SonicWALL 5.8.1 Microscope & Magnifier User Manual


  Open as PDF
of 1490
 
Network > Interfaces
214
SonicOS 5.8.1 Administrator Guide
Configure or verify settings
From a management station inside your network, you should now be able to access the
management interface on the UTM appliance using its WAN IP address.
Make sure that all security services for the SonicWALL UTM appliance are enabled. See
“Licensing Services” on page 248 and “Activating UTM Services on Each Zone” on page 250.
SonicWALL Content Filtering Service must be disabled before the device is deployed in
conjunction with a SonicWALL Aventail SSL VPN appliance. On the Network > Zones page,
click Configure next to the LAN (X0) zone, clear the Enforce Content Filtering Service check
box and then click OK.
If you have not yet changed the administrative password on the SonicWALL UTM appliance,
you can do so on the System > Administration page.
To test access to your network from an external client, connect to the SSL VPN appliance and
log in. Once connected, attempt to access to your internal network resources. If there are any
problems, review your configuration and see the “Configuring the Common Settings for L2
Bridge Mode Deployments” section on page 248.
IPS Sniffer Mode
Supported on SonicWALL NSA 2400 and above series appliances, IPS Sniffer Mode is a
variation of Layer 2 Bridge Mode that is used for intrusion detection. IPS Sniffer Mode
configuration allows an interface on the SonicWALL to be connected to a mirrored port on a
switch to examine network traffic. Typically, this configuration is used with a switch inside the
main gateway to monitor traffic on the intranet.
In the network diagram below, traffic flows into a switch in the local network and is mirrored
through a switch mirror port into a IPS Sniffer Mode interface on the SonicWALL security
appliance. The SonicWALL inspects the packets according to the Unified Threat Management
(UTM) settings configured on the Bridge-Pair. Alerts can trigger SNMP traps which are sent to
the specified SNMP manager via another interface on the SonicWALL. The network traffic is
discarded after the SonicWALL inspects it.