manualshive.com logo in svg

SonicWALL SonicPoint, Administrator'S Manual

The SonicWALL SonicPoint offers high-performance wireless connectivity for secure networks. Access the Administrator's Manual for in-depth configuration and setup guidance. Download the manual for free from our website to maximize the capabilities of your SonicPoint.

Share
Download
background image

S

ONIC

WALL S

ONIC

P

OINT

 A

DMINISTRATOR

S

 G

UIDE

23

SonicPoint Overview

As part of the provisioning process, SonicOS will assign the discovered SonicPoint device a unique 
name, and it will record its MAC address and the interface and Zone on which it was discovered. It 
can also automatically assign the SonicPoint an IP address, if so configured, so that the SonicPoint 
can communicate with an authentication server for WPA-EAP support. SonicOS will then use the 
profile associated with the relevant Zone to configure the 2.4GHz and 5GHz radio settings.

Modifications to profiles will not affect units that have already been provisioned and are in an 
operational state. Configuration changes to operational SonicPoint devices can occur in two ways: 

through manual configuration changes

: Appropriate when a single, or a small set of changes 

are to be affected, particularly when that individual SonicPoint requires settings that are different 
from the profile assigned to its Zone.

through un-provisioning

: Deleting a SonicPoint unit effectively un-provisions the unit, or clears 

its configuration and places it into a state where it will automatically engage the provisioning 
process anew with its peer SonicOS device. This technique is useful when the profile for a Zone is 
updated or changed, and the change is set for propagation. It can be used to update firmware on 
SonicPoints, or to simply and automatically update multiple SonicPoint units in a controlled 
fashion, rather than changing all peered SonicPoints at once, which can cause service disruptions.

Hardware Failover and LAN Port Disconnect Transitions

While in Managed Mode, two additional SonicPoint transitions have been defined to help provide 
uninterrupted connectivity and high availability. The first such transition is specific to configurations 
wherein two SonicWALL appliances are paired in a Hardware Failover Mode. The following is a brief 
explanation of Hardware Failover (HF) concepts which will be useful in understanding the integration 
of SonicPoints into HF scenarios:

Primary

: Describes the principal 

hardware

 unit itself. The 

Primary

 identifier is a manual 

designation, and is not subject to conditional changes. Under normal operating conditions, the 

Primary

 hardware unit operates in an 

Active

 role.

Backup

: Describes the subordinate 

hardware

 unit itself. The 

Backup

 identifier is a relational 

designation, and is assumed by a unit when paired with a 

Primary

 unit. Under normal operating 

conditions, the 

Backup

 unit operates in an 

Idle

 Mode. Upon failure of the Primary unit, the Backup 

unit will assume the 

Active

 role.

Active

: Describes the operative condition of a hardware unit. The 

Active

 identifier is a logical 

role

 

that can be assumed by either a Primary or Backup hardware unit.

Idle

: Describes the passive condition of a hardware unit. The 

Idle

 identifier is a logical 

role

 that can 

be assumed by either a Primary or Backup hardware unit. The Idle unit assumes the Active role in 
the event of determinable failure of the Active unit.

In the illustration, if the Primary unit fails and the Backup unit becomes Active, SonicWALL2 will 
broadcast a special SDP message informing all SonicPoints to drop their existing peering relationship 
with SonicWALL1, and to immediately re-peer with SonicWALL2. The SonicPoint configurations will 
already be synchronized as a result of the HF state-synchronization, and wireless service will be 
restored in parallel with the failover.

Summary of Contents for SonicPoint

Page 1: ...COMPREHENSIVE INTERNET SECURITY SonicWALL SonicPoint and SonicPoint G Administrator s Guide Secure Wireless Solution...

Page 2: ...ation 20 Bypass Guest Authentication 20 Customizable Authentication Pages 20 SMTP Redirection 21 Enabling External Guest Services 21 MAC Filtering Using MAC Address Objects 22 SonicPoint Profiles 22 A...

Page 3: ...face 36 System Status 36 36 System Settings 36 37 System Firmware 37 37 System Restart 37 37 Network Interfaces 38 Wireless Status 38 Wireless 802 11a Radio 39 Wireless 802 11a Advanced 39 Wireless 80...

Page 4: ...12 months that the product will be free from defects in materials and workmanship under normal use This Limited Warranty is not transferable and applies only to the original end user of the product S...

Page 5: ...CLUDING WITHOUT LIMITATION DAMAGES FOR LOSS OF PROFITS BUSINESS INTERRUPTION LOSS OF INFORMATION OR OTHER PECUNIARY LOSS ARISING OUT OF THE USE OR INABILITY TO USE THE PRODUCT OR FOR SPECIAL INDIRECT...

Page 6: ...MINISTRATOR S GUIDE v Current Documentation Check the SonicWALL documentation Web site for that latest versions of this manual and all other SonicWALL product documentation http www sonicwall com supp...

Page 7: ...vi SONICWALL SONICPOINT ADMINISTRATOR S GUIDE...

Page 8: ...rough a SonicWALL security appliance in Managed Mode or on its own in Stand Alone Mode For more detailed instructions on managing a SonicPoint in Managed Mode see the SonicWALL SonicOS Enhanced 2 5 Ad...

Page 9: ...oint hardware The SonicWALL SonicPoint hardware includes SonicPoint IEEE 802 11a b g SonicPoint G IEEE 802 11g b Overview of the SonicWALL SonicPoint Hardware The SonicPoint contains both 2 4 and 5 0...

Page 10: ...SONICWALL SONICPOINT ADMINISTRATOR S GUIDE 3 Supported Platforms The following figure details the rear view of the SonicPoint 802 11 a b g Power LAN Port Power over Ethernet Console Port...

Page 11: ...SONICWALL SONICPOINT ADMINISTRATOR S GUIDE The SonicPoint G contains only the 2 4 GHz Radio WLAN The following figure details the front view of the SonicPoint G Power 2 4 GHz Radio Link 10 100 Activit...

Page 12: ...ks at a variable rate while transferring data with connected 802 11a stations LAN 10 act The LAN 10 act LED blinks to indicate 10Mb LAN activity LAN link The LAN link LED illuminates steadily to indic...

Page 13: ...r on the bottom of the SonicPoint To register your SonicPoint 1 In your Web browser log into your account at https www mySonicWALL com 2 In the list of registered products click on the link for the So...

Page 14: ...page when you are done SonicPoint Overview As the proliferation of wireless networking continues it becomes increasingly important to support more diverse and more geographically expansive wireless ne...

Page 15: ...total recommended number of SonicPoints per appliance Feature Platform Tri Mode Dual Band Dual Radio 802 11a b g operation for simultaneous support of 802 11a and 802 11g b clients SonicPoint 802 11a...

Page 16: ...nts maintain their Stand Alone and Managed Mode configurations separately so that they do not conflict with or overwrite one another SonicPoints will dynamically transition from one mode to the other...

Page 17: ...e will be activated on Wireless Zones and based on the platform the top range of addresses will be reserved for SonicPoints Refer to the table on page 3 for platform specific numbers The IP Address as...

Page 18: ...ed SonicPoint device that is a SonicPoint for which security appliance has no stored configuration Changing the configuration on an operational SonicPoint requires modification to that SonicPoint s se...

Page 19: ...b Layer 2 connectivity between SonicPoints and the managing SonicWALL appliance is required Wireless Zone interfaces will automatically recognize when a SonicPoint has been connected using the SonicWA...

Page 20: ...ess Zone to accept either SonicPoint sourced traffic as well as traffic sourced from any other host Packets will continue to be tagged as they pass through the SonicPoint Providing the ability to allo...

Page 21: ...s Point Secure Wireless Gateway and the Firewall into a single unit providing full firewall Access Rule applicability to all wireless traffic on that individual unit Wireless Firewalling within the Se...

Page 22: ...twork 192 168 168 0 255 255 255 0 VPN 172 16 17 0 Network 172 16 17 0 255 255 255 0 VPN 172 16 18 0 Network 172 16 18 0 255 255 255 0 VPN 172 16 20 0 Network 172 16 20 0 255 255 255 0 VPN From Host To...

Page 23: ...oints Consider the above example where there are two SonicPoints connected to the WLAN Zone where WiFiSec is enforced SonicPoint1 does not have WPA enabled but WPA is enabled and is Trusted as WiFiSec...

Page 24: ...the client s ability to send and receive data during the scanning process This varies from vendor to vendor Some clients cleverly employ power saving to make this process more seamless they signal the...

Page 25: ...the following configuration In the above configuration the WLAN Zone has WiFiSec enforced but the WLAN GroupVPN does not have Use DHCP to obtain Virtual IP for this Connection enabled ClientA associat...

Page 26: ...ope As ClientA moves from SonicPoint1 to SonicPoint2 both of which use the same SSID corpNet roaming occurs within the same L2 segment When ClientA re associates the physical adapter IP address 10 1 1...

Page 27: ...st communications controls occur at the Wireless Gateway layer below the Firewall Access Rules and will not manifest itself in the Access Rule table If IP addresses are known or predictable it will st...

Page 28: ...bound e mail for all hotspot visitors regardless of their client software configurations Note The potential for using this sort of arrangement for spamming must be mitigated by anti spam software runn...

Page 29: ...onicWALL Discovery Protocol SDP is a layer 2 protocol employed by SonicPoints and devices running SonicOS Enhanced 2 5 and higher SDP is the foundation for the automatic provisioning of SonicPoint uni...

Page 30: ...aged Mode two additional SonicPoint transitions have been defined to help provide uninterrupted connectivity and high availability The first such transition is specific to configurations wherein two S...

Page 31: ...detected resulting in Managed Mode but then becomes unavailable such as it is powered off or physically disconnected from the SonicPoint the SonicPoint will poll at a longer interval 6 minutes and the...

Page 32: ...o The LED blinks at a constant rate when the SonicPoint is ready to receive traffic using the 5 GHz radio 802 11a and blinks at a variable rate when transferring data LAN 10 activity The LAN 10 act LE...

Page 33: ...optional If you do not assign a default profile for a zone SonicPoints in that zone will use the first profile in the list Assign one or more interfaces to the Wireless zone Attach the SonicPoints to...

Page 34: ...settings for the 802 11a 5GHz band radio Enable 802 11a Radio Check this to automatically enable the 802 11a radio bands on all SonicPoints provisioned with this profile Note 802 11a radio settings o...

Page 35: ...dio For most 802 11a advanced options the default settings give optimum performance Hide SSID in Beacon Check this option to have the SSID broadcast as part of the wireless beacon rather than as a sep...

Page 36: ...tings are appropriate when you allow both the SonicPoint b and g clients to be present at the same time Since g clients transmit at a high rate the b clients that operate at a slower rate cannot under...

Page 37: ...Hz radio settings Modifications to profiles will not affect units that have already been provisioned and are in an operational state Configuration changes to operational SonicPoint devices can occur i...

Page 38: ...riate for the amount of devices you have The undiscriminating addressing requirement sometimes proved unnecessary or disruptive To configure a number of SonicPoint access points perform the following...

Page 39: ...t device 2 Navigate to the System Administration page 3 From the Download URL section of the page change the path of the SonicPoint image retrieval point in the SonicPoint Download URL http field Make...

Page 40: ...nnected SonicPoints and displays updated settings on the page Enable and Disable Individual SonicPoints You can enable or disable individual SonicPoints on the Wireless SonicPoints page 1 Check the bo...

Page 41: ...cations are restored or the SonicPoint is deleted from the SonicOS device s table Updating Firmware If the SonicOS security appliance detects that it has a firmware update available for a SonicPoint i...

Page 42: ...Management Interface 1 Configure your management station If you are connecting to the LAN port on the SonicPoint directly from your managements station or through only the PoE injector you need to co...

Page 43: ...f the SonicOS Management Interface see Managing SonicPoints in Managed Mode for instructions on managing the SonicPoint in Stand Alone Mode System Status System Settings Provides a view of operating p...

Page 44: ...an interface to upload new firmware using FTP Requires access to an external FTP server hosting a SonicPoint Firmware image SonicPoint firmware can be downloaded from a SonicOS Enhanced 2 5 or greate...

Page 45: ...38 SONICWALL SONICPOINT ADMINISTRATOR S GUIDE Network Interfaces Wireless Status Configuration of LAN IP netmask and default gateway View statistics for both radios and associated Station status...

Page 46: ...NICWALL SONICPOINT ADMINISTRATOR S GUIDE 39 Managing the SonicPoint in Stand Alone Mode Wireless 802 11a Radio Wireless 802 11a Advanced 802 11a 5GHz Radio settings Advanced 802 11a 5GHz Radio setting...

Page 47: ...40 SONICWALL SONICPOINT ADMINISTRATOR S GUIDE Wireless 802 11g Radio Wireless 802 11g Advanced 802 11g b 2 4GHz Radio settings Advanced 802 11g b 2 4GHz Radio settings...

Page 48: ...image The default IP address of the Safe Mode and Stand Alone GUI is 192 168 1 20 Safe Mode does not require a login while Stand Alone Mode employs a default username of admin and a password of passw...

Page 49: ...ating in to the factory defaults It does not reset the configuration for the other mode Depending on the mode the SonicPoint is operating in and the amount of time you press the reset button the Sonic...

Page 50: ...the FCC regulatory domain it supports and additional 5 channels with channel frequencies of 5200 5240 5280 5765 and 5805Mhz The 2 4Ghz 802 11g b radio supports a maximum of 14 channels depending on t...

Page 51: ...Sensitivity typical 802 11a 82dBm 6Mbps 81dBm 9Mbps 79dBm 12Mbps 78dBm 18Mbps 75dBm 24Mbps 72dBm 36Mbps 70dBm 48Mbps 68dBm 54Mbps 802 11b g 91dBm 1Mbps 90dBm 2Mbps 89dBm 5 5Mbps 84dBm 6Mbps 82dBm 9Mb...

Page 52: ...mes mentioned herein may be trademarks and or registered trademarks of their respective companies Specifications and descriptions subject to change with out notice T 408 745 9600 F 408 745 9300 www so...

Reviews:

No comments

Related manuals for SonicPoint

Canon Vb-C60 - Ptz Network Camera Setup Manual preview
Vb-C60 - Ptz Network Camera
Brand: Canon Pages: 30
H3C H3C S7500E-X Command Reference Manual preview
H3C S7500E-X
Brand: H3C Pages: 16
H3C SR6600 SPE-FWM Configuration Manual preview
SR6600 SPE-FWM
Brand: H3C Pages: 24
Raritan DOMINION SX - Quick Setup Manual preview
DOMINION SX -
Brand: Raritan Pages: 4
Delta Electronics Ethernet Communication Module DVPEN01-SL Manual preview
Ethernet Communication Module DVPEN01-SL
Brand: Delta Electronics Pages: 54
Paradyne Comsphere 3510 User Manual preview
Comsphere 3510
Brand: Paradyne Pages: 85
Balluff BIC 1I12-P2A25-M30MI1-BPX05-110 User Manual preview
BIC 1I12-P2A25-M30MI1-BPX05-110
Brand: Balluff Pages: 12
UHP UHP-1200 Installation Manual preview
UHP-1200
Brand: UHP Pages: 15
Ubiquiti LiteBeam M5-23 Quick Start Manual preview
LiteBeam M5-23
Brand: Ubiquiti Pages: 21
CELOT CTR-180 User Manual preview
CTR-180
Brand: CELOT Pages: 34
AC&NC JetStor NAS 724UX User Manual preview
JetStor NAS 724UX
Brand: AC&NC Pages: 117
Cypress PSoC 4 S Series Quick Start Manual preview
PSoC 4 S Series
Brand: Cypress Pages: 4
i-MO OptiBond 210 C Series Hardware Installation Manual preview
OptiBond 210 C Series
Brand: i-MO Pages: 16
MA lighting 8Port Node Quick Manual preview
8Port Node
Brand: MA lighting Pages: 49
Watchguard Firebox T20 Hardware Manual preview
Firebox T20
Brand: Watchguard Pages: 21
Belkin Home Base F5L049ea User Manual preview
Home Base F5L049ea
Brand: Belkin Pages: 59
MicroNet SP3362F User Manual preview
SP3362F
Brand: MicroNet Pages: 49
PairGain HiGain Line Unit HLU-388 Quick Installation Manual preview
HiGain Line Unit HLU-388
Brand: PairGain Pages: 7

Brands by name

Popular brands

Load more brands