manualshive.com logo in svg

SonicWALL SuperMassive 9800, Getting Started Manual

The SonicWALL SuperMassive 9800 is a powerful cybersecurity appliance designed to protect even the most demanding networks. Ensure a secure network by downloading the free Getting Started Manual from manualshive.com. This comprehensive manual will help you set up and optimize your SuperMassive 9800 for top-notch performance.

Share
Download
background image

50

SonicWall

 

SuperMassive

 

9800

 

Getting

 

Started

 

Guide

Secure

 

Mode

 

affords

 

the

 

same

 

level

 

of

 

visibility

 

and

 

enforcement

 

as

 

conventional

 

NAT

 

or

 

Layer

 

2

 

Bridged

 

Mode

 

deployments,

 

but

 

without

 

any

 

L3/L4

 

transformations,

 

and

 

with

 

no

 

alterations

 

of

 

ARP

 

or

 

routing

 

behavior.

 

Secure

 

Mode

 

provides

 

a

 

Next

 

Generation

 

Firewall

 

deployment

 

requiring

 

no

 

logical

 

and

 

only

 

minimal

 

physical

 

changes

 

to

 

existing

 

network

 

designs.

 

Inspect

 

Mode

Inspect

 

Mode

 

allows

 

packets

 

to

 

pass

 

through

 

the

 

firewall’s

 

switch

 

fabric,

 

but

 

they

 

are

 

also

 

mirrored

 

to

 

the

 

multi

core

 

Reassembly

Free

 

Deep

 

Packet

 

Inspection

 

(RF

 

DPI)

 

engine

 

for

 

the

 

purposes

 

of

 

passive

 

inspection,

 

classification,

 

and

 

flow

 

reporting.

 

This

 

reveals

 

the

 

firewall’s

 

Application

 

Intelligence

 

and

 

threat

 

detection

 

capabilities

 

without

 

any

 

actual

 

intermediate

 

processing.

Bypass

 

Mode

Bypass

 

Mode

 

allows

 

for

 

the

 

quick

 

and

 

non

interruptive

 

introduction

 

of

 

firewall

 

hardware

 

into

 

a

 

network.

 

Upon

 

selecting

 

a

 

point

 

of

 

insertion

 

into

 

a

 

network

 

(such

 

as

 

between

 

a

 

core

 

switch

 

and

 

a

 

perimeter

 

firewall,

 

in

 

front

 

of

 

a

 

server

 

farm,

 

or

 

at

 

a

 

transition

 

point

 

between

 

data

 

classification

 

domains),

 

the

 

firewall

 

is

 

inserted

 

into

 

the

 

physical

 

data

 

path,

 

requiring

 

a

 

very

 

short

 

maintenance

 

window.

 

One

 

or

 

more

 

pairs

 

of

 

switch

 

ports

 

on

 

the

 

firewall

 

are

 

used

 

to

 

forward

 

all

 

packets

 

across

 

network

 

segments

 

at

 

full

 

line

 

rates,

 

rather

 

than

 

passing

 

the

 

packets

 

to

 

the

 

multi

core

 

inspection

 

and

 

enforcement

 

path.

 

Bypass

 

mode

 

allows

 

the

 

administrator

 

to

 

physically

 

introduce

 

the

 

firewall

 

into

 

the

 

network

 

with

 

a

 

minimum

 

of

 

downtime

 

and

 

risk,

 

and

 

to

 

obtain

 

a

 

level

 

of

 

comfort

 

with

 

the

 

newly

 

inserted

 

component

 

of

 

the

 

networking

 

and

 

security

 

infrastructure.

 

The

 

following

 

table

 

summarizes

 

the

 

key

 

functional

 

differences

 

between

 

modes

 

of

 

interface

 

configuration.

NOTE:

 

Tap

 

Mode

 

is

 

an

 

alternative

 

to

 

using

 

Wire

 

Mode.

 

This

 

mode

 

provides

 

the

 

same

 

visibility

 

as

 

Inspect

 

Mode,

 

but

 

differs

 

in

 

that

 

it

 

ingests

 

a

 

mirrored

 

packet

 

stream

 

through

 

a

 

single

 

switch

 

port

 

on

 

the

 

firewall.

 

Tap

 

Mode

 

is

 

designed

 

for

 

use

 

in

 

environments

 

employing

 

network

 

taps,

 

smart

 

taps,

 

port

 

mirrors,

 

or

 

SPAN

 

ports

 

to

 

deliver

 

packets

 

to

 

external

 

devices

 

for

 

inspection

 

or

 

collection.

 

Tap

 

Mode

 

can

 

operate

 

on

 

multiple

 

concurrent

 

port

 

instances,

 

supporting

 

discrete

 

streams

 

from

 

multiple

 

taps.

 

Summary of Contents for SuperMassive 9800

Page 1: ...SonicWall SuperMassive 9800 Getting Started Guide Regulatory Model Number 2RK04 0AD...

Page 2: ...FFILIATES BE LIABLE FOR ANY DIRECT INDIRECT CONSEQUENTIAL PUNITIVE SPECIAL OR INCIDENTAL DAMAGES INCLUDING WITHOUT LIMITATION DAMAGES FOR LOSS OF PROFITS BUSINESS INTERRUPTION OR LOSS OF INFORMATION A...

Page 3: ...formance business firewall throughput 10 Gbps of malware protection and 24 Gbps of application inspection with intrusion prevention Gateway and client services including Capture Advanced Threat Protec...

Page 4: ...page 10 Back Panel on page 11 SuperMassive 9800 LED Usage on page 12 Port Type and LED Usage on page 13 Setup Process Overview on page 14 Chapter 3 Topics Setting Up the Appliance on page 15 Determin...

Page 5: ...ty Services on page 31 Activating and Managing Licenses using a Key on page 33 Upgrading Firmware on page 33 Chapter 5 Topics Deployment Scenarios on page 37 Deployment Scenarios on page 38 Configurin...

Page 6: ...pter 7 Topics Rack Mounting Instructions on page 59 Instructions for Rack Mounting Your Appliance on page 60 Chapter 8 Topics Product Safety and Regulatory Information on page 65 Safety and Regulatory...

Page 7: ...with the SonicWall SuperMassive 9800 appliance and provides front and rear illustrations of the SuperMassive 9800 SuperMassive 9800 Package Contents on page 8 Front Panel on page 10 Back Panel on pag...

Page 8: ...800 Getting Started Guide Missing items If any items are missing from your package contact SonicWall Support Web https support sonicwall com or https support sonicwall com contact support Email custom...

Page 9: ...g Started Guide 9 Package contents 1 4 5 6 3 2 SonicWall SuperMassive 9800 CONSOLE SDHC MGMT X23 X21 X20 X6 X4 1GE 10GE X2 X0 X1 X3 X5 X7 X22 B0 B1 ALARM TEST PWR 1 PWR 2 X14 X12 X18 X16 X10 X8 X9 X11...

Page 10: ...for Power Supplies Test Alarms and Blade modules For information describing LED colors and activity refer to the LED Activity table in this document Navigate the LCD screen for future use Display the...

Page 11: ...ns before use See Product Safety and Regulatory Information on page 65 Expansion Module Expansion Module Bay Fans 6 Power Supplies 2 For SonicWall approved expansion modules Auto throttling fans for s...

Page 12: ...ted in the chassis TEST Test boot status Off System is up and operational Solid Yellow System is starting up Blinking Yellow System is in SafeMode ALARM Alarm condition Off No alarms are present Blink...

Page 13: ...LED activity Port Type Port Name Interfaces LED Color Indicates Copper MGMT or X0 X7 Amber 1 Gbps Green 10 Gbps Blinking Yellow Data is transmitting and or receiving Off No link or 10 Mbps SFP X8 X19...

Page 14: ...of getting started with your new SonicWall SuperMassive 9800 appliance Setup process Verify Pre Configuration Requirements Start Up Management Computer Perform Initial Setup Register Appliance in Son...

Page 15: ...types a section to record configuration information and initial setup information and procedures Determining the WAN Type on page 16 System Requirements on page 16 Recording Configuration Information...

Page 16: ...server PPTP typically supports older Microsoft Windows implementations that require tunneling connectivity L2TP Layer 2 Tunneling Protocol L2TP is used to transmit Layer 2 data over IP or other Layer...

Page 17: ...us from the CLI or the bottom panel of your SuperMassive appliance LAN IP Address Select a static IP address for your SonicWall appliance that is within range of your local network default is 10 10 10...

Page 18: ...in Password Select an administrator password default is password If you are connecting with DHCP No information is usually required However some providers may require a host name Host Name If you are...

Page 19: ...ll SuperMassive 9800 appliance for initial setup Connecting your computer to the SuperMassive 9800 MGMT Management Computer SonicWall Appliance Ethernet 120V AC U S SonicWall SuperMassive 9800 CONSOLE...

Page 20: ...propriate power outlets For further information regarding power requirements refer to Product Safety and Regulatory Information on page 65 of this document SuperMassive LED Activity The Power LEDs on...

Page 21: ...192 168 168 168 The initial screen displays the options to launch the Setup Wizard or configure the appliance manually 2 Launch the SonicWall Setup Wizard by clicking the first here link This wizard h...

Page 22: ...ecting to the Internet on page 22 to connect to the appliance for Internet access and then refer to Registering Licensing and Upgrading on page 27 to begin the registration process Connecting to the I...

Page 23: ...your Internet connection If you have a router DSL modem or cable modem connect the Ethernet cable to a LAN port on the router or modem 2 Connect the other end of the Ethernet cable to the X1 WAN port...

Page 24: ...ly If you cannot view the SonicWall home page try one of these solutions Verify that the Local Area Connection settings on your computer are set to use either DHCP or a static IP on the LAN subnet Ren...

Page 25: ...ll SuperMassive 9800 appliance for Internet access Connecting your SuperMassive 9800 to the internet SonicWall Appliance SonicWall SuperMassive 9800 CONSOLE SDHC MGMT X23 X21 X20 X6 X4 1GE 10GE X2 X0...

Page 26: ...e properly seated in the port of the security appliance Troubleshooting Your LAN Connection If you do not see the SonicOS login prompt when you point your browser to the X0 LAN IP address consider the...

Page 27: ...stration is an important part of the setup process and is necessary to receive the benefits of SonicWall security services firmware updates and technical support Using MySonicWall on page 28 Creating...

Page 28: ...associate a secondary unit that can share security service licenses with your primary appliance Creating a MySonicWall Account A MySonicWall account is required to register the SonicWall SuperMassive...

Page 29: ...the System Status page 3 A message displays at the top of the screen that your SonicWall appliance is not registered Click the Register link 4 Enter your MySonicWall username your email address and pa...

Page 30: ...code can be found on the System Status page showstatus from the CLI or the bottom panel of your SuperMassive 9800 appliance 7 Click Register Synchronizing Licenses Manually To manually synchronize lic...

Page 31: ...scroll down to the Applicable Services section to select a free trial or purchase the service Free Trial of Service Click the Try icon in the Action column for the security service you wish to try for...

Page 32: ...Control Deep Packet Inspection for SSL DPI SSL Deep Packet Inspection for SSH DPI SSH Botnet Filter Content Filtering Premium Edition Stateful High Availability Active Active Clustering Service Deskt...

Page 33: ...the Applicable Services section and click the Key icon to activate the service 4 Type or paste your key into the Activation Key field and then click Submit 5 Click Synchronize After activating the se...

Page 34: ...Settings page click Create Backup SonicOS takes a snapshot of your current system state firmware and configuration preference and makes it the new System Backup firmware image Clicking Create Backup o...

Page 35: ...sing your existing configuration settings 6 In the confirmation dialog click OK The appliance restarts and then displays the login page 7 Enter your user name and password Your new SonicOS image versi...

Page 36: ...36 SonicWall SuperMassive 9800 Getting Started Guide...

Page 37: ...This section provides configuration overviews as well as deployment scenarios for your SonicWall SuperMassive 9800 Version Number Deployment Scenarios on page 38 Configuring NAT Mode Gateway on page 4...

Page 38: ...isting SonicWall gateway appliance SuperMassive appliance in addition to an existing SonicWall gateway appliance Scenario B Stateful HA Pair A SonicWall SuperMassive 9800 CONSOLE SDHC MGMT X23 X21 X20...

Page 39: ...ay device and the other SuperMassive 9800 is in Standby mode All network connection information is synchronized between the two devices so that the Standby appliance can seamlessly switch to Active mo...

Page 40: ...ed to the SonicWall ReAssembly Free RF DPI engine providing passive inspection classification and flow reporting Secure Mode Provides full Deep Packet Inspection RF DPI inspection and control of netwo...

Page 41: ...go through both an access rule and a NAT policy a fundamental part of the NAT Mode architecture The NAT policy is even used for traffic that needs no IP address translation such as traffic traveling b...

Page 42: ...imilar to Scenario A NAT Mode Gateway on page 39 with the added benefit of high availability Topics Initial High Availability Setup on page 43 Configuring High Availability Settings on page 43 Configu...

Page 43: ...security appliances LAN WAN and other interfaces are properly connected for failover Connect the HA Control and Data Links on the Primary and Secondary appliances with appropriate cables Turn on the...

Page 44: ...ndary appliance reboots Configuring HA Monitoring Settings After configuring the HA settings you need to configure the Monitoring settings for the LAN or WAN This includes configuring unique IP addres...

Page 45: ...rget host This option is not selected by default 8 Click OK You can repeat these steps to configure Monitoring on other interfaces Configuring Optional HA Settings These optional settings are can conf...

Page 46: ...of 5 and adjusting later if needed The minimum is 4 and the maximum is 99 Set the Probe Interval for the interval in seconds between communication with upstream or downstream systems The recommended...

Page 47: ...ng and Upgrading on page 27 License synchronization is used during HA so that the Secondary appliance can maintain the same level of network protection provided before the failover Completing HA Pair...

Page 48: ...o the Manage Security Services Online section 14 Click the Synchronize button This ensures that both the Primary and Secondary appliances successfully synchronize with the SonicWall license server and...

Page 49: ...ration Configuring Wire Mode This section provides an overview of the different types of Wire Mode supported on the SonicWall SuperMassive 9800 appliance and instructions for how to set up the applian...

Page 50: ...front of a server farm or at a transition point between data classification domains the firewall is inserted into the physical data path requiring a very short maintenance window One or more pairs of...

Page 51: ...Yes No No No Yes DHCP Server 1 No No No No Yes DPI Detection Yes Yes No Yes Yes DPI Prevention Yes No No No Yes DPI SSL 1 Yes No No No Yes High Availability Yes Yes Yes Yes Yes Link State Propagation...

Page 52: ...r based on the direction of traffic between the source zone and its paired interface zone For example if the source zone is WAN and the paired interface zone is LAN then WAN to LAN and LAN to WAN rule...

Page 53: ...r down With this option enabled the appliance forwards packets through the internal switch when SonicOS is restarting Disable Stateful Inspection Stateful Packet Inspection SPI is turned off when this...

Page 54: ...ce LAN WAN DMZ Custom Zone if available In the example of a WAN LAN interface pair in Wire Mode this field is your LAN zone 7 Click OK Here is an example of a Wire Mode WAN zone to LAN zone paired int...

Page 55: ...5 6 Support and Training Options This section provides overviews of customer support and training options for the SonicWall SuperMassive 9800 Customer Support on page 56 Knowledge Portal on page 56 Tr...

Page 56: ...resource that allows users to search for SonicWall documents based on the following types of search tools Browse Search for keywords Full text search For further information visit https www sonicwall...

Page 57: ...onicOS Administration Guide SonicOS Release Notes SonicOS Upgrade Guide SonicOS Log Events Reference Guide SonicOS Enterprise CLI Reference Guide Global VPN Client Administration Guide For further inf...

Page 58: ...58 SonicWall SuperMassive 9800 Getting Started Guide...

Page 59: ...ng Instructions This section provides illustrated rack mounting instructions for the SonicWall SuperMassive 9800 For more information on rack mounting requirements see Product Safety and Regulatory In...

Page 60: ...60 SonicWall SuperMassive 9800 Getting Started Guide Instructions for Rack Mounting Your Appliance Extend the slide rails Then remove the chassis member from the slide rails Assemble the Slide Rail...

Page 61: ...SonicWall SuperMassive 9800 Getting Started Guide 61 Mount Chassis Member Mount chassis with eight 8 M4 screws...

Page 62: ...62 SonicWall SuperMassive 9800 Getting Started Guide Attach Bracket to Rails Insert the barb on the bracket into the square hole Then allow the plastic inserts to fit into the square holes...

Page 63: ...SonicWall SuperMassive 9800 Getting Started Guide 63 Insert Chassis to Frame Press lever down to release the slide Install the chassis by sliding it into the frame...

Page 64: ...64 SonicWall SuperMassive 9800 Getting Started Guide...

Page 65: ...uct Safety and Regulatory Information This section provides safety and regulatory along with trademark and copyright information Safety and Regulatory Information on page 66 RoHS on page 70 Declaratio...

Page 66: ...ing bars of the 19 inch rack mount cabinet A suitably rated and approved branch circuit breaker shall be provided as part of the building installation Follow local code when purchasing materials or co...

Page 67: ...ses Produkt ist nicht daf r entwickelt um in Bereichen mit ffentlichem Zugang betrieben zu werden Wenn es in Schulen betrieben wird stellen Sie sicher dass das Ger t in einem abgeschlossenen Raum inst...

Page 68: ...hstrom akzeptiert Toleranzen Betreiben Sie das Ger t nicht au erhalb des Bereiches der auf dem Aufkleber des Ger tes angegeben ist Die Gleichstrom Konfiguration beinhaltet einen Anschlusskabel mit Erd...

Page 69: ...SonicWall SuperMassive 9800 Getting Started Guide 69 104 F 40 C SonicWall 19 SonicWall SonicWall SonicWall SonicWall SonicWall RS232 SonicWall WARNING...

Page 70: ...and their chemical symbols Lead Pb Mercury Hg Cadmium Cd Hexavalent Chromium Cr 6 Polybrominated Biphenyls PBB Polybrominated Diphenyl Ethers PBDE Chassis Bracket Mechanical parts fan heatsink etc PCB...

Page 71: ...om en us legal environmental regulatory affairs Warranty Information All SonicWall appliances come with a 1 year Limited Hardware Warranty which provides delivery of critical replacement parts for def...

Page 72: ...72 SonicWall SuperMassive 9800 Getting Started Guide...

Page 73: ...ys a year To access the Support Portal go to https support sonicwall com The Support Portal provides self help tools you can use to solve problems quickly and independently 24 hours a day 365 days a y...

Page 74: ...or training and certification To contact SonicWall Support refer to https support sonicwall com contact support To view the SonicWall End User Product Agreement EUPA see https www sonicwall com legal...

Page 75: ...SonicWall SuperMassive 9800 Getting Started Guide 75...

Page 76: ...SuperMassive 9800 Getting Started Guide Updated July 2017 232 003430 50 Rev A...

Reviews:

No comments

Related manuals for SuperMassive 9800

D-Link NetDefend DFL-1600 Manual preview
NetDefend DFL-1600
Brand: D-Link Pages: 9
IBM Proventia Network GX4004 Getting Started Manual preview
Proventia Network GX4004
Brand: IBM Pages: 3
Watchguard Firebox XTM 25 Quick Start Manual preview
Firebox XTM 25
Brand: Watchguard Pages: 11
Watchguard XTM 1520-RP Quick Start Manual preview
XTM 1520-RP
Brand: Watchguard Pages: 12
Kantech Intevo Advanced Installation Manual preview
Intevo Advanced
Brand: Kantech Pages: 21
Lanner FW-8877 User Manual preview
FW-8877
Brand: Lanner Pages: 46
IBM Proventia Management SiteProtector SP2001 Quick Start Manual preview
Proventia Management SiteProtector SP2001
Brand: IBM Pages: 4
H3C SecPath F5030 Configuration Manual preview
SecPath F5030
Brand: H3C Pages: 39
ZyXEL Communications ZyXEL ZyWALL USG-1000 User Manual preview
ZyXEL ZyWALL USG-1000
Brand: ZyXEL Communications Pages: 986
StarTech.com PEX1394A2V Instruction Manual preview
PEX1394A2V
Brand: StarTech.com Pages: 2

Brands by name

Popular brands

Load more brands