SonicWALL SonicPoint Скачать руководство пользователя страница 21 | Manualshive

Страница: 21 / 52

background image

14

S

ONIC

WALL S

ONIC

P

OINT

A

DMINISTRATOR

’

S

G

UIDE

:

5

Click on this checkbox to deselect the option. By deselecting Only allow traffic generated by a
SonicPoint, you are allowing for all the interfaces in this wireless zone to accept traffic that
originates either from a SonicPoint or other device.

6

The SonicPoint device can now receive traffic from a non-WLAN device.

Wireless Firewalling

Some high-end wireless Access Points provide the ability to control wireless Inter-client
Communications, meaning they can allow or disallow wireless clients connected to that particular
Access Point from communicating with each other. These Access Points, however, generally cannot
directly control a wireless client’s communication with a remote host, such as a wired client, an
Internet host, or even a wireless client associated with another Access Point.

The Inter-client communication control feature on the SonicWALL TZ Series 170 Wireless took this
control a step further by consolidating the Access Point, Secure Wireless Gateway and the Firewall
into a single unit--providing full firewall Access Rule applicability to all wireless traffic on that individual
unit.

Wireless Firewalling within the Secure Wireless Solutions/Architecture provides this same level of
granular control, only in a highly scalable, distributed fashion. It is a function of a design innovation
wherein all traffic that enters the wireless interfaces on a SonicPoint is forwarded back to the
managing SonicWALL security appliance where it can be processed by firewall Access Rules, NAT
Policies, and Security Services. While in Managed Mode, Wireless Firewalling allows no direct
communication between an affected wireless client and any other host, whether connected to the
same or a different SonicPoint, or whether wireless or wired; all traffic must traverse the firewall. This
can be used, for example, for the following application:

•

To control access for all wireless inter-client communications.

•

To control access for certain wireless client communications with other wireless clients.

•

To control access for wireless client communications with wired hosts, or Internet hosts.

•

To control access using Service Objects.

«
...
19
20
21
22
23
...
»

Содержание SonicPoint

Страница 1: ...COMPREHENSIVE INTERNET SECURITY SonicWALL SonicPoint and SonicPoint G Administrator s Guide Secure Wireless Solution...

Страница 2: ...ation 20 Bypass Guest Authentication 20 Customizable Authentication Pages 20 SMTP Redirection 21 Enabling External Guest Services 21 MAC Filtering Using MAC Address Objects 22 SonicPoint Profiles 22 A...

Страница 3: ...face 36 System Status 36 36 System Settings 36 37 System Firmware 37 37 System Restart 37 37 Network Interfaces 38 Wireless Status 38 Wireless 802 11a Radio 39 Wireless 802 11a Advanced 39 Wireless 80...

Страница 4: ...12 months that the product will be free from defects in materials and workmanship under normal use This Limited Warranty is not transferable and applies only to the original end user of the product S...

Страница 5: ...CLUDING WITHOUT LIMITATION DAMAGES FOR LOSS OF PROFITS BUSINESS INTERRUPTION LOSS OF INFORMATION OR OTHER PECUNIARY LOSS ARISING OUT OF THE USE OR INABILITY TO USE THE PRODUCT OR FOR SPECIAL INDIRECT...

Страница 6: ...MINISTRATOR S GUIDE v Current Documentation Check the SonicWALL documentation Web site for that latest versions of this manual and all other SonicWALL product documentation http www sonicwall com supp...

Страница 7: ...vi SONICWALL SONICPOINT ADMINISTRATOR S GUIDE...

Страница 8: ...rough a SonicWALL security appliance in Managed Mode or on its own in Stand Alone Mode For more detailed instructions on managing a SonicPoint in Managed Mode see the SonicWALL SonicOS Enhanced 2 5 Ad...

Страница 9: ...oint hardware The SonicWALL SonicPoint hardware includes SonicPoint IEEE 802 11a b g SonicPoint G IEEE 802 11g b Overview of the SonicWALL SonicPoint Hardware The SonicPoint contains both 2 4 and 5 0...

Страница 10: ...SONICWALL SONICPOINT ADMINISTRATOR S GUIDE 3 Supported Platforms The following figure details the rear view of the SonicPoint 802 11 a b g Power LAN Port Power over Ethernet Console Port...

Страница 11: ...SONICWALL SONICPOINT ADMINISTRATOR S GUIDE The SonicPoint G contains only the 2 4 GHz Radio WLAN The following figure details the front view of the SonicPoint G Power 2 4 GHz Radio Link 10 100 Activit...

Страница 12: ...ks at a variable rate while transferring data with connected 802 11a stations LAN 10 act The LAN 10 act LED blinks to indicate 10Mb LAN activity LAN link The LAN link LED illuminates steadily to indic...

Страница 13: ...r on the bottom of the SonicPoint To register your SonicPoint 1 In your Web browser log into your account at https www mySonicWALL com 2 In the list of registered products click on the link for the So...

Страница 14: ...page when you are done SonicPoint Overview As the proliferation of wireless networking continues it becomes increasingly important to support more diverse and more geographically expansive wireless ne...

Страница 15: ...total recommended number of SonicPoints per appliance Feature Platform Tri Mode Dual Band Dual Radio 802 11a b g operation for simultaneous support of 802 11a and 802 11g b clients SonicPoint 802 11a...

Страница 16: ...nts maintain their Stand Alone and Managed Mode configurations separately so that they do not conflict with or overwrite one another SonicPoints will dynamically transition from one mode to the other...

Страница 17: ...e will be activated on Wireless Zones and based on the platform the top range of addresses will be reserved for SonicPoints Refer to the table on page 3 for platform specific numbers The IP Address as...

Страница 18: ...ed SonicPoint device that is a SonicPoint for which security appliance has no stored configuration Changing the configuration on an operational SonicPoint requires modification to that SonicPoint s se...

Страница 19: ...b Layer 2 connectivity between SonicPoints and the managing SonicWALL appliance is required Wireless Zone interfaces will automatically recognize when a SonicPoint has been connected using the SonicWA...

Страница 20: ...ess Zone to accept either SonicPoint sourced traffic as well as traffic sourced from any other host Packets will continue to be tagged as they pass through the SonicPoint Providing the ability to allo...

Страница 21: ...s Point Secure Wireless Gateway and the Firewall into a single unit providing full firewall Access Rule applicability to all wireless traffic on that individual unit Wireless Firewalling within the Se...

Страница 22: ...twork 192 168 168 0 255 255 255 0 VPN 172 16 17 0 Network 172 16 17 0 255 255 255 0 VPN 172 16 18 0 Network 172 16 18 0 255 255 255 0 VPN 172 16 20 0 Network 172 16 20 0 255 255 255 0 VPN From Host To...

Страница 23: ...oints Consider the above example where there are two SonicPoints connected to the WLAN Zone where WiFiSec is enforced SonicPoint1 does not have WPA enabled but WPA is enabled and is Trusted as WiFiSec...

Страница 24: ...the client s ability to send and receive data during the scanning process This varies from vendor to vendor Some clients cleverly employ power saving to make this process more seamless they signal the...

Страница 25: ...the following configuration In the above configuration the WLAN Zone has WiFiSec enforced but the WLAN GroupVPN does not have Use DHCP to obtain Virtual IP for this Connection enabled ClientA associat...

Страница 26: ...ope As ClientA moves from SonicPoint1 to SonicPoint2 both of which use the same SSID corpNet roaming occurs within the same L2 segment When ClientA re associates the physical adapter IP address 10 1 1...

Страница 27: ...st communications controls occur at the Wireless Gateway layer below the Firewall Access Rules and will not manifest itself in the Access Rule table If IP addresses are known or predictable it will st...

Страница 28: ...bound e mail for all hotspot visitors regardless of their client software configurations Note The potential for using this sort of arrangement for spamming must be mitigated by anti spam software runn...

Страница 29: ...onicWALL Discovery Protocol SDP is a layer 2 protocol employed by SonicPoints and devices running SonicOS Enhanced 2 5 and higher SDP is the foundation for the automatic provisioning of SonicPoint uni...

Страница 30: ...aged Mode two additional SonicPoint transitions have been defined to help provide uninterrupted connectivity and high availability The first such transition is specific to configurations wherein two S...

Страница 31: ...detected resulting in Managed Mode but then becomes unavailable such as it is powered off or physically disconnected from the SonicPoint the SonicPoint will poll at a longer interval 6 minutes and the...

Страница 32: ...o The LED blinks at a constant rate when the SonicPoint is ready to receive traffic using the 5 GHz radio 802 11a and blinks at a variable rate when transferring data LAN 10 activity The LAN 10 act LE...

Страница 33: ...optional If you do not assign a default profile for a zone SonicPoints in that zone will use the first profile in the list Assign one or more interfaces to the Wireless zone Attach the SonicPoints to...

Страница 34: ...settings for the 802 11a 5GHz band radio Enable 802 11a Radio Check this to automatically enable the 802 11a radio bands on all SonicPoints provisioned with this profile Note 802 11a radio settings o...

Страница 35: ...dio For most 802 11a advanced options the default settings give optimum performance Hide SSID in Beacon Check this option to have the SSID broadcast as part of the wireless beacon rather than as a sep...

Страница 36: ...tings are appropriate when you allow both the SonicPoint b and g clients to be present at the same time Since g clients transmit at a high rate the b clients that operate at a slower rate cannot under...

Страница 37: ...Hz radio settings Modifications to profiles will not affect units that have already been provisioned and are in an operational state Configuration changes to operational SonicPoint devices can occur i...

Страница 38: ...riate for the amount of devices you have The undiscriminating addressing requirement sometimes proved unnecessary or disruptive To configure a number of SonicPoint access points perform the following...

Страница 39: ...t device 2 Navigate to the System Administration page 3 From the Download URL section of the page change the path of the SonicPoint image retrieval point in the SonicPoint Download URL http field Make...

Страница 40: ...nnected SonicPoints and displays updated settings on the page Enable and Disable Individual SonicPoints You can enable or disable individual SonicPoints on the Wireless SonicPoints page 1 Check the bo...

Страница 41: ...cations are restored or the SonicPoint is deleted from the SonicOS device s table Updating Firmware If the SonicOS security appliance detects that it has a firmware update available for a SonicPoint i...

Страница 42: ...Management Interface 1 Configure your management station If you are connecting to the LAN port on the SonicPoint directly from your managements station or through only the PoE injector you need to co...

Страница 43: ...f the SonicOS Management Interface see Managing SonicPoints in Managed Mode for instructions on managing the SonicPoint in Stand Alone Mode System Status System Settings Provides a view of operating p...

Страница 44: ...an interface to upload new firmware using FTP Requires access to an external FTP server hosting a SonicPoint Firmware image SonicPoint firmware can be downloaded from a SonicOS Enhanced 2 5 or greate...

Страница 45: ...38 SONICWALL SONICPOINT ADMINISTRATOR S GUIDE Network Interfaces Wireless Status Configuration of LAN IP netmask and default gateway View statistics for both radios and associated Station status...

Страница 46: ...NICWALL SONICPOINT ADMINISTRATOR S GUIDE 39 Managing the SonicPoint in Stand Alone Mode Wireless 802 11a Radio Wireless 802 11a Advanced 802 11a 5GHz Radio settings Advanced 802 11a 5GHz Radio setting...

Страница 47: ...40 SONICWALL SONICPOINT ADMINISTRATOR S GUIDE Wireless 802 11g Radio Wireless 802 11g Advanced 802 11g b 2 4GHz Radio settings Advanced 802 11g b 2 4GHz Radio settings...

Страница 48: ...image The default IP address of the Safe Mode and Stand Alone GUI is 192 168 1 20 Safe Mode does not require a login while Stand Alone Mode employs a default username of admin and a password of passw...

Страница 49: ...ating in to the factory defaults It does not reset the configuration for the other mode Depending on the mode the SonicPoint is operating in and the amount of time you press the reset button the Sonic...

Страница 50: ...the FCC regulatory domain it supports and additional 5 channels with channel frequencies of 5200 5240 5280 5765 and 5805Mhz The 2 4Ghz 802 11g b radio supports a maximum of 14 channels depending on t...

Страница 51: ...Sensitivity typical 802 11a 82dBm 6Mbps 81dBm 9Mbps 79dBm 12Mbps 78dBm 18Mbps 75dBm 24Mbps 72dBm 36Mbps 70dBm 48Mbps 68dBm 54Mbps 802 11b g 91dBm 1Mbps 90dBm 2Mbps 89dBm 5 5Mbps 84dBm 6Mbps 82dBm 9Mb...

Страница 52: ...mes mentioned herein may be trademarks and or registered trademarks of their respective companies Specifications and descriptions subject to change with out notice T 408 745 9600 F 408 745 9300 www so...

Отзывы:

Нет отзывов

Похожие инструкции для SonicPoint

Бренд: 2N Страницы: 11

Бренд: 2N Страницы: 5

Бренд: 2N Telekomunikace Страницы: 24

Бренд: H3C Страницы: 33

S5500-SI Series

Бренд: H3C Страницы: 1217

Бренд: 3Com Страницы: 2443

Бренд: H3C Страницы: 3

Бренд: H3C Страницы: 4

Бренд: Danfoss Страницы: 61

Бренд: Netopia Страницы: 38

HiGain HLU-231 List 8F

Бренд: ADC Страницы: 7

Бренд: NETGEAR Страницы: 84

Бренд: Justec Страницы: 61

Бренд: Xenya Страницы: 189

Бренд: B+B SmartWorx Страницы: 52

Бренд: Selta Страницы: 83

Бренд: Lutron Electronics Страницы: 4

ipRocketLink 3086FR

Бренд: Patton electronics Страницы: 12

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды