 is designed to be the most scalable, reliable, and best performing multifunction threat appliance in its class. This Getting Started Guide provides instructions for basic installation and configuration of the SonicWALL NSA E8500. Setup Step Procedure Est.
  • Page 3 Network Security Appliance E8500 Note: Always observe proper safety and regulatory guidelines when removing administrator-serviceable parts from the SonicWALL NSA E8500. Proper guidelines can be found in the Product Safety and Regulatory Information section, on page 65 of this guide.

  • Page 4: Pre-Configuration Tasks

    NSA_E8500_GSG.book Page 3 Friday, January 21, 2011 4:17 PM Pre-Configuration Tasks In this Section: This section provides pre-configuration information. Review this section before setting up your SonicWALL NSA E8500. • Check Package Contents - page 4 • Obtain Configuration Information - page 5 •...
  • Page 5 NSA_E8500_GSG.book Page 4 Friday, January 21, 2011 4:17 PM Check Package Contents Before setting up your SonicWALL NSA E8500, verify that your Any Items Missing? package contains the following parts: If any items are missing from your package, please contact SonicWALL support.
  • Page 6 SonicWALL appliance. Obtain Internet Service Provider (ISP) Information Authentication Code: Record the authentication code found on the bottom panel of your SonicWALL Record the following information about your current Internet service: appliance. If You connect Please record...
  • Page 7 NSA_E8500_GSG.book Page 6 Friday, January 21, 2011 4:17 PM The Front Panel Console Port X4-X7 (SFP) Access the SonicOS Command Line Interface (CLI) via the DB9 -> RJ45 cable Hot-pluggable “small form-factor pluggable transceiver” interfaces Control Buttons for high speed fiber or copper Navigate the LCD screen Ethernet communication LCD Screen...
  • Page 8 DC power supplies use different input connector and power cables Note: See the Safety and Regulatory Information section, on page 66 for important additional information on power supply requirements for the NSA E8500 appliance. SonicWALL NSA E8500 Getting Started Guide Page 7...
  • Page 9 LCD Control Buttons The LCD interface is controlled by a D-pad, consisting of four The SonicWALL Network Security Appliance E-Class is buttons: up, down, left, right. The table below describes the equipped with a front panel bezel interface that allows an...
  • Page 10 Configure menu. If their value is still 0.0.0.0 (default value), they will not appear in the Status List. Use the Up and Down button to select the menu you wish to enter and click the Right button to enter it. SonicWALL NSA E8500 Getting Started Guide Page 9...
  • Page 11 NSA_E8500_GSG.book Page 10 Friday, January 21, 2011 4:17 PM Configure After entering a new value for a setting in the configuration menu, you are asked if you want to commit changes. Using the The Configure Menu allows you to configure specific aspects of 4-way D-pad, press the Right button for yes or the Left button the appliance.
  • Page 12 Right button to confirm. The appliance will change to • Restore defaults SafeMode. Once SafeMode is enabled, the SonicWALL NSA E8500 must be controlled from the Web management interface. The X1 Mode can be set to Static (default option) or to DHCP. If...
  • Page 13 LAN IP Configuration Example Edit X1 IP: Press Right ten times to select the tenth digit. The SonicWALL NSA E8500 is assigned the default LAN IP of 192.168.168.168. The following example provides steps for changing the default IP address to 192.168.168.10.

  • Page 14: Registering Your Appliance

    Registering a Second Appliance as a Backup - page 18 Note: Registration is an important part of the setup process and is necessary in order to receive the benefits of SonicWALL security services, firmware updates, and technical support. SonicWALL NSA E8500 Getting Started Guide...
  • Page 15 Security Services licenses with your primary SonicWALL. Note: Your SonicWALL NSA E8500 does not need to be powered on during account creation or during the mysonicwall.com registration and licensing process.
  • Page 16 • Registration Next Steps - page 18 Product Registration You must register your SonicWALL security appliance on mysonicwall.com to enable full functionality. Login to your mysonicwall.com account. If you do not have an account, you can create one at <http://www.mysonicwall.com>.
  • Page 17 • Support Services: or at a later time. • Dynamic Support 24x7 The following products and services are available for the • Software and Firmware Updates SonicWALL NSA E8500: • Consulting Services: • Service Bundles: • Implementation Service • Client/Server Anti-Virus Suite •...
  • Page 18 Management page. A 30-day free trial is immediately Products page, check the Applicable Services table for activated. The Status page displays relevant services that your SonicWALL appliance is already licensed for. Your initial purchase may have included information including the activation status, expiration...
  • Page 19 HA Primary unit listed in the Parent Product section, as well as a Status value of 0 in the Associated Products / second SonicWALL with the first in a high availability (HA) pair. Child Product Type section. You can associate the two appliances as part of the registration process on mysonicwall.com.

  • Page 20: Deployment Scenarios

    Configuring L2 Bridge Mode - page 39 Tip: Before completing this section, fill out the information in Obtain Configuration Information - page 5. You will need to enter this information during the Setup Wizard. SonicWALL NSA E8500 Getting Started Guide Page 19...
  • Page 21 Current Gateway Configuration New Gateway Configuration Use Scenario No gateway appliance Single SonicWALL NSA as a primary gateway. A - NAT/Route Mode Gateway Pair of SonicWALL NSA appliances for high B - NAT with State Sync Pair availability.
  • Page 22 ISP 1 Network Security Appliance E8500 In this scenario, the SonicWALL NSA E8500 is configured in Internet NAT/Route mode to operate as a single network gateway. Two Internet sources may be routed through the SonicWALL appliance for load balancing and failover purposes. Because...
  • Page 23 SonicWALL NSA E-Class 2 SonicWALL In this scenario, one SonicWALL NSA E8500 operates as the HA/Failover Pair Network Security Appliance E8500 primary gateway device and the other SonicWALL NSA E8500 HA Link is in passive mode.
  • Page 24 NSA_E8500_GSG.book Page 23 Friday, January 21, 2011 4:17 PM Scenario C: L2 Bridge Mode For network installations where the SonicWALL NSA E8500 is running in tandem with an existing network gateway. Third Party Gateway In this scenario, the original gateway is maintained. The...
  • Page 25 Initial Setup Accepted Browser Version This section provides initial configuration instructions for Browser Number connecting your SonicWALL NSA E8500. Follow these steps if Internet Explorer 6.0 or higher you are setting up Scenario A, B, or C. Firefox 2.0 or higher...
  • Page 26 The Power LEDs on the front panel light up blue when you plug in the SonicWALL NSA E8500. The Alarm LED may light up and the Test LED will light up and may blink while the appliance performs a series of diagnostic tests.
  • Page 27 NSA_E8500_GSG.book Page 26 Friday, January 21, 2011 4:17 PM Accessing the Management Interface Using the Setup Wizard If you cannot connect to the SonicWALL NSA E8500 or the The computer you use to manage the SonicWALL NSA E8500 Setup Wizard does not display, verify the following...
  • Page 28 LAN port. However, if a DHCP server is • Restart your Management Station to accept new already active on your LAN, the SonicWALL will disable its own network settings from the DHCP server in the DHCP server to prevent conflicts.
  • Page 29 It is available on mysonicwall.com at the top your licensed services from within the SonicOS user interface: of the Service Management page for your SonicWALL appliance. • Activate licenses To activate licenses in SonicOS: •...
  • Page 30 • Obtaining the Latest Firmware - page 29 settings on your SonicWALL security appliance, protecting all • Saving a Backup Copy of Your Preferences - page 29 your existing settings in the event that it becomes necessary to •...
  • Page 31 Upgrading the Firmware Using SafeMode to Upgrade Firmware Perform the following steps to upload new firmware to your If you are unable to connect to the SonicWALL security SonicWALL appliance and use your current configuration appliance’s management interface, you can restart the settings upon startup.
  • Page 32 After successfully booting the firmware, the login screen is displayed. If you booted with factory default settings, enter the default user name and password (admin / password) to access the SonicWALL management interface. SonicWALL NSA E8500 Getting Started Guide Page 31...

  • Page 33: Initial High Availability Setup

    This section provides instructions for configuring a pair of SonicWALL NSA E8500 appliances for high availability (HA). • On the bottom panel of the Backup SonicWALL security This section is relevant to administrators following deployment appliance, locate the serial number and write the number scenario B.

  • Page 34: Configuring High Availability

    Select the Enable Virtual MAC checkbox. Virtual MAC allows the Primary and Backup appliances to share a You can find the serial number on the back of the SonicWALL single MAC address. This greatly simplifies the process of security appliance, or in the System > Status screen of the updating network ARP tables and caches when a failover backup unit.
  • Page 35 Primary unit while the Secondary unit was offline, and it is now online and ready to upgrade to the Typically, SonicWALL recommends leaving the Failover new firmware. Synchronize Firmware is typically used Trigger Level (missed heart beats), Election Delay...

  • Page 36: Synchronizing Settings

    From your management workstation, test connectivity through message at the bottom of the management interface page. Also the Backup SonicWALL by accessing a site on the public note that the management interface displays Logged Into: Internet – note that the Backup SonicWALL, when active,...

  • Page 37: Adjusting High Availability Settings

    • Election Delay Time – This timer can be used to specify an amount of time the SonicWALL will wait to consider an interface up and stable, and is useful when dealing with switch ports that have a spanning-tree delay set.

  • Page 38: Ha License Configuration Overview

    You can configure HA license synchronization by associating provided before the failover. To enable HA, you can use the two SonicWALL security appliances as HA Primary and HA SonicOS UI to configure your two appliances as a HA pair in Secondary on mysonicwall.com.

  • Page 39: Associating Pre-Registered Appliances

    NSA_E8500_GSG.book Page 38 Friday, January 21, 2011 4:17 PM Associating Pre-Registered Appliances To associate two already-registered SonicWALL security appliances so that they can use HA license synchronization, perform the following steps: Login to mysonicwall.com. In the left navigation bar, click My Products.
  • Page 40 NSA_E8500_GSG.book Page 39 Friday, January 21, 2011 4:17 PM Configuring L2 Bridge Mode Connection Overview Connect the X1 port on your SonicWALL NSA E8500 to the This section provides instructions to configure the SonicWALL LAN port on your existing Internet gateway device. Then NSA E8500 appliance in tandem with an existing Internet connect the X0 port on your SonicWALL to your LAN resources.
  • Page 41 NSA_E8500_GSG.book Page 40 Friday, January 21, 2011 4:17 PM Configuring the Secondary Bridge Interface Note: Complete the following steps to configure the SonicWALL Do not enable Never route traffic on the bridge-pair appliance: unless your network topology requires that all packets entering the L2 Bridge remain on the L2 Bridge Navigate to the Network >...

  • Page 42: Additional Deployment Configuration

    Creating a NAT Policy - page 45 • Enabling Security Services in SonicOS - page 48 • Applying Security Services to Zones - page 48 • Troubleshooting Diagnostic Tools - page 49 SonicWALL NSA E8500 Getting Started Guide Page 41...
  • Page 43 Deny enforced by binding a zone to one or more physical interfaces (such as, X0, X1, or X2) on the SonicWALL UTM appliance. The X1 and X0 interfaces are preconfigured as WAN and LAN respectively. The remaining ports can be configured to meet the...
  • Page 44 The access rules are sorted from the most specific at the top to the least specific at the bottom of the table. At the bottom of the table is the Any rule. SonicWALL NSA E8500 Getting Started Guide Page 43...
  • Page 45 Comments field. • Specify the number of connections allowed as a percent of maximum number of connections allowed by the SonicWALL security appliance in the Number of connections allowed (% of maximum connections) field. • Select Create a reflexive rule if you want to create a...
  • Page 46 Address Objects as a defining criterion. You can create multiple NAT policies on a SonicWALL running SonicOS Enhanced for the same object – for instance, you can Since there are multiple types of network address expressions,...
  • Page 47 • Default Address Objects - displays Address Objects and netmask in the Network and Netmask fields. configured by default on the SonicWALL security If you selected MAC, enter the MAC address and appliance. netmask in the Network and MAC Address field.
  • Page 48 IPs 12. Select the Create a reflexive policy checkbox if you want are translated from the IP address of the SonicWALL security a matching NAT Policy to be automatically created in the appliance WAN port to the IP address of the internal web opposite direction.
  • Page 49 DMZ or Wireless LAN (WLAN), you must apply the security services to the network zones. For example, you can configure SonicWALL Intrusion Prevention Service for incoming Intrusion Prevention and outgoing traffic on the WLAN zone to add more security for internal network traffic.
  • Page 50 Troubleshooting Diagnostic Tools The Ping test bounces a packet off a machine on the Internet and returns it to the sender. This test shows if the SonicWALL SonicOS provides a number of diagnostic tools to help you security appliance is able to contact the remote host. If users on maintain your network and troubleshoot problems.
  • Page 51 NSA_E8500_GSG.book Page 50 Friday, January 21, 2011 4:17 PM Page 50 Troubleshooting Diagnostic Tools...
  • Page 52 NSA_E8500_GSG.book Page 51 Friday, January 21, 2011 4:17 PM Support and Training Options In this Section: This section provides overviews of customer support and training options for the SonicWALL NSA E8500. • Customer Support - page 52 • Knowledge Portal - page 52 •...

  • Page 53: Customer Support

    Designed for customers with SonicWALL E-Class solutions, The Knowledge Portal is a resource which allows users to SonicWALL E-Class Support 24x7 delivers the enterprise-class search for SonicWALL documents based on the following types support features and quality of service that enterprise of search tools: companies require to keep their networks running smoothly and •...

  • Page 54: User Forums

    NSA_E8500_GSG.book Page 53 Friday, January 21, 2011 4:17 PM User Forums The SonicWALL User Forums is a resource that provides users the ability to communicate and discuss a variety of security and appliance subject matters. In this forum, the following categories are available for users: •...

  • Page 55: Training

    NSA_E8500_GSG.book Page 54 Friday, January 21, 2011 4:17 PM Training SonicWALL offers an extensive sales and technical training curriculum for Network Administrators, Security Experts and SonicWALL Medallion Partners who need to enhance their knowledge and maximize their investment in SonicWALL Products and Security Applications.

  • Page 56: Related Documentation

    SonicWALL GVC Administrator’s Guide • SonicWALL ViewPoint Administrator’s Guide • SonicWALL GAV Administrator’s Guide • SonicWALL IPS Administrator’s Guide • SonicWALL Anti-Spyware Administrator’s Guide • SonicWALL CFS Administrator’s Guide For further information, visit: <http://www.sonicwall.com/us/support/289.html> SonicWALL NSA E8500 Getting Started Guide Page 55...

  • Page 57: Dynamic Tooltips

    SonicWALL Live Product Demos SonicOS features a dynamic tooltips that appear over various The SonicWALL Live Demo Site provides free test drives of elements of the GUI when the mouse hovers over them. SonicWALL security products and services through interactive...

  • Page 58: Sonicwall Secure Wireless Network Integrated Solutions Guide

    “secure” wireless network? Check out the SonicWALL Secure Wireless Network Integrated Solutions Guide. This book is the official guide to SonicWALL’s market- leading wireless networking and security devices. This title is available in hardcopy at fine book retailers everywhere, or by ordering directly from Elsevier Publishing at: <http://www.elsevier.com>...
  • Page 59 NSA_E8500_GSG.book Page 58 Friday, January 21, 2011 4:17 PM Page 58 SonicWALL Secure Wireless Network Integrated Solutions Guide...

  • Page 60: Rack Mounting Instructions

    NSA_E8500_GSG.book Page 59 Friday, January 21, 2011 4:17 PM Rack Mounting Instructions In this Section: This section provides illustrated rack mounting instructions for the SonicWALL NSA E8500. • Rack Mounting Instructions - page 60 Note: For more information on rack mounting requirements, see the Safety and Regulatory Information section, on page 66.
  • Page 61 NSA_E8500_GSG.book Page 60 Friday, January 21, 2011 4:17 PM Rack Mounting Instructions Assemble the Slide Rail Fasten 4 screws to the rail. WASHERS*8 M4 SCREW*8 Page 60 Rack Mounting Instructions...
  • Page 62 NSA_E8500_GSG.book Page 61 Friday, January 21, 2011 4:17 PM Assemble the Slide Rail Fasten two-sided screws to the rail. M5 SCREW*8 M5 Nut*8 SonicWALL NSA E8500 Getting Started Guide Page 61...
  • Page 63 NSA_E8500_GSG.book Page 62 Friday, January 21, 2011 4:17 PM Assemble Inner Rail to Chassis Fasten 6 screws to attach the inner channel onto the chassis. M4 SCREW*6 Page 62 Rack Mounting Instructions...
  • Page 64 NSA_E8500_GSG.book Page 63 Friday, January 21, 2011 4:17 PM Insert Chassis to Frame Slide inner channel into rails. Push hook down to separate. SonicWALL NSA E8500 Getting Started Guide Page 63...
  • Page 65 NSA_E8500_GSG.book Page 64 Friday, January 21, 2011 4:17 PM Page 64 Rack Mounting Instructions...
  • Page 66 In this Section: This section provides regulatory along with trademark and copyright information. • Safety and Regulatory Information - page 66 • Copyright Notice - page 69 • Trademarks - page 69 SonicWALL NSA E8500 Getting Started Guide Page 65...
  • Page 67 • The included power cord is intended for use in North America AC mains may not be replaced by the user. The SonicWALL must be returned to a installation only. For European Union (EU) customers, and DC mains a SonicWALL authorized service center for replacement with the same or power cord is not included.
  • Page 68 • Stellen Sie sicher, dass die Luft um das Gerät herum zirkulieren kann und die SonicWALL keine Kabel an, die aus dem Gebäude in dem sich das Lüftungsschlitze an der Seite des Gehäuses frei sind. Hier ist ein Gerät befindet ,herausgeführt werden.
  • Page 69 Caution: Modifying this equipment or using this equipment for purposes not shown EN 61000-3-3 (1995) +A1 (2001), +A2 (2005) in this manual without the written consent of SonicWALL, Inc. could void the user’s EN 60950-1 (2006) authority to operate this equipment.
  • Page 70 Specifications and descriptions subject to change without notice. Trademarks SonicWALL is a registered trademark of SonicWALL, Inc. Microsoft Windows 98, Windows Vista, Windows 2000, Windows XP, Windows Server 2003, Internet Explorer, and Active Directory are trademarks or registered trademarks of Microsoft Corporation.
  • Page 71 NSA_E8500_GSG.book Page 70 Friday, January 21, 2011 4:17 PM Notes Page 70...
  • Page 72 F +1 408.745.9300 PN: 232-001891-52 Rev A 01/11 ©2011 SonicWALL, Inc. is a registered trademark of SonicWALL, Inc. Other product names mentioned herein may be trademarks and/or registered trademarks of their respective companies. Specifications and descriptions subject to change without notice.

Table of Contents