Dell SonicWALL NSA E6500 Getting Started Manual
  1. Manuals
  2. Brands
  3. Dell Manuals
  4. Network Hardware
  5. SonicWALL NSA E6500
  6. Getting started manual

Dell SonicWALL NSA E6500 Getting Started Manual

Network security
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Dell SonicWALL E-Class NSA Appliances
NSA E6500
NET WORK SECURIT Y
Getting Started Guide

Advertisement

Table of Contents
loading

Related Manuals for Dell SonicWALL NSA E6500

Summary of Contents for Dell SonicWALL NSA E6500

  • Page 1 Dell SonicWALL E-Class NSA Appliances NSA E6500 NET WORK SECURIT Y Getting Started Guide...
  • Page 2 Global Network™, SonicWALL Dynamic Support 24x7™, SonicWALL Comprehensive Gateway Security Suite™, SonicWALL McAfee Client/Server Anti-Virus Suite™, and all other SonicWALL product and service names and slogans are trademarks of Dell, Inc. Microsoft Windows, Internet Explorer, and Active Directory are trademarks or registered trademarks of Microsoft Corporation.

  • Page 3: In This Guide

    In this Guide This Getting Started Guide provides instructions for basic installation and configuration of the Dell SonicWALL Network Security Appliance (NSA) E6500 running SonicOS. After you complete this guide, computers on your Local Area Network (LAN) will have secure Internet access.

  • Page 4: Table Of Contents

    Chapter 1 Sections Include Pre-Configuration Tasks - page 6 • Check Package Contents - page 7 • Obtain Configuration Information - page 8 • The Front Panel - page 10 • The Back Panel - page 11 • Front Bezel Control Features - page 12 •...
  • Page 5 - page 59 • Related Documentation - page 60 • Dynamic Tooltips - page 61 • Dell SonicWALL Live Product Demos - page 61 Chapter 6 Sections Include Rack Mounting Instructions - page 62 • Rack Mounting Instructions - page 63...

  • Page 6: Pre-Configuration Tasks

    Pre-Configuration Tasks In this Section: This section provides pre-configuration information. Review this section before setting up your Dell SonicWALL NSA E6500. • Check Package Contents - page 7 • Obtain Configuration Information - page 8 • The Front Panel - page 10 •...

  • Page 7: Check Package Contents

    Check Package Contents Before setting up your Dell SonicWALL NSA E6500, verify that your package contains the following parts: Dell SonicWALL NSA E6500 DB9 -> RJ45 (CLI) Cable Ethernet Cable Standard Power Cord* Rack Kit Getting Started Guide *The included power cord(s) are approved for use only in specific countries or regions. Before using a power cord, verify that it is rated and approved for use in your location. The power cords are for AC mains installation only.

  • Page 8: Networking Information

    Networking Information Obtain Configuration Information Select a static IP address for your LAN IP Address: SonicWALL appliance that is within the range of your local subnet. If you are Please record and keep for future reference the following setup unsure, you can use the default IP information: address (192.168.168.168).
  • Page 9 Obtain Internet Service Provider (ISP) Information Record the following information about your current Internet service: If You connect Please record using No information is usually required: Some DHCP providers may require a Host name: IP Address: Subnet Mask: Default Gateway: Static IP Primary DNS: DNS 2 (optional):...

  • Page 10: The Front Panel

    Press and hold the button for a few seconds to manually reset the appliance. LED (from left to right) Power LED: Indicates the Dell SonicWALL NSA E6500 is powered on. Test LED: Flickering: Indicates the appliance is initializing. Steady blinking: Indicates the appliance is in SafeMode.

  • Page 11: The Back Panel

    Description Expansion Bay Future extension. Fans (2) The Dell SonicWALL NSA E6500 includes two fans for system temperature control. Power Supply The Dell SonicWALL NSA E6500 power supply. Warning: Potential Hazard from Fan This manual contains specific warning and caution statements where they apply. Please read the Safety Instructions before...

  • Page 12: Front Bezel Control Features

    Note: Using the front bezel for configuration purposes prior to completing initial setup will bypass the Setup Wizard’s The Dell SonicWALL Network Security Appliance E-Class is automatic launch at startup. equipped with a front panel bezel interface that allows an...

  • Page 13: Main Menu

    Main Menu Status Upon booting the LCD display will initially show the Main Menu. The Status menu allows you to view specific aspects of the The menu is made up of four options: appliance. Once selected, the LCD displays the Status List. This list is navigated using the Up and Down buttons.
  • Page 14 Configure After entering a new value for a setting in the configuration menu, you are asked if you want to commit changes. Using the The Configure Menu allows you to configure specific aspects of 4-way D-pad, press the Right button for yes or the Left button the appliance.

  • Page 15: Configuration Options

    Configuration Options Restart This option allows you to configure network port settings for the This option allows you to safely restart without resorting to appliance. Once selected, the LCD displays a list of power cycling the appliance. Once selected, the LCD will configurable options.

  • Page 16: Front Bezel Configuration Example

    11. Press Down until X1 IP is selected (four times). LAN IP Configuration 12. Press Right to configure X1 IP. The Dell SonicWALL NSA E6500 is assigned the default LAN IP of 192.168.168.168. Complete the following steps to change it to 192.168.168.10.
  • Page 17 | Front Bezel Configuration Example...

  • Page 18: Registering The Appliance

    • Registering and Licensing Your Appliance on MySonicWALL - page 20 Note: Registration is an important part of the setup process and is necessary in order to receive the benefits of Dell SonicWALL security services, firmware updates, and technical support.

  • Page 19: Before You Register

    You need a MySonicWALL account to register the Dell from the SonicOS management interface. This allows the unit to synchronize with the License Server and to SonicWALL NSA E6500. You can create a new MySonicWALL account on www.mysonicwall.com or directly from the Dell share licenses with the associated appliance, if any.

  • Page 20: Creating A Mysonicwall Account

    Registration Next Steps - page 23 Product Registration You must register your Dell SonicWALL security appliance on MySonicWALL to enable full functionality. Login to your MySonicWALL account. If you do not have an account, you can create one at www.mysonicwall.com.
  • Page 21 In the MySonicWALL Service Management - Associated Products page, check the Applicable Services table for The following products and services are available for the Dell services that your appliance is already licensed for. Your SonicWALL NSA E6500: initial purchase may have included security services or •...
  • Page 22 Management page. A 30-day free trial is immediately activated. The Status page displays relevant information To ensure that your network stays protected if your Dell including the activation status, expiration date, number of SonicWALL NSA E6500 has an unexpected failure, you can...
  • Page 23 Continue. The screen only displays units that are not Your Dell SonicWALL NSA E6500 or E6500 HA Pair is now already associated with other appliances. registered and licensed on MySonicWALL. To complete the...

  • Page 24: Configuring A Stateful Ha Pair Configuring L2 Bridge Mode

    Deployment Scenarios In this Section: This section provides detailed overviews of advanced deployment scenarios as well as configuration instructions for connecting your Dell SonicWALL NSA E6500. • Selecting a Deployment Scenario - page 25 • Initial Setup - page 29 •...

  • Page 25: Selecting A Deployment Scenario

    NSA appliance in addition to an existing gateway C - L2 Bridge Mode appliance. Existing Dell SonicWALL gateway appliance NSA appliance in addition to an existing Dell B - NAT with State Sync Pair SonicWALL gateway appliance. Network Security Appliance...
  • Page 26 Scenario A: NAT/Route Mode Gateway For new network installations or installations where the Dell SonicWALL NSA E6500 is replacing the existing network SonicWALL NSA E-Class gateway. ISP 1 In this scenario, the NSA E6500 is configured in NAT/Route Network Security Appliance...
  • Page 27 Scenario B: State Sync Pair in NAT/Route Mode For network installations with two Dell SonicWALL NSA E6500 SonicWALL NSA E-Class 2 SonicWALL appliances configured as a stateful synchronized pair for HA / Failover Pair Network Security Appliance E6500 redundant high-availability networking.
  • Page 28 L2 Bridge Mode employs a secure learning bridge architecture, enabling it to pass and inspect traffic types that cannot be handled by many other methods of transparent security appliance integration. Using L2 Bridge Mode, a Dell SonicWALL LAN Zone WLAN Zone...

  • Page 29: Selecting A Deployment Scenario Initial Setup

    This section provides initial configuration instructions for Internet Explorer 8.0, 9.0, and 10.0 (do not use compatibility mode) connecting your Dell SonicWALL NSA E6500. Follow these steps if you are setting up Scenario A, B, or C. Firefox 16.0 or higher...

  • Page 30: Connecting The Lan Port

    10 Mbps Accessing the Management Interface Applying Power The computer you use to manage the Dell SonicWALL NSA Plug the power cord into an appropriate power outlet. E6500 must be set up to accept a dynamic IP address, or it Turn on the power switch on the rear of the appliance next must have an unused IP address on the 192.168.168.x/24...
  • Page 31 SonicWALL appliance (192.168.168.168 by default) to Accessing the Setup Wizard your pop-up blocker's allow list. If you cannot connect to the Dell SonicWALL NSA E6500 or the Setup Wizard does not display, verify the following configurations: • Did you correctly enter the Dell SonicWALL NSA E6500 management IP address in your Web browser? •...

  • Page 32: Connecting To Your Network

    Open another Web browser and navigate to: http://www.sonicwall.com. If you can view the Dell SonicWALL home page, you have configured your Dell SonicWALL NSA E6500 correctly. If you cannot view the Dell SonicWALL home page, renew your management station DHCP address.

  • Page 33: Activating Licenses In Sonicos

    This section describes how to activate your licenses. For Click Submit. instructions on how to enable security services and apply services to network zones, see the following sections: Upgrading Firmware on Your Dell • Enabling Security Services in SonicOS - page 51 SonicWALL Appliance •...
  • Page 34 Saving a Backup Copy of Your Preferences Upgrading the Firmware Before beginning the update process, make a system backup of Perform the following steps to upload new firmware to your Dell your Dell SonicWALL appliance configuration settings. The SonicWALL appliance and use your current configuration backup feature saves a copy of the current configuration settings upon startup.
  • Page 35 Using SafeMode to Upgrade Firmware Point the Web browser on your computer to 192.168.168.168. The SafeMode management interface If you are unable to connect to the Dell SonicWALL appliance’s displays. management interface, you can restart the appliance in If you have made any configuration changes to the security SafeMode.
  • Page 36 If you booted with factory default settings, enter the default user name and password (admin / password) to access the Dell SonicWALL management interface. This section provides instructions for configuring a pair of Dell SonicWALL NSA E6500 appliances for high availability (HA). If You Are Following...
  • Page 37 SonicWALL appliance. and other interfaces are properly configured for failover. You can find the serial number on the bottom of the Dell • Connect the HA ports on the primary and secondary SonicWALL appliance, or in the System > Status screen of the appliances with a CAT6-rated crossover cable (red crossover secondary unit.
  • Page 38 Enable Preempt Mode checkbox. minimum and default is 3 probes, and the maximum is 10. To backup the firmware and settings when you upgrade the Typically, Dell SonicWALL recommends leaving the firmware version, select Generate/Overwrite Backup Failover Trigger Level (missed heart beats), Election Firmware and Settings When Upgrading Firmware.
  • Page 39 Configuring HA Monitoring Settings • The Election Delay Time can be used to specify an amount of time the appliance will wait to consider an After configuring the HA settings, you need to configure the interface up and stable before one of them takes the Monitoring settings for the LAN or WAN.This includes primary role.
  • Page 40 Synchronizing Settings quickly take over. From your management workstation, test connectivity through Once you have configured the HA setting on the primary Dell the secondary appliance by accessing a site on the public SonicWALL appliance, click the Synchronize Settings button.
  • Page 41 You can configure HA license synchronization by associating protection provided before the failover. To enable HA, you can two Dell SonicWALL appliances as HA primary and HF use the SonicOS UI to configure your two appliances as a HA secondary on MySonicWALL. Note that the secondary pair in Active/Idle mode.
  • Page 42 This section provides instructions to configure the Dell In the left navigation bar, click My Products. SonicWALL NSA E6500 appliance in tandem with an existing On the My Products page, under Registered Products, Internet gateway device. This section is relevant to users scroll down to find the appliance that you want to use as following deployment scenario C.
  • Page 43 Connection Overview Configuring the Secondary Bridge Interface Connect the X1 port on your Dell SonicWALL NSA E6500 to the Complete the following steps to configure the secondary bridge LAN port on your existing Internet gateway device. Then interface on the NSA E6500: connect the X0 port on your NSA E6500 to your LAN.
  • Page 44 Note: Do not enable Never route traffic on the bridge-pair unless your network topology requires that all packets entering the L2 Bridge remain on the L2 Bridge segments. You may optionally enable the Block all non-IPv4 traffic setting to prevent the L2 bridge from passing non-IPv4 traffic.
  • Page 45 | Configuring L2 Bridge Mode...

  • Page 46: Additional Deployment Configuration

    Additional Deployment Configuration In this Section: This section provides basic configuration information to begin building network security policies for your deployment. This section also contains several SonicOS diagnostic tools and a deployment configuration reference checklist. • An Introduction to Zones and Interfaces - page 47 •...

  • Page 47: An Introduction To Zones And Interfaces

    The security features and settings configured for the zones are enforced by binding a zone to one or more physical interfaces Deny (such as, X0, X1, or X2) on the Dell SonicWALL appliance. WAN and DMZ LAN or WLAN Deny...

  • Page 48: Creating A Nat Policy

    SonicOS supports inbound port forwarding, it is possible to hide in that they comprise multiple hosts, but rather than being multiple internal servers off the WAN IP address of the Dell bound by specified upper and lower range delimiters, the SonicWALL appliance.
  • Page 49 • Default Address Objects— displays Address Objects • If you selected Host, enter the IP address in the IP configured by default on the Dell SonicWALL appliance. Address field. • If you selected Range, enter the starting and ending IP...
  • Page 50 IPs 10. For Comment, enter a short description. are translated from the IP address of the Dell SonicWALL 11. Select the Enable NAT Policy checkbox. appliance WAN port to the IP address of the internal web 12.

  • Page 51: Enabling Security Services In Sonicos

    Anti-Spyware Enabling Security Services in SonicOS You must enable each security service individually in the SonicOS user interface. See the following procedures to enable and configure the following three basic security services: Gateway Anti-Virus For more information on configuring your security services, refer to the SonicOS Administrator’s Guide.

  • Page 52: Applying Security Services To Zones

    For example, you can • Using the Active Connections Monitor - page 53 configure Dell SonicWALL Intrusion Prevention Service for • Using Log > View - page 53 incoming and outgoing traffic on the WLAN zone to add more security for internal network traffic.

  • Page 53: Using Ping

    The Ping test bounces a packet off a machine on the Internet tracking potential security threats. You can view the log in the and returns it to the sender. This test shows if the Dell Log > View page, or it can be automatically sent to an email SonicWALL appliance is able to contact the remote host.

  • Page 54: Deployment Configuration Reference Checklist

    Setting logging levels Configuring Log Categories (“Logging Level” section) Configuring threat prevention on all used zones Configuring Zones (“Enabling Dell SonicWALL Security Services on Zones“ section) Configuring Web filtering protection Configuring Dell SonicWALL Content Filtering Service Changing administrator login Configuring Administration Settings ("Administrator Name &...
  • Page 55 | Deployment Configuration Reference Checklist...

  • Page 56: Support And Training Options

    Support and Training Options In this Section: This section provides overviews of customer support and training options for the Dell SonicWALL NSA E6500. • Customer Support - page 57 • Knowledge Portal - page 57 • User Forums - page 58 •...

  • Page 57: Customer Support

    Dell SonicWALL documents based on the following Support Contract. Please review our Warranty Support Policy types of search tools: for product coverage. Dell SonicWALL also offers a full range of • Browse consulting services to meet your needs, from our innovative •...

  • Page 58: User Forums

    User Forums The Dell SonicWALL User Forums is a resource that provides users the ability to communicate and discuss a variety of security and appliance subject matters. In this forum, the following categories are available for users: • Content Security Manager topics •...

  • Page 59: Training

    Training Dell SonicWALL offers an extensive sales and technical training curriculum for Network Administrators, Security Experts and Dell SonicWALL Medallion Partners who need to enhance their knowledge and maximize their investment in Dell SonicWALL Products and Security Applications. Dell SonicWALL Training provides the following resources for its customers: •...

  • Page 60: Related Documentation

    • RF Management • Single Sign On • SSL Control • Virtual Access Points • Dell SonicWALL GVC Administrator’s Guide • Dell SonicWALL Analyzer Administrator’s Guide • Dell SonicWALL GAV Administrator’s Guide • Dell SonicWALL IPS Administrator’s Guide • Dell SonicWALL Anti-Spyware Administrator’s Guide •...

  • Page 61: Dynamic Tooltips

    Dell SonicWALL Live Product Demos SonicOS features dynamic tooltips that appear over various The Dell SonicWALL Live Demo Site provides free test drives of elements of the GUI when the mouse hovers over them. Dell SonicWALL security products and services through...

  • Page 62: Rack Mounting Instructions

    Rack Mounting Instructions In this Section: This section provides illustrated rack mounting instructions for the Dell SonicWALL NSA E6500. • Rack Mounting Instructions - page 63...
  • Page 63 Rack Mounting Instructions Assemble the Slide Rail Fasten 4 screws to the rail. WASHERS*8 M4 SCREW*8 | Rack Mounting Instructions...
  • Page 64 Assemble the Slide Rail Fasten two-sided screws to the rail. M5 SCREW*8 M5 Nut*8...
  • Page 65 Assemble Inner Rail to Chassis Fasten 6 screws to attach the inner channel onto the chassis. M4 SCREW*6 | Rack Mounting Instructions...
  • Page 66 Insert Chassis to Frame Slide inner channel into rails. Push hook down to separate.
  • Page 67 | Rack Mounting Instructions...

  • Page 68: Product Safety And Regulatory Information

    Product Safety and Regulatory Information In this Section: This section provides regulatory along with trademark and copyright information. • Safety and Regulatory Information - page 69 • Warranty Information - page 73 • Copyright Notice - page 73...

  • Page 69: Safety Instructions

    The Lithium Battery used in the Dell SonicWALL Internet security appliance may • Mount in a location away from direct sunlight and sources of heat. A maximum not be replaced by the user. The appliance must be returned to a Dell SonicWALL ambient temperature of 104º F (40º C) is recommended.
  • Page 70 • Das im Lieferumfang enthaltene bzw. die im Lieferumfang enthaltenen werden: Netzkabel sind nur für die Verwendung in bestimmten Ländern und Regionen • Das Dell SonicWALL Modell ist für eine Montage in einem standardmäßigen 19- zugelassen. Überprüfen Sie bitte vor der Verwendung eines Netzkabels, ob es Zoll-Rack konzipiert.
  • Page 71 安全說明 •必須維護可靠的機架裝載設備接地。必須特別留意電源供應 器連線,而不是直接連接到電源板之類的分支電路。 需要滿足以下條件以進行正確安裝: •從工廠運出時,這個戴爾 SonicWALL 產品包括為後備交流電 •戴爾 SonicWALL 設備被設計成安裝在一個標準的 19 吋機架安 源和增加可靠性而附帶的兩個電源。 裝櫃。需要滿足以下條件以進行正確安裝: •要斷開交流電源,兩條電源線都必須被拔除。 •使用機架製造商推薦的裝載硬體,確認機架足夠裝置所需 •隨附的電源線僅限於特定的國家或地區使用。使用前,請確 •請確認裝置內不會滲入水分或過多的濕氣。 認電源線的額定值且已被認可在你的地區上使用。 •裝置週邊請保持通風,特別是裝置通風口側。建議裝置與牆 •這個型號出貨時附帶的交流電源,是標準三芯器具耦合器的 壁間至少要有 1 英吋 (25.44 公釐 ) 的淨空。 配置。 •纜線的路徑應遠離電源線、日光燈,以及會產生雜訊的來源, •切勿在交流電源線還連接著電源時移除或安裝電源。 如無線電、發送器與寬頻放大器。 •當安裝及後續接觸產品背面之後,必須用工具將指旋螺釘鎖 •本產品的設計目的不是安裝並使用於住家或一般大眾可接觸 緊。 到的公共區域。如果是安裝在學校,本設備只能安裝在受訓人 員能接觸到的安全位置。 •架設位置需遠離陽光直射與熱源。建議周圍溫度最高溫不 要 風扇潛在危險警告 超過...

  • Page 72: Declaration Of Conformity

    EN 61000-3-2 (2006) Caution: Modifying this equipment or using this equipment for purposes not shown EN 61000-3-3 (2008) in this manual without the written consent of Dell, Inc. could void the user’s EN 60950-1 (2006) +A11 authority to operate this equipment.

  • Page 73: Copyright Notice

    Specifications and descriptions subject to change without notice. Warranty Information All Dell SonicWALL appliances come with a 1-year Limited Hardware Warranty which provides delivery of critical replacement parts for defective parts under warranty. Visit the Warranty Information page details on your product’s warranty: http://www.sonicwall.com/us/en/support/Services.html#tab=warranty...

Table of Contents