Académique Documents
Professionnel Documents
Culture Documents
Page 1 of 4
Home
Subscribe ?
Related
Bookmark
Search
View all items in: UTM/Firewall/VPN > 1.3 Network > Routing UTM/Firewall/VPN > 2.8 Other Documents > Technical Notes
Rating: 8.46 out of 10 (11 Ratings) Rate
Question/Topic
UTM: How to Configure Static Routes in SonicOS (Standard and Enhanced)
Answer/Article
Overview / Scenario:
If you have routers on your interfaces and if you want to access the computers attached to the router, you need to configure static routes on the SonicWALL security appliance on the Network > Routing page. The static route policies will create static routing entries that make decisions based upon source address, source netmask, destination address, destination netmask, service, interface, gateway and metric.
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3559
22-01-2012
Page 2 of 4
In the above example: a NAT-enabled SonicWALL UTM appliance is configfured with a LAN IP of 192.168.168.168 / 255.255.255.0 and the computers on the LAN network are on the similar IP range. The IP address of the local router is 192.168.168.254 /24 with the Gateway IP as 192.168.168.168, which connects to another network numbered 10.10.20.x
Procedure:
Configuring Static Routes on Firmware 6.x Configuring Static Routes on SonicOS Standard Configuring Static Routes on SonicOS Enhanced
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3559
22-01-2012
Page 3 of 4
3. 4. 5. 6. 7.
Specify the Destination Network 10.10.20.0 Specify the Subnet Mask 255.255.255.0 Specify the Default Gateway 192.168.168.254 Specify the interface as LAN (also known as X0). Click OK to update the settings.
3. Select the following Route Policy Settings: - Source = Any - Under Destination = specify Create New Address Object. Enter a name for the static route.
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3559
22-01-2012
Page 4 of 4
Specify the Specify the Specify the Specify the Click OK.
- Service = Any - Under Gateway = specify Create New Address Object. Enter a name for the local router. Specify the Zone Assignment as LAN. Specify the Type as Host. Specify the IP Address 192.168.168.254. (i.e Route IP on X0) Click OK. - Specify the interface as LAN. - Specify the metric as 1. - Click OK.
Notes:
The destination network and mask must define a logical subnet which doesn't overlap the LAN subnet. The gateway must be local to the LAN. The router at 192.168.168.254 must have a default route pointing to the firewall's LAN IP address (192.168.168.168) for the secondary subnet to be able to access the internet through the SonicWALL's connection. You can also establish static routes for the WAN, DMZ and additional interfaces as applicable, but only if the gateway router involved is a second router, not the main WAN Gateway router, for which you will not need static routes.
Related Items
UTM: IPSpoof dropped messages in the SonicWALL Log. Archived -- UTM: Configuring Multiple WAN Subnets Using Static ARP with SonicOS Enhanced Archived -- SonicOS: The log shows "IPSpoof Messages". UTM: How to route only SMTP traffic through a specific interface (e.g. Secondary WAN)
http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=3559
22-01-2012