Re: Valid Sonicwall Config?
From: mrsimpleton (mrsimpleton_at_angelfire.com)
Date: 04/19/04
- Next message: R D S: "Re: Zone alarm and ebay password"
- Previous message: Matteo Cangi: "monowall wireless problem"
- In reply to: Walt: "Valid Sonicwall Config?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 19 Apr 2004 13:26:49 -0700
I'm going to explain this in general and let you come to your own
conclusions.
IP numbers that can be assigned to computers and stuff are in ranges
like...
10.0.0.1 - 10.0.0.254
192.168.1.1 - 192.168.1.254
This is for a Subnet Mask of 255.255.255.0
IP numbers like 10.0.0.0 and 192.168.1.0 are... I call them network
addresses as they tell the computer what network it is on. You don't
use these numbers.
IP numbers like 10.0.0.255 and 192.168.1.255 are network broadcasts.
It's what the computer uses to broadcast a message to all the other
computers it can talk to on it's subnet. You don't use these numbers
either.
What's a subnet? Let me explain this by example.
A computer with an IP number of 192.168.1.101 with a subnet mask of
255.255.255.0 can talk to all computers from 192.168.1.1 thru
192.168.1.254.
A computer with an IP number of 192.168.1.101 with a subnet mask of
255.255.0.0 can talk to all computers from 192.168.1.1 thru
192.168.254.254.
A computer with an IP number of 192.168.1.101 with a subnet mask of
255.0.0.0 can talk to all computers from 192.168.1.1 thru
192.254.254.254.
You get the idea.
Now in order for these 192.168.1.x computers with a subnet mask of
255.255.255.0 to talk to computers out side of their subnet, they have
to go through a router to get there. A router connects different
subnets together. This is where NAT comes in and has to be enabled.
Now, the router has 2 IP numbers. 1 IP number is on the same subnet as
you are, (the other is on the other subnet) and since in this example
you are on the 192.168.1.x subnet, the IP on the router that you can
talk to is usually 192.168.1.1. This is your Default Gateway. Gateway
IP's usually, but not always, end in .1. If this was a 10.0.0.x
subnet, then the gateway ip would most likely be 10.0.0.1. You have to
specify the Gateway IP on each computer that is going to use the
router to talk to the internet.
Along with that, you have to specify the DNS IP numbers of the DNS
servers your computers are going to use. Depending on how your router
works, this IP number is either going to be the same as the gateway IP
or it's going to be the IP number of your ISP's DNS Servers.
Now a thing called DHCP can do all this configuring for you. Usually
all this is just as simple as, you turn DSL modem on, you let it sink
to your ISP.
Next with your Router connected to your DSL modem on the Router's WAN
port, and with your DSL username and password in your Router, and your
Router set to use DHCP, you turn your Router on and let it get it's IP
number from your ISP. All that stuff about Gateways & DNS Server will
be self configured.
Finally with your computers set to use DHCP, connected to the Router
on it's lan port, and your Router set to be a DHCP Server, you turn
your computers on and they will get all there IP numbers, subnet
masks, gateways and dns server IP numbers from your Router.
And you are on the internet. It can be that simple. Now whether your
Router has a firewall or if it's firewall is configured properly is
something you will have to check.
Now you are probably asking how and where does NAT come into this.
Well, each of those private IP Numbers, 192.168.x.x or 10.x.x.x, are
switched with the IP number on your Router's WAN port when they leave
the Router to the internet. When the data comes back to your Router,
from the internet, they are switched back again and continue on to the
computers they came from in the first place. That's basicly how NAT
works in this case.
Now you say you have 5 static IP numbers from your ISP? Well, you can
either do 1 of 2 things.
You can either use one of them and configure the WAN port on your
Router to it with still keeping the DHCP Server running on your
Router's LAN port for your other computer.
Or you can forget the router and get yourself a switch. Plug your DSL
modem and all your computers into the switch, and assign each on of
those static IP number to each of your computers. But you will have to
figure out what the Default Gateway and DNS Server IP Numbers are.
Well, have fun.
mr_simpleton
"Walt" <waltq@comcast.net> wrote in message news:<M--dncKlAsluHR_dRVn-gQ@comcast.com>...
> I recently purchased a Sonicwall SOHO3 to protect a network with a DSL
> Internet connection. I found the documentation to be totally useless. The
> On-line Knowledge base is even worse.
>
> After trying a number of IP address combinations, I finally arrived at this
> one that seems to be working.
>
> DSL router is a Cayman 3546. I left NAT enabled on the router. The LAN ip
> address of the router is 10.0.0.256. Subnet 255.255.255.0.
>
> For the Sonicwall, I gave it a LAN address of 192.168.1.256. I specified
> the WAN gateway to be the Lan address of the Cayman (10.0.0.256) and gave it
> (the Sonicawall) a WAN address of 10.0.0.1. The Sonicwall is also using
> NAT. For the Internal servers (Exchange server and a few PC Anywhere PC's),
> I created pinholes pointing to 10.0.0.1 on the Cayman and then defined the
> internal IP addresses of the "public" servers on the Sonicwall.
>
> This seems to be working OK. My concern is that perhaps I should have
> disabled NAT on the Cayman and used more of the public static IP addresses
> allocated by the ISP. I have a block of 5 statics from the ISP that are all
> sequential on the same subnet.
>
> If I should have used the public static IP's. Please give me a scenario of
> how the IP addresses on the Cayman and Sonicwall should be assigned.
>
> Thanks in advance for any help you can provide!
>
> Walt
> waltq@comcast.net
- Next message: R D S: "Re: Zone alarm and ebay password"
- Previous message: Matteo Cangi: "monowall wireless problem"
- In reply to: Walt: "Valid Sonicwall Config?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
