Sonicwall NSA 2400MX Getting Started Guide
SonicWALL Network Security Appliances
NETWORK SECURITY
NSA 2400MX
Getting Started Guide
SonicWALL NSA 2400MX
123
4
Getting Started Guide
This Getting Started Guide provides instructions for basic installation
and configuration of the SonicWALL Network Security Appliance
(NSA) 2400MX running SonicOS Enhanced.
Setup
Step Procedure Est. Time
Pre-Configuration Tasks - page 1
Registering Your Appliance - page 5
Deployment Scenarios - page 13
Enabling Essential Security Services - page 23
Additional Configuration and Information
Support and Training Options - page 29
Product Safety and Regulatory Information - page 37
SonicWALL NSA 2400MX Getting Started Guide Page i
SonicWALL NSA 2400MX Front Panel
2400MX
CLI Port
For connection to SonicOS command
line interface
USB Ports
For use with SonicWALL approved modules
WAN Port (X1)
Provides WAN connectivity
Provides dedicated LAN/WAN port status as follows:
M0
M1
ALARM
TEST
POWER
Status Lights
10/100/1000 Ethernet (X18-X25)
10/100 Ethernet (X2-X17)
Provide 10/100 Ethernet connectivity
Provide 10/100/1000 Ethernet connectivity
LAN Port (X0)
Provides LAN connectivity
module 0 is inserted
module 1 is inserted
minor/major alarm*
firmware loading/booting/safemode*
unit is powered on
*Refer to The SonicOS LED Reference Guide
for more information on ALARM and TEST lights
Page ii SonicWALL NSA 2400MX Front Panel
SonicWALL NSA 2400MX Rear Panel
PML
I
o
M1 / M0 Expansion Bays
Expansion bays for additional SonicWALL
modular accessories
On (I) and Off (o) power switch for the
SonicWALL appliance
AC power connection for use with
the supplied power cable
AC Power Supply
Power Switch
SonicWALL NSA 2400MX Getting Started Guide Page iii
Page iv SonicWALL NSA 2400MX Front Panel
Pre-Configuration Tasks
1
In this Section:
This section provides pre-configuration information. Review this section before setting up your SonicWALL NSA 2400MX appliance.
• Checking NSA 2400MX Package Contents - page 2
• Obtaining Config uration Information - page 3
• Verifying System Requirements - page 4
SonicWALL NSA 2400MX Getting Started Guide Page 1
Checking NSA 2400MX Package Contents
Any Items Missing?
If any items are missing from your package,
please contact SonicW ALL support.
A listing of the most current support documents are available online
at: <http://www.sonicwall.com/us/support.html>
*The pictured power cord is intended for use in North America only.
(x6)
(x2)
*
2400MX
Network Security Appliance
Before setting up your SonicWALL NSA appliance, verify that your
package contains the following parts:
• NSA 2400MX Appliance
• Ethernet Cable
• DB9 -> RJ45 (CLI) Cable
• Rack Mounting Kit
• Standard Power Cord*
• Getting Started Guide
Page 2 Checking NSA 2400MX Package Contents
Obtaining Configuration Information
Record and keep for future reference:
Registration Information
Serial Number:
Authentication Code:
Networking Information
LAN IP Address:
. . .
Subnet Mask:
. . .
Ethernet WAN IP Address:
. . .
Administrator Information
Admin Name:
Admin Password:
Record the serial number found on
the bottom panel of your
SonicWALL appliance.
Record the authentication code
found on the bottom panel of your
SonicWALL appliance.
Select a static IP address for your
SonicWALL appliance that is within
the range of your local subnet. If
you are unsure, you can use the
default IP address
(192.168.168.168).
Record the subnet mask for the
local subnet where you are
installing your SonicWALL
appliance.
Select a static IP address for your
Ethernet WAN. This setting only
applies if you are already using an
ISP that assigns a static IP address.
Select an administrator account
name. (default is admin)
Select an administrator password.
(default is password)
Internet Service Provider (ISP) Information
Record the following information about your current Internet service:
If you connect
Please record
using
DHCP No information is usually required , although some
providers may require a host name.
Static IP
Host name:
IP Address:
. . .
Subnet Mask: . . .
Default Gateway: . . .
Primary DNS: . . .
DNS 2 (optional): . . .
DNS 3 (optional): . . .
Note: If you are not using one of the network configurations above,
refer to <http://www.sonicwall.com/us/support.html>.
SonicWALL NSA 2400MX Getting Started Guide Page 3
Verifying System Requirements
Before you begin the setup process, verify that you have:
• An Internet connection
• A Web browser supporting Java Script and HTTP uploads.
Supported browsers include the following:
Accepted
Browser
Internet
Explorer
Firefox 3.0 or higher
Opera 9.10 or higher for
Chrome 4.0 or higher
Safari 3.0 or higher for MacOS
Page 4 Verifying System Requirements
Browser Version
Number
6.0 or higher
Windows
Registering Your Appliance
2
In this Section:
This section provides instructions for registering your SonicWALL NSA 2400MX appliance.
• Creating a MySonicWALL Account - page 6
• Registering and Licensing Your Appliance - page6
• Upgrading Firmware on Your SonicWALL - page 9
Note: Registration is an important part of the setup process and is necessary to receive the benefits of SonicWALL security services,
firmware updates, and technical support.
SonicWALL NSA 2400MX Getting Started Guide Page 5
Creating a MySonicWALL Account
Registering and Licensing Your Appliance
If you already have a MySonicWALL account, skip to the
Registering and Licensing Your Appliance section. Otherwise,
perform the following steps to create an account:
1. In your browser, navigate to www.mysonicwall.com.
2. In the login screen, click the Not a registered user link.
3. Complete the Registration form and click Register.
4. Verify the information is correct and click Submit.
5. In the screen confirming that your account was created,
click Continue.
This section contains the following subsections:
• Product Registration - page 6
• Licensing Security Services and Software - page 7
• Verifying Bu nd l ed Services - page 7
• Activating Pre-Purchased Services - page 8
• Purchasing a New Service - page 8
Product Registration
You must register your SonicWALL security appliance on
MySonicWALL to enable full functionality.
1. Login to your MySonicWALL account. If you do not have an
account, you can create one at www.mysonicwall.com.
2. On the main page, type the appliance serial number in
the Register A Product field. Then click Ne xt.
3. On the My Products page, under Add New Product,
type the friendly name for the appliance, select the
Product Group if any, type the authentication code into
the appropriate text boxes, and then click Regis ter.
4. On the Product Survey page, fill in the requested
information and then click Continue.
Page 6 Creating a MySonicWALL Account
Licensing Security Services and Software
The Service Management - Associated Products page in
MySonicWALL lists security services, support options, and
software, such as ViewPoint, that you can purchase or try with a
free trial. For details, click the Info button. Your current licenses
are indicated in the Status column with either a license key or
an expiration date. Y ou can purchase additional services now or
at a later time.
The following list highlights several products and services that
are available for the SonicWALL NSA 2400MX:
• Service Bundles:
• Client/Server Anti-Virus Suite
• Comprehensive Gateway Security Suite
• Gateway Services:
• Gateway Anti-Virus, Anti-Spyware,
Intrusion Prevention, Application Firewall
• Global Management System
• Content Filtering: Premium Edition
• Comprehensive Anti-Spam
• VPN Upgrade
• Desktop and Server Software:
• Enforced Client Anti-Virus and Anti-Spyware
• Global VPN Client
• Global VPN Client Enterprise
•ViewPoint
• SSL VPN
• Support Services:
• Dynamic Support 8x5
• Dynamic Support 24x7
• Software and Firmware Updates
• Hardware Warranty
Verifying Bundled Services
If your initial purchase included security services or other
software bundled with the appliance, these licenses are
enabled on MySonicWALL when the SonicWALL appliance is
delivered to you and reflected in the Service Management page
on MySonicWALL.
SonicWALL NSA 2400MX Getting Started Guide Page 7
Activating Pre-Purchased Services
Purchasing a New Service
To manage your licenses, perform the following tasks:
1. Navigate to the My Products page and click the registered
product you want to manage.
2. If you purchase a service subscription or upgrade from a
sales representative separately, you will receive an
Activation Key for the product. This key is emailed to you
after online purchases, or is on the front of the certificate
that was included with your purchase. Locate the product
on the Service Management page and click Enter Key in
that row.
3. In the Activate Service page, type or paste your key into
the Activation Key field and then click Submit. Depending
on the product, you will see an expiration date or a license
key string in the Status column when you return to the
Service Management page.
To license a 30-day trial for a service:
1. Click Try in the Service Management page. A 30-day free
trial is immediately activated.
2. Review the status page, which should display relevant
information including the acti vation status, expiration date,
number of licenses, and links to installation instructions or
other documentation.
To purchase a full license for a service:
1. Click Buy Now.
2. In the Buy Service page, type the number of licenses you
want in the Quantity column for either the 1-year, 2-year,
or 3-year license row and then click Add to Cart.
3. In the Checkout page, follow the instructions to complete
your purchase.
The MySonicWALL server will generate a license key for the
product. The key is added to the license keyset. You can use
the license keyset to manually apply all active licenses to your
SonicWALL appliance.
The service management screen will display the product you
licensed with an expiration date when activation is complete.
Page 8 Registering and Licensing Your Appliance
Upgrading Firmware on Your SonicWALL
Although your SonicWALL ships with the most current firmware
available at the time of manufacture, firmware upgrades that
provide new features and functionality updates are always
available through MySonicWALL.
This section provides instructions to upgrade your firmware to
the latest version of SonicOS:
• Obtaining the Latest Firmware - page 9
• Saving a Backup Copy of Your Preferences - page 9
• Upgrading the Firmware with Current Settings - page 10
• Using SafeMode to Upgrade Firmware - page 10
Obtaining the Latest Firmware
1. To obtain a new SonicOS Enhanced firmware image file for
your SonicWALL security appliance, connect to your
MySonicWALL account at:
<http://www.mysonicwall.com>
2. Copy the new SonicOS Enhanced image file to a
convenient location on your management station.
Saving a Backup Copy of Your Preferences
Before beginning the update process, make a system backup of
your SonicWALL security appliance configuration settings. The
backup feature saves a copy of the current configuration
settings on your SonicWALL security appliance, protecting your
existing settings in the event that it becomes necessary to
return to a previous configuration state. The System Backup
shows you the current configuration and firmware in a single,
clickable restore image.
In addition to using the backup feature to save your current
configuration state to the SonicWALL security appliance, you
can export the configuration preferences file to a directory on
your local management station. This file serves as an external
backup of the configuration preferences, and can be imported
back into the SonicWALL security appliance.
Perform the following procedures to save a backup of your
configuration settings and export them to a file on your local
management station:
1. On the System > Settings page, click Create Backup.
Your configuration preferences are saved. The System
Backup entry is displayed in the Firmware Management
table.
2. T o export your settings to a local file, click Export Settings.
A popup window displays the name of the saved file.
SonicWALL NSA 2400MX Getting Started Guide Page 9
Upgrading the Firmware with Current Settings
Using SafeMode to Upgrade Firmware
Perform the following steps to upload new firmware to your
SonicWALL appliance and use your current configuration
settings upon startup.
1. Download the SonicOS Enhanced firmware image file from
MySonicWALL and save it to a location on your local
computer.
2. On the System > Settings page, click Upload New
Firmware.
3. Browse to the location where you saved the SonicOS
Enhanced firmware image file, select the file and click the
Upload button.
4. On the System > Settings page, click the Boot icon in the
row for Uploaded Firmware.
Note: On the System > Settings page, click the Boot icon in
the row for Uploaded Firmware with Factory Default
Settings.
5. In the confirmation dialog box, click OK. The SonicWALL
restarts and then displays the login page.
6. Enter your user name and password. Your new SonicOS
Enhanced image version information is listed on the
System > Settings page.
If you are unable to connect to the SonicWALL security
appliance’s management interface, you can restart the
SonicWALL security appliance in SafeMode. The SafeMode
feature allows you to recover quickly from uncertain
configuration states with a simplified management interface that
includes the same settings available on the System > Settings
page.
To use SafeMode to upgrade firmware on the SonicWALL
security appliance, perform the following steps:
1. Connect your computer to the X0 port on the SonicWALL
appliance and configure your IP address with an address
on the 192.168.168.0/24 subnet, such as 192.168.168.20.
2. To configure the appliance in SafeMode, perform one of
the following:
• Use a narrow, straight object, such as a straightened
paper clip or a toothpick, to press and hold the reset
button on the back of the security appliance for
30-seconds. The reset button is in a small hole next to
the power supply.
• The Test light starts blinking when the SonicWALL
security appliance has rebooted into SafeMode.
Page 10 Upgrading Firmware on Your SonicWALL
Loading...