SonicWALL OS 2.x quick start WAN-WAN Load Balancing & Fail Over, WAN Failover

Page 17

Sonic OS 2.x Quick Start Guide

WAN-WAN Load Balancing & Fail Over

SonicOS Enhanced provides the capability to connect two WAN links and configure them for Load Balancing and/or Fail Over. This is the perfect feature for customers who want to back up their T1 lines with DSL or Cable. The dual WAN links can be setup either as Active-Active or Active- Passive. Depending on your customer’s requirements, you’ll need to determine which set up best fits their needs.

Active-Active This provides outbound load balancing between the two WAN links based on one of the three available algorithms. Inbound load balancing is not directly supported. However, selected services (E-Mail and VPN) can be configured to failover from one WAN link to the other. These two scenarios require static IP addresses on both WAN links.

Link states can be monitored in one of two ways. By default, each WAN link will be monitored at the physical level. For most applications, customers will also want to configure Probe Monitoring, which adds monitoring at a logical level using either TCP connection requests or ICMP. This allows a failure of an upstream device to be detected.

Active-Passive Only the Primary WAN link is active, unless a link failure is detected. Although the Secondary link is unused except during a failure of the Primary, greater redundancy can be achieved for inbound traffic. For example, a third-party dynamic DNS client could be used to ensure that DNS records always reflect the currently active WAN link.

WAN Failover

In order to configure the Failover and Load Balancing feature, you must first configure the second WAN interface and assign it to the WAN Zone. For our example, the Secondary WAN is an xDSL line with a dynamic IP via PPPoE. You’ll need to configure your Secondary WAN based on the type of connection your customer provides.

On the Pro 4060, configure the settings as follows:

1.From the GUI, select the NETWORK button and then WAN Failover & LB.

2.To enable outbound load balancing, click the enable checkbox. With only this checkbox enabled, the Sonicwall only tests the physical link status.

16

Page 16 Page 18
Image 17
Page 16 Page 18
Contents SonicWALL SonicOS 2.x Enhanced Quick Start Guide PRO IntroductionSecurity Zones and Objects Basic WAN & LAN ConfigurationCreating a Custom Zone Security Zones Configuration Objects/Groups Overview Define the Objects Objects and Groups ConfigurationDefine the Group Public LAN Server Firewall Access RulesMail Server Firewall Policy Mail Server NAT PolicySonic OS 2.x Quick Start Guide Create Firewall Rule User Level Authentication and SchedulesCreate Users & Groups Building VPNs Defining the Security Associations SA Sonic OS 2.x Quick Start Guide Sonic OS 2.x Quick Start Guide WAN Failover WAN-WAN Load Balancing & Fail OverSonic OS 2.x Quick Start Guide WAN Load Balancing WAN IP

OS 2.x specifications

SonicWALL OS 2.x represents a significant step forward in firewall, VPN, and security appliance technology. This operating system is specifically designed to deliver robust security solutions for businesses of all sizes. SonicWALL, a brand known for its high-performance network security products, leverages advanced features in OS 2.x to elevate the capability of its devices, ensuring that organizations can defend against the ever-evolving landscape of cyber threats.

One of the main features of SonicWALL OS 2.x is its Integrated Intrusion Prevention System (IPS). This technology continuously monitors network traffic to detect and block potential threats in real-time. The IPS is crucial for safeguarding sensitive data by preventing unauthorized access and attacks related to vulnerabilities in applications and services.

Another critical characteristic of OS 2.x is its support for deep packet inspection. This functionality allows SonicWALL devices to thoroughly analyze incoming and outgoing packets, ensuring that malicious content is identified and dealt with appropriately. By parsing the packet data beyond simple header information, deep packet inspection enables the detection of sophisticated threats that might evade standard filtering techniques.

Additionally, SonicWALL OS 2.x includes advanced VPN capabilities, making it easier for remote employees to securely connect to the corporate network. With support for SSL VPN and IPSec, this OS ensures that data remains encrypted and protected during transmission. This aspect is particularly essential for organizations with remote workforces, as it allows employees to access necessary resources without compromising security.

The operating system also features an intuitive and user-friendly graphical user interface (GUI). This interface provides administrators with a streamlined approach to managing security policies, monitoring performance, and making real-time adjustments to firewall settings. The ease of use significantly reduces the complexity associated with managing sophisticated security configurations.

Moreover, SonicWALL OS 2.x integrates with a range of networking technologies including VLAN support and dual WAN failover. This ensures that network performance remains optimal, even during hardware failures or unexpected surges in traffic, contributing greatly to overall business continuity.

In summary, SonicWALL OS 2.x combines a suite of advanced security features with an intuitive management interface, making it an essential solution for organizations looking to enhance their cybersecurity posture. The technologies and characteristics embedded within this operating system exemplify SonicWALL’s commitment to providing reliable and effective security solutions in an increasingly complex digital world.
Top Page Image Contents