Filter
Top Products
Network > Interfaces
257
SonicOS 5.8.1 Administrator Guide
When creating a zone (either as part of general administration, or as a step in creating a
subinterface), a checkbox will be presented on the zone creation page to control the auto-
creation of a GroupVPN for that zone. By default, only newly created Wireless type zones will
have ‘Create GroupVPN for this zone’ enabled, although the option can be enabled for other
zone types by selecting the checkbox during creation.
Management of security services between VLAN subinterfaces is accomplished at the zone
level. All security services are configurable and applicable to zones comprising physical
interfaces, VLAN subinterfaces, or combinations of physical and VLAN subinterfaces.
Gateway Anti-Virus and Intrusion Prevention Services between the different workgroups can
easily be employed with the use of VLAN segmentation, obviating the need for dedicated
physical interfaces for each protected segment.
VLAN support enables organizations to offer meaningful internal security (as opposed to simple
packet filtering) between various workgroups, and between workgroups and server farms
without having to use dedicated physical interfaces on the SonicWALL.
Here the ability to assign VLAN subinterfaces to the WAN zone, and to use the WAN client
mode (only Static addressing is supported on VLAN subinterfaces assigned to the WAN zone)
is illustrated, along with the ability to support WAN Load Balancing and failover. Also
demonstrated is the distribution of SonicPoints throughout the network by means of connecting
them to access mode VLAN ports on workgroup switches. These switches are then backhauled
to the core switch, which then connects all the VLANs to the appliance via a trunk link.