SonicWALL E-Class NSA E8510 Getting Started Manual
  1. Manuals
  2. Brands
  3. SonicWALL Manuals
  4. Security System
  5. E-Class NSA E8510
  6. Getting started manual
SonicWALL E-Class NSA E8510 Getting Started Manual

SonicWALL E-Class NSA E8510 Getting Started Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
NSA E8510 Getting Started Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the E-Class NSA E8510 and is the answer not in the manual?

Questions and answers

Related Manuals for SonicWALL E-Class NSA E8510

Summary of Contents for SonicWALL E-Class NSA E8510

  • Page 1 NSA E8510 Getting Started Guide...

  • Page 2: Pre-Configuration Tasks

    The SonicWALL® E-Class Network Security Appliance (NSA) E8510 is designed to be the most scalable, reliable, and best performing multifunction appliance in its class. This Getting Started Guide provides instructions for basic installation and configuration of the SonicWALL NSA E8510. Setup Step Procedure Est.
  • Page 3 Network Security Appliance E8510 Note: Always observe proper safety and regulatory guidelines when removing administrator-serviceable parts from the SonicWALL NSA E8510. Proper guidelines can be found in the Product Safety and Regulatory Information section, on page 67 of this guide.

  • Page 4: Table Of Contents

    Pre-Configuration Tasks In this Section: This section provides pre-configuration information. Review this section before setting up your SonicWALL NSA E8510. • Check Package Contents - page 4 • Obtain Configuration Information - page 5 • The Front Panel - page 6 •...

  • Page 5: Check Package Contents

    Check Package Contents Before setting up your SonicWALL NSA E8510, verify that your Any Items Missing? package contains the following parts: If any items are missing from your package, please contact SonicWALL support. SonicWALL NSA E8510 A listing of the most current support options is available online at: Rack Kit <http://www.sonicwall.com/us/support.html>...

  • Page 6: Obtain Configuration Information

    SonicWALL appliance. Obtain Internet Service Provider (ISP) Information Authentication Code: Record the authentication code found on the bottom panel of your SonicWALL Record the following information about your current Internet service: appliance. If You connect Please record...

  • Page 7: The Front Panel

    The Front Panel Console Port X2-X3 (SFP) Access the SonicOS Command Line Interface (CLI) via the DB9 -> RJ45 cable Hot-pluggable “small form-factor pluggable transceiver” interfaces; Control Buttons 10GB SFP+ connectors are Navigate the LCD screen required (not included) LCD Screen HA Port Interface to display status, make High Availability...

  • Page 8: The Back Panel

    DC power supplies use different input connector and power cables Note: See the Safety and Regulatory Information section, on page 68 for important additional information on power supply requirements for the SonicWALL NSA E8510 appliance. SonicWALL NSA E8510 Getting Started Guide Page 7...

  • Page 9: Front Bezel Control Features

    LCD Control Buttons The LCD interface is controlled by a D-pad, consisting of four The SonicWALL E-Class Network Security Appliance is buttons: up, down, left, right. The table below describes the equipped with a front panel bezel interface that allows an...
  • Page 10 Configure menu. If their value is still 0.0.0.0 (default value), they will not appear in the Status List. Use the Up and Down button to select the menu you wish to enter and click the Right button to enter it. SonicWALL NSA E8510 Getting Started Guide Page 9...
  • Page 11 Configure After entering a new value for a setting in the configuration menu, you are asked if you want to commit changes. Using the The Configure Menu allows you to configure specific aspects of 4-way D-pad, press the Right button for yes or the Left button the appliance.
  • Page 12 Restore defaults press the Right button to confirm. The appliance will change to SafeMode. Once SafeMode is enabled, the SonicWALL NSA The X1 Mode can be set to Static (default option) or to DHCP. If E8510 must be controlled from the Web management interface DHCP is selected, manual configuration options are not shown using the default LAN IP address, 192.168.168.168.

  • Page 13: Lan Ip Configuration Example

    LAN IP Configuration Example Edit X0 IP: Press Right ten times to select the tenth digit. The SonicWALL NSA E8510 is assigned the default LAN IP of 192.168.168.168. The following example provides steps for changing the default IP address to 192.168.168.10.

  • Page 14: Registering Your Appliance

    Registering a Second Appliance as a Backup - page 19 Note: Registration is an important part of the setup process and is necessary in order to receive the benefits of SonicWALL security services, firmware updates, and technical support. SonicWALL NSA E8510 Getting Started Guide...

  • Page 15: Before You Register

    Security Services licenses with your primary SonicWALL. Note: Your SonicWALL NSA E8510 does not need to be powered on during account creation or during the mysonicwall.com registration and licensing process.

  • Page 16: Product Registration

    • Registration Next Steps - page 19 Product Registration You must register your SonicWALL security appliance on mysonicwall.com to enable full functionality. Login to your mysonicwall.com account. If you do not have an account, you can create one at <http://www.mysonicwall.com>.
  • Page 17 The SonicWALL Licensing server provides the App Application Visualization and App Control are licensed together Visualization and App Control license keys to the SonicWALL in a bundle with other security services including SonicWALL device when you begin a 30-day trial (upon registration) or Gateway Anti-Virus (GAV), Anti-Spyware, and Intrusion purchase a Security Services license bundle.
  • Page 18 GMS Preventive Maintenance Service • Gateway AV / Anti-Spyware/Intrusion Prevention Service • Content Filtering: Premium Edition • Stateful High Availability • Active/Active High Availability • Application Visualization • Application Control • Comprehensive Anti-Spam (CASS) SonicWALL NSA E8510 Getting Started Guide Page 17...
  • Page 19 Management page. A 30-day free trial is immediately Products page, check the Applicable Services table for activated. The Status page displays relevant services that your SonicWALL appliance is already information including the activation status, expiration licensed for. Your initial purchase may have included...
  • Page 20 HA Primary unit listed in the Parent Product section, as well as a Status value of 0 in the Associated Products / Child second SonicWALL with the first in a high availability (HA) pair. Product Type section. You can associate the two appliances as part of the registration process on mysonicwall.com.
  • Page 21 Page 20 Registering and Licensing Your Appliance on mysonicwall.com...

  • Page 22: Deployment Scenarios

    Configuring L2 Bridge Mode - page 40 Tip: Before completing this section, fill out the information in Obtain Configuration Information - page 5. You will need to enter this information during the Setup Wizard. SonicWALL NSA E8510 Getting Started Guide Page 21...

  • Page 23: Selecting A Deployment Scenario

    Current Gateway Configuration New Gateway Configuration Use Scenario No gateway appliance Single SonicWALL NSA as a primary gateway. A - NAT/Route Mode Gateway Pair of SonicWALL NSA appliances for high B - NAT with State Sync Pair availability.
  • Page 24 Scenario A: NAT/Route Mode Gateway For new network installations or installations where the SonicWALL NSA E8510 is replacing the existing network SonicWALL NSA E-Class gateway. In this scenario, the SonicWALL NSA E8510 is configured in 10GE ISP 1 Network Security Appliance E8510 Internet NAT/Route mode to operate as a single network gateway.
  • Page 25 26 before completing State Sync Pair setup. redundant high-availability networking. In this scenario, one SonicWALL NSA E8510 operates as the primary gateway device and the other SonicWALL NSA E8510 is in passive mode. All network connection information is...
  • Page 26 Scenario C: L2 Bridge Mode For network installations where the SonicWALL NSA E8510 is running in tandem with an existing network gateway. Third Party Gateway In this scenario, the original gateway is maintained. The Internet or L2 Bridge Link LAN Segment 2...

  • Page 27: Initial Setup

    Initial Setup Accepted Browser Version This section provides initial configuration instructions for Browser Number connecting your SonicWALL NSA E8510. Follow these steps if Chrome 11.0 or higher you are setting up Scenario A, B, or C. Firefox 3.0 or higher...
  • Page 28 The Power LEDs on the front panel light up blue when you plug in the SonicWALL NSA E8510. The Alarm LED may light up and the Test LED will light up and may blink while the appliance performs a series of diagnostic tests.

  • Page 29: Accessing The Management Interface

    Accessing the Management Interface Using the Setup Wizard If you cannot connect to the SonicWALL NSA E8510 or the The computer you use to manage the SonicWALL NSA E8510 Setup Wizard does not display, verify the following must be set up to accept a dynamic IP address, or it must have configurations: an unused IP address on the 192.168.168.x/24 subnet, such as...
  • Page 30 LAN port. However, if a DHCP server is • Restart your Management Station to accept new already active on your LAN, the SonicWALL will disable its own network settings from the DHCP server in the DHCP server to prevent conflicts.

  • Page 31: Activating Licenses In Sonicos

    It is available on mysonicwall.com at the top your licensed services from within the SonicOS user interface: of the Service Management page for your SonicWALL appliance. • Activate licenses To activate licenses in SonicOS: •...
  • Page 32 • Obtaining the Latest Firmware - page 31 settings on your SonicWALL security appliance, protecting all • Saving a Backup Copy of Your Preferences - page 31 your existing settings in the event that it becomes necessary to •...
  • Page 33 Upgrading the Firmware Using SafeMode to Upgrade Firmware Perform the following steps to upload new firmware to your If you are unable to connect to the SonicWALL security SonicWALL appliance and use your current configuration appliance’s management interface, you can restart the settings upon startup.
  • Page 34 After successfully booting the firmware, the login screen is page 40 displayed. If you booted with factory default settings, enter the default user name and password (admin / password) to access the SonicWALL management interface. SonicWALL NSA E8510 Getting Started Guide Page 33...

  • Page 35: Initial High Availability Setup

    This section provides instructions for configuring a pair of SonicWALL NSA E8510 appliances for high availability (HA). • On the bottom panel of the Backup SonicWALL security This section is relevant to administrators following deployment appliance, locate the serial number and write the number Scenario B.

  • Page 36: Configuring High Availability

    Select the Enable Virtual MAC checkbox. Virtual MAC allows the Primary and Backup appliances to share a You can find the serial number on the back of the SonicWALL single MAC address. This greatly simplifies the process of security appliance, or in the System > Status screen of the updating network ARP tables and caches when a failover backup unit.
  • Page 37 Once you have configured the HA setting on the Primary The Dynamic Route Hold-Down Time setting is used SonicWALL security appliance, click the Synchronize Settings when a failover occurs on a HA pair that is using either button. You should see a HA Peer Firewall has been updated RIP or OSPF dynamic routing.

  • Page 38: Adjusting High Availability Settings

    Now, power the Primary SonicWALL back on, wait a few minutes, then log back into the management interface. If stateful synchronization is enabled (automatically disabling Tip: A compromise between the convenience of preempt mode), the management GUI should still display...

  • Page 39: Synchronizing Firmware

    Election Delay Time – This timer can be used to specify unit on mysonicwall.com. an amount of time the SonicWALL will wait to consider an interface up and stable, and is useful when dealing with You must purchase a single set of security services licenses for switch ports that have a spanning-tree delay set.

  • Page 40: Associating Pre-Registered Appliances

    Additional Deployment page. This allows each unit to synchronize with the Configuration section, on page 43. SonicWALL license server and share licenses with the associated appliance. Associating Pre-Registered Appliances To associate two already-registered SonicWALL security appliances so that they can use HA license synchronization, perform the following steps: Login to mysonicwall.com.

  • Page 41: Connection Overview

    Configuring L2 Bridge Mode Connection Overview Connect the X1 port on your SonicWALL NSA E8510 to the This section provides instructions to configure the SonicWALL LAN port on your existing Internet gateway device. Then NSA E8510 appliance in tandem with an existing Internet connect the X0 port on your SonicWALL to your LAN resources.
  • Page 42 Configuring the Secondary Bridge Interface Note: Complete the following steps to configure the SonicWALL Do not enable Never route traffic on the bridge-pair unless your network topology requires that all packets appliance: entering the L2 Bridge remain on the L2 Bridge Navigate to the Network >...
  • Page 43 Page 42 Configuring L2 Bridge Mode...

  • Page 44: Additional Deployment Configuration

    Creating a NAT Policy - page 47 • Enabling Security Services in SonicOS - page 50 • Applying Security Services to Zones - page 50 • Troubleshooting Diagnostic Tools - page 51 SonicWALL NSA E8510 Getting Started Guide Page 43...

  • Page 45: An Introduction To Zones And Interfaces

    Deny enforced by binding a zone to one or more physical interfaces (such as, X0, X1, or X2) on the SonicWALL appliance. The X1 and X0 interfaces are preconfigured as WAN and LAN respectively. The remaining ports can be configured to meet the...
  • Page 46 The access rules are sorted from the most specific at the top to the least specific at the bottom of the table. At the bottom of the table is the Any rule. SonicWALL NSA E8510 Getting Started Guide Page 45...
  • Page 47 Comments field. • Specify the number of connections allowed as a percent of maximum number of connections allowed by the SonicWALL security appliance in the Number of connections allowed (% of maximum connections) field. • Select Create a reflexive rule if you want to create a...

  • Page 48: Creating A Nat Policy

    Address Objects as a defining criterion. You can create multiple NAT policies on a SonicWALL running SonicOS Enhanced for the same object – for instance, you can Since there are multiple types of network address expressions,...
  • Page 49 • Default Address Objects - displays Address Objects and netmask in the Network and Netmask fields. configured by default on the SonicWALL security If you selected MAC, enter the MAC address and appliance. netmask in the Network and MAC Address field.
  • Page 50 IPs 12. Select the Create a reflexive policy checkbox if you want are translated from the IP address of the SonicWALL security a matching NAT Policy to be automatically created in the appliance WAN port to the IP address of the internal web opposite direction.

  • Page 51: Enabling Security Services In Sonicos

    DMZ or Wireless LAN (WLAN), you must apply the security services to the network zones. For example, you can Intrusion Prevention configure SonicWALL Intrusion Prevention Service for incoming and outgoing traffic on the WLAN zone to add more security for internal network traffic.

  • Page 52: Troubleshooting Diagnostic Tools

    Troubleshooting Diagnostic Tools The Ping test bounces a packet off a machine on the Internet and returns it to the sender. This test shows if the SonicWALL SonicOS provides a number of diagnostic tools to help you security appliance is able to contact the remote host. If users on maintain your network and troubleshoot problems.
  • Page 53 Page 52 Troubleshooting Diagnostic Tools...

  • Page 54: Support And Training Options

    Support and Training Options In this Section: This section provides overviews of customer support and training options for the SonicWALL NSA E8510. • Customer Support - page 54 • Knowledge Portal - page 54 • User Forums - page 55 •...

  • Page 55: Customer Support

    Designed for customers with SonicWALL E-Class solutions, The Knowledge Portal is a resource which allows users to SonicWALL E-Class Support 24x7 delivers the enterprise-class search for SonicWALL documents based on the following types support features and quality of service that enterprise of search tools: companies require to keep their networks running smoothly and •...

  • Page 56: User Forums

    User Forums The SonicWALL User Forums is a resource that provides users the ability to communicate and discuss a variety of security and appliance subject matters. In this forum, the following categories are available for users: • Content Security Manager topics •...

  • Page 57: Training

    Training SonicWALL offers an extensive sales and technical training curriculum for Network Administrators, Security Experts and SonicWALL Medallion Partners who need to enhance their knowledge and maximize their investment in SonicWALL Products and Security Applications. SonicWALL Training provides the following resources for its customers: •...

  • Page 58: Related Documentation

    SonicWALL GVC Administrator’s Guide • SonicWALL ViewPoint Administrator’s Guide • SonicWALL GAV Administrator’s Guide • SonicWALL IPS Administrator’s Guide • SonicWALL Anti-Spyware Administrator’s Guide • SonicWALL CFS Administrator’s Guide For further information, visit: <http://www.sonicwall.com/us/support/289.html> SonicWALL NSA E8510 Getting Started Guide Page 57...

  • Page 59: Dynamic Tooltips

    SonicWALL Live Product Demos SonicOS features a dynamic tooltips that appear over various The SonicWALL Live Demo Site provides free test drives of elements of the GUI when the mouse hovers over them. SonicWALL security products and services through interactive...

  • Page 60: Sonicwall Secure Wireless Network Integrated Solutions Guide

    “secure” wireless network? Check out the SonicWALL Secure Wireless Network Integrated Solutions Guide. This book is the official guide to SonicWALL’s market- leading wireless networking and security devices. This title is available in hardcopy at fine book retailers everywhere, or by ordering directly from Elsevier Publishing at: <http://www.elsevier.com>...
  • Page 61 Page 60 SonicWALL Secure Wireless Network Integrated Solutions Guide...

  • Page 62: Rack Mounting Instructions

    Rack Mounting Instructions In this Section: This section provides illustrated rack mounting instructions for the SonicWALL NSA E8510. • Rack Mounting Instructions - page 62 Note: For more information on rack mounting requirements, see the Safety and Regulatory Information section, on page 68.
  • Page 63 Rack Mounting Instructions Assemble the Slide Rail Fasten 4 screws to the rail. WASHERS*8 M4 SCREW*8 Page 62 Rack Mounting Instructions...
  • Page 64 Assemble the Slide Rail Fasten two-sided screws to the rail. M5 SCREW*8 M5 Nut*8 SonicWALL NSA E8510 Getting Started Guide Page 63...
  • Page 65 Assemble Inner Rail to Chassis Fasten 6 screws to attach the inner channel onto the chassis. M4 SCREW*6 Page 64 Rack Mounting Instructions...
  • Page 66 Insert Chassis to Frame Slide inner channel into rails. Push hook down to separate. SonicWALL NSA E8510 Getting Started Guide Page 65...
  • Page 67 Page 66 Rack Mounting Instructions...

  • Page 68: Product Safety And Regulatory Information

    In this Section: This section provides regulatory along with trademark and copyright information. • Safety and Regulatory Information - page 68 • Copyright Notice - page 71 • Trademarks - page 71 SonicWALL NSA E8510 Getting Started Guide Page 67...

  • Page 69: Safety And Regulatory Information

    • The included power cord is intended for use in North America or Japan AC may not be replaced by the user. The SonicWALL must be returned to a mains installation only. For European Union (EU) customers, and DC mains SonicWALL authorized service center for replacement with the same or a power cord is not included.
  • Page 70 Stellen Sie sicher, dass die Luft um das Gerät herum zirkulieren kann und die Lüftungsschlitze an der Seite des Gehäuses frei sind. Hier ist ein SonicWALL keine Kabel an, die aus dem Gebäude in dem sich das Belüftungsabstand von mindestens 26 mm einzuhalten.
  • Page 71 Caution: Modifying this equipment or using this equipment for purposes not shown EN 61000-3-3 (1995) +A1 (2001), +A2 (2005) in this manual without the written consent of SonicWALL, Inc. could void the user’s EN 60950-1 (2006) authority to operate this equipment.

  • Page 72: Copyright Notice

    Copyright Notice Trademarks © 2011 SonicWALL, Inc. SonicWALL is a registered trademark of SonicWALL, Inc. All rights reserved. Windows Vista, Windows 7, Windows XP, Windows Server 2003, Internet Explorer, and Active Directory are trademarks or registered Under the copyright laws, this manual or the software described within, trademarks of Microsoft Corporation.
  • Page 73 Notes Page 72...
  • Page 74 F +1 408.745.9300 PN: 232-001858-50 Rev A 05/11 ©2011 SonicWALL, Inc. is a registered trademark of SonicWALL, Inc. Other product names mentioned herein may be trademarks and/or registered trademarks of their respective companies. Specifications and descriptions subject to change without notice.

Table of Contents