How it Works
SonicWALL
Loading...
UMA EM5000
Getting Started Manual
98 pgs1.88 Mb0

SonicWALL UMA EM5000 Getting Started Manual

PROTECTION AT THE SPEED OF BUSINESS
UMA EM5000 Getting Started Guide
SonicWALL UMA EM5000Getting Started Guide Page i
SonicWALL UMA EM5000 Getting Started Guide
This Getting Started Guide contains inst allation procedures and configuration guidelines for deploying the SonicWALL Universal Management Appliance EM5000 (SonicWALL UMA EM5000) in your network. The SonicWALL UMA EM5000 runs SonicWALL Global Management System, which is a Web-based application that can configure, manage, and monitor the status of thousands of SonicWALL Internet security appliances and non-SonicWALL appliances from a central location.
The SonicWALL UMA EM5000 provides these benefits:
Centralized security and network management
Sophisticated VPN deployment and configuration
Active device monitoring and alerts
Intelligent reporting and activity visualization
Centralized logging and offline management
Note: For complete documentation, refer to the SonicWALL
GMS Administrator’s Guide. This and other documentation
are available at: http://www.sonicwall.com/us/Support.html. For the latest SonicWALL UMA EM5000 firmware version downloads and documentation, login to the MySonicWALL website at http://www.mysonicwall.com.
Page ii Document Contents
Document Contents
This document contains the following sections:
Before You Begin - page1 Connecting and Initializing the UMA EM5000 - page 9 Registering Your Appliance - page 19 Configuring the Role of Your Appliance - page 23 Using the SonicWALL GMS Management Interface - page 41 Managing SonicWALL Appliances - page 49 Reporting - page 57 Monitoring - page 63 Front Panel LCD Controls - page 73 Support and Training Options - page 77 Product Safety and Regulatory Information - page 85
1 62 73 94 5 66 77 98
9 10 11
Page 1
Before You Begin
In this Section:
This section provides pre-configuration information before setting up your SonicWALL UMA EM5000.
Checking Package Contents - page 2
Overview of the SonicWALL UMA EM5000 - page 3
System Requirements - page 5
Recording Configuration Information - page 8
1
Page 2 Checking Package Contents
Checking Package Contents
Before setting up your SonicWALL UMA EM5000, verify that your package contains the following parts:
SonicWALL UMA EM5000 Getting Started Guide Crossover Cable Ethernet Cable
1 2 3 4
Standard Power Cord* Front Bezel Keys Rack Mounting Kit (not pictured)
5 6 7
Any Items Missing?
If any items are missing from your package, please contact SonicW ALL support.
A listing of the most current support documents are available online at:
http://www.sonicwall.com/us/Support.html
*The included power cord is intended for use in North America only. For European Union (EU) customers, a power cord is not included.
Getting Star ted Guide
SonicWALL NetworkSecurity Appliances
1
3 4
2
5
Universal Management Appliance
UMA EM5000
6
Page 3 Overview of the SonicWALL UMA EM5000
Overview of the SonicWALL UMA EM5000
Front Panel
Pressing the reset button for several seconds will result in a reboot of the SonicWALL UMA EM5000.
Do not plug devices into any ports (other than those indicated) unless explicitly instructed to do so by a SonicWALL technical support representative; doing so may void your warranty.
Universal Management Appliance
UMA EM5000
LED Indicators
Reset Button
Reboots the SonicWALL appliance
Power Switch
Allows the SonicWALL appliance to be powered on or off
D-Pad Controls
Provides up, left, right, and down buttons to navigate the LCD menu:
Up/Down: Navigate lists Left: Cancel changes / return to previous Right: Accept changes
Provides the following system status indications:
ALARM: Thermal or other alert condition* ETH0/ETH1: Ethernet link (solid), activity (blinking) HDD: Hard disk activity (blinking)
PWR: The appliance is powered (off/on)
*For a full list of alerts, refer to the SonicWALL LED Alerts technote document.
LCD Display
Provides access to basic system information, settings, and features using the D-Pad controls
Front Bezel Release
Allows access to drive bays under the front bezel for addition/replacement of hard disks (requires use of included key)
Page 4 Overview of the SonicWALL UMA EM5000
Rear Panel
For future use
USB Ports (2)
Power Supply
Provides power connection using the supplied power cables
Ethernet Port 0 (Management/LAN)
Provides configurable Gigabit-capable Ethernet connection to your local network
Provides access to a command line interface
(CLI) for SonicWALL technical support use
Serial Port
Not authorized for use unless explicitly instructed
by a SonicWALL technical support representative
VGA Port
For future use
eSATA Port (1)
Ethernet Port 1
Not authorized for use
SonicWALL UMA EM5000 Getting Started Guide Page 5
System Requirements
The SonicWALL UMA EM5000 comes with a default license to manage 10 nodes. You can purchase additional licenses on MySonicWALL. For more information on licensing additional nodes, visit:
http://www.sonicwall.com/us/Products_Solutions.html
Database Requirements
The SonicWALL UMA EM5000 comes installed with a built-in MySQL 5.0 database and supports the following databases on external systems:
On external SonicWALL UMA EM5000 appliances:
MySQL 5.0
On Windows Server 2008, Windows Server 2003 (SP1), or Windows Server 2000 (SP4):
Microsoft SQL Server 2005 (SP2)
Microsoft SQL Server 2000 (SP4)
MySQL 5.0 as bundled with SonicWALL Universal
Management Suite
Java Requirements
Java Plug-in version 1.5 or higher is required on client machines when accessing the SonicWALL UMA EM5000 or the SonicWALL GMS application. SonicWALL Universal Management Suite (UMS) automatically downloads the Java Plug-in 1.5. SonicWALL UMS services use JRE 1.5.0_06. For Microsoft SQL Server installations, SonicWALL UMS uses Tomcat 5.5.26.
Browser Requirements
The following browser requirements apply to client machines when accessing the SonicWALL UMA EM5000 or the SonicWALL GMS application:
Microsoft Internet Explorer 6.0 or higher
Mozilla Firefox 2.0 or higher
Pop-up blocker disabled The SonicWALL UMA EM5000 supports SSL 3.0/TLS 1.0 for
HTTPS management of SonicWALL appliances, and for direct login to the managed unit from the SonicWALL UMA EM5000. For enhanced security across a managed network in installations that must comply with stringent regulatory compliance and account management controls as found in such standards as PCI, SOX, or HIPAA, the following browsers have SSL 3.0/TLS 1.0 as standard encryption protocols:
Microsoft Internet Explorer 7.0 or higher
Mozilla Firefox 2.0 or higher You can set other browsers to use these protocols in the Tools
> Options page on the Advanced or Encryption tab.
Note: On Windows Server 2008, Internet Explorer 7 requires
that the URL for the SonicWALL UMA EM5000 is added to your trusted sites before it will display the appliance login page. The Trusted Sites list is available in Tools > Internet Options > Security.
Page 6 System Requirements
SonicWALL Platform and Firmware Support
Legacy or older-generation models are not supported, such as, SonicWALL XPRS/XPRS2, SonicW ALL SOHO2, SonicWALL Tele2, and SonicWALL PRO-VX.
For the most recent platform support and firmware version information, refer to the latest SonicWALL UMA EM5000 Getting Started Guide available at:
http://www.sonicwall.com/us/Support.html
Non-SonicWALL Appliance Support
The SonicWALL UMA EM5000 provides monitoring support for non-SonicWALL TCP/IP and SNMP-enabled devices and applications.
Network Requirements
To complete the SonicWALL UMA EM5000 deployment process, the following network requirements must be met:
Access to the Internet
A static IP address
Network connection must be able to accommodate 1 KB/s for each device under management. For example, if the SonicWALL UMA EM5000 is monitoring 100 SonicWALL appliances, the connection must support at least 100 KB/s.
Depending on the configuration of SonicWALL log settings and the amount of traffic handled by each device, the network traffic can vary dramatically. The 1KB/s for each device is a general recommendation. Your installation requirements may vary.
SonicWALL Platforms
SonicWALL Firmware Version
Firewall / UTM / VPN
TZ Series NSA Series PRO Series
SonicOS Enhanced 3.2 or newer SonicOS Standard 3.1or newer
SonicWALL CSM Series
SonicOS CF 2.0 or newer
Secure Remote Access
SonicWALL SMB SSL-VPN Series
SonicOS SSL-VPN 2.0 or newer
SonicWALL Aventail Series
Aventail 9.0 or newer
Backup and Recovery
SonicWALL CDP Series
SonicWALL CDP 2.3 or newer
SonicWALL UMA EM5000 Getting Started Guide Page 7
GMS Gateway Recommendations
A GMS gateway is a SonicWALL UTM appliance that allows for secure communication between the SonicWALL UMA EM5000 and managed appliance(s) using VPN tunnels. A GMS gateway is not required in all deployment scenarios, as described in this section.
When deployed, the GMS gateway must be a SonicWALL VPN­based network security appliance running SonicOS Enhanced firmware or another VPN device that is interoperable with SonicWALL VPN. SonicWALL strongly recommends that the GMS gateway be, at minimum, a SonicWALL NSA 2400 network security appliance with SonicOS Enhanced 5.1 or higher firmware.The GMS gateway provides a VPN management tunnel for each managed appliance. The number of management tunnels depends on the number of VPNs supported by the GMS gateway appliance and may be a limiting factor.
There are three SonicWALL appliance management methods with varying GMS gateway requirements. When using HTTPS as the management method, it is optional to have a GMS gateway between each SonicWALL UMA EM5000 agent server and the managed SonicWALL appliance(s). If you select Existing VPN tunnel as the management method, a gateway is optional. If you select Management VPN tunnel, you must have a GMS gateway between the SonicWALL UMA EM5000 agent appliance and the managed SonicWALL appliance(s) to allow each SonicWALL UMA EM5000 agent to securely communicate
with its managed appliance(s). The following list provides more detail on SonicWALL appliance management methods and gateway requirements:
Management VPN tunnel – A GMS gateway is required.
Each SonicWALL UMA EM5000 agent must have a dedicated gateway. The security association (SA) for this type of VPN tunnel is created when the appliance is configured for SonicWALL GMS management using the Management Tunnel method.
The SonicWALL UMA EM5000 automatically creates the
SA in the gateway. For this configuration, the gateway must be a SonicWALL VPN-based appliance. The gateway can be configured in NAT-Enabled or transparent mode.
Existing VPN tunnel – A GMS gateway is optional. The
SonicWALL UMA EM5000 can use VPN tunnels that already exist in the network to communicate with the managed appliance(s). The GMS gateway can be a SonicWALL VPN-based appliance or another VPN device that is interoperable with SonicWALL VPN.
HTTPS – A GMS gateway is optional. The SonicWALL
UMA EM5000 can use HTTPS management instead of a VPN tunnel to communicate with the managed appliance(s).
Note: A management VPN tunnel is only supported for
SonicWALL UTM appliances, but is not supported for SonicWALL CDP or SonicWALL SSL-VPN appliances.
Page 8 Recording Configuration Information
Recording Configuration Information
Before deploying the SonicWALL UMA EM5000, record the following configuration information for your reference.
SMTP Server Address:
The IP address or host name of your Simple Mail Transfer Protocol (SMTP) server. For example, mail.emailprovider.com.
HTTP Web Server Port:
The number of your Web server port if customized. The default port is 80.
HTTPS Web Server Port:
The number of your secure (SSL) Web server port if customized. The default port is 443.
UMA EM5000 Administrator Email:
The email address of a SonicWALL UMA EM5000 administrator who will receive email notifications from the SonicWALL UMA EM5000.
Sender Email Address:
The email address from which the email notifications will be sent by the SonicWALL UMA EM5000.
GMS Gateway IP:
The IP address of the GMS gateway between the SonicWALL UMA EM5000 agent and the network. This optional field is only applicable if you have a GMS gateway.
GMS Gateway Password:
The password for the GMS gateway. This optional field is only applicable if you have a GMS gateway between the SonicWALL UMA EM5000 and the network.
Database V end or:
Your database vendor if you are using a SQL Server database.
Database Host IP:
The IP address of the database host. This is not required when using the bundled MySQL database on this appliance.
Database User:
The MySQL user name for the database administrator. This is not required when using the bundled MySQL database on this appliance.
Database Password:
The MySQL password for the database administrator. This is not required when using the bundled MySQL database on this appliance.
SonicWALL UMA EM5000 Getting Started Guide Page 9
Connecting and Initializing the UMA EM5000
In this Section:
This section provides instructions for powering on your SonicWALL UMA EM5000, logging into the appliance management interface, running the Host Configuration Tool, and then connecting the appliance to your local network.
Powering On Your Appliance - page 10
Restarting Your Appliance - page 10
Powering Off Your Appliance - page 10
Logging into the Appliance Management Interface - page 10
Using the Host Configuration Tool - page 12
Connecting the SonicWALL UMA EM5000 to Your Network - page 15
Configuring a Static IP Address on Your Management Computer - page 17
2
Page 10 Powering On Your Appliance
Powering On Your Appliance
Perform the following steps to turn on your SonicWALL UMA EM5000 appliance:
1. Plug the supplied power cable into the back of the SonicWALL UMA EM5000.
2. Plug the other end of the power cable into an AC socket. The SonicWALL UMA EM5000 automatically powers on and begins the initial boot process.
The boot process may take several minutes to complete when powering on the SonicWALL UMA EM5000 for the first time.
Restarting Your Appliance
Perform the following steps to restart your SonicWALL UMA EM5000 appliance from the appliance management interface:
1. Navigate to the System > Restart page.
2. Click the Restart button.
3. In the confirmation dialog box, click OK. The system will take approximately 3 minutes to restart.
To restart your appliance by using the D-Pad controls on the front panel, see Using the Restart Option - page 76.
Powering Off Your Appliance
To power off your SonicWALL UMA EM5000 appliance, press and then quickly release the power button on the upper-right corner of the appliance front bezel.
Tip: Do not hold down the power button to shutdown.
To power off your appliance by using the D-Pad controls on the front panel, see Using the Shutdown Option - page 76.
Logging into the Appliance Management Interface
To connect a management computer to your SonicWALL UMA EM5000 and log in to the appliance management interface for the first time, perform the following steps:
1. Using the supplied cross-over cable and the computer you are using to administer the SonicWALL UMA EM5000, connect the LAN port of the computer to the Ethernet port (eth0) on the back of your SonicWALL UMA EM5000.
2. Set your management computer to have a static IP address on the 192.168.168.0/24 subnet, such as
192.168.168.50. For help with setting up a static IP address on your computer, refer to Configuring a Static IP
Address on Y our Management Computer - page 17.
SonicWALL UMA EM5000 Getting Started Guide Page 11
3. Open a Web browser on your management computer.
4. Enter http://192.168.168.169/appliance/ (the default IP address of the SonicWALL UMA EM5000) in the Location or Address bar. The SonicWALLUMA EM5000 appliance management login screen displays.
Note: One or more security warnings may display while
connecting to the appliance management interface. Choose to accept the certificates in order to log in to the SonicWALL UMA EM5000.
5. Log in to the appliance management interface using the default credentials:
User name – admin
Password – password
6. The first time you log in to the appliance, you must change the password. The login page re-displays with the default login credentials prepopulated. Enter a new password for the administrator account in the New Password field, and enter it again in the Confirm New Password field.
Click Submit.
Note: The new password must be at least 7 characters.
The Host Configuration Tool wizard starts automatically. See
Using the Host Configuration Tool - page 12.
Ethernet Port
(in the rear)
Management
Station
Page 12 Using the Host Configuration Tool
Using the Host Configuration Tool
The Host Configuration Tool is a wizard that takes you through several basic steps to get your SonicWALL UMA EM5000 configured for your network.
The wizard starts automatically after you log in for the first time and change the admin password. You can cancel the wizard at this time, which leaves the default configuration on the appliance and prevents the wizard from automatically starting again.
Note: If you log out of the appliance management interface
without actually cancelling the wizard, it will start automatically on your next login.
You can manually start the wizard at any time by clicking the Wizards button at the top-right corner of the page.
To use the Host Configuration Tool, perform the following steps:
1. If the Host Configuration Tool has started automatically, skip to step 2. If you are starting the Host Configuration Tool manually, click the Wizards button in the top right corner.
2. In the Introduction screen, click Next.
SonicWALL UMA EM5000 Getting Started Guide Page 13
3. In the Network Settings screen, configure the network settings for the SonicWALL UMA EM5000, and then click Next. Enter network settings values for the following fields:
Hostname – A descriptive name for this appliance
Domain – In the form of “sonicwall.com”; this domain
is not used for authentication
IP Address – The static IP address for the eth0
interface of the appliance
Subnet Mask – In the form of “255.255.255.0”
Default Gateway – The IP address of the network
gateway – this is the default gateway and is required for networking purposes. This is not the GMS Gateway explained earlier in this guide.
DNS Server 1 – The IP address of the primary DNS
server
DNS Server 2 (Optional) – The IP address of the
secondary DNS server
4. In the Time Settings screen, select values for the following system settings on the appliance, and click Next:
Time (hh:mm:ss) – Hours, minutes, and seconds of
current time
Date – Month, day, and year of current date
TimeZone – Select from the drop-down list
Automatically adjust clock for daylight saving time
– Select this checkbox for automatic adjust ment between standard time and daylight savings time
Page 14 Using the Host Configuration Tool
5. In the Summary screen, verify the settings. Click Back to make changes on a previous screen, or click Apply to accept the settings.
6. Wait for the settings to be applied, possibly for a few minutes. The screen displays a progress bar until it finishes, and then displays the status.
Note: If you modified the DNS settings, the services on the
appliance will restart when the changes are applied, causing a momentary connectivity loss to the Web server. Your browser will be redirected to the appliance management interface login page.
7. If you have modified the appliance IP address, you will lose contact with the appliance when the changes are applied. To connect the appliance to your network and access the appliance management interface from a computer on your LAN, see Connecting the SonicWALL UMA EM5000 to
Your Network - page 15.
SonicWALL UMA EM5000 Getting Started Guide Page 15
Connecting the SonicWALL UMA EM5000 to Your Network
To connect the SonicWALL UMA EM5000 to your network and access the appliance management interface from a management computer on your LAN, perform the following steps:
1. If you are using the same management computer that you used for initial configuration, unplug the crossover cable from the management computer and from the SonicWALL UMA EM5000.
2. Plug one end of the provided Ethernet cable (not the crossover cable) into the eth0 port on the back of your SonicWALL UMA EM5000.
3. Plug the other end of the Ethernet cable into an open port on your local network hub or switch.
4. Adjust your management computer to its previous settings prior to assigning it a static IP address on the default appliance subnet.
5. Connect your management computer to your local network.
6. On the management computer, point a browser to the new appliance IP address in the form: http://<IP address>:<port>/appliance/ It is not necessary to provide the port in the URL if you kept the default port.
Page 16 Connecting the SonicWALL UMA EM5000 to Your Network
The following network diagram illustrates how the SonicWALL UMA EM5000 connects to an example network:
San Jose, USA
Management
Console
UMA Appliance / Database
X0 X1 X2 X3 X4 X5 X6
link/spd
X0 X1 X2 X3 X4 X5 X6
activity
TZ 210
X0 X1 X2 X3 X4 X5 X6
Universal Management Appliance
UMA EM5000
SonicWALL UMA EM5000 Getting Started Guide Page 17
Configuring a Static IP Address on Your Management Computer
This section is provided for your reference when preparing to log in for the first time to your SonicWALL UMA EM5000.
Complete the following steps to configure your management computer with a static IP address:
Windows Vista
1. On the Windows Start menu, right-click Network and select Properties.
2. In the Tasks menu, click Manage networ k co nnections. The Network Connections window displays.
3. Right-click on your Local Area Connection and select Properties.
4. In the list, double-click Internet Protocol Version 4 (TCP/ IP).
5. Select Use the following IP address and type
192.168.168.50 in the IP address field.
6. Type 255.255.255.0 in the Subnet Mask field.
7. Click OK, and then click OK again for the settings to take effect.
Windows XP
1. On the Windows Start menu, highlight Connect To and then select Show All Connections.
2. Open the Local Area Connection Properties window.
3. Highlight Internet Protocol (TCP/IP), and then click Properties.
4. Select Use the following IP address and type
192.168.168.50 in the IP address field.
5. Type 255.255.255.0 in the Subnet Mask field.
6. Click OK for the settings to take effect.
Windows 2000
1. On the Windows Start menu, select Settings.
2. Open Network and Dial-up Connections.
3. Click Properties.
4. Highlight Internet Protocol (TCP/IP) and click Properties.
5. Select Use the following IP address and type
192.168.168.50 in the IP address field.
6. Type 255.255.255.0 in the Subnet Mask field.
7. Click OK for the settings to take effect.
Windows NT
1. On the Windows Start menu, highlight Settings, and then select Control Panel.
2. Open Network.
3. Double-click TCP/IP in the TCP/IP Properties window.
4. Select Specify an I P A d dres s and type 192.168.168.50 in the IP address field.
5. Type 255.255.255.0 in the Subnet Mask field.
6. Click OK, and then click OK again.
7. Restart the computer for changes to take effect.
Page 18
SonicWALL UMA EM5000 Getting Started Guide Page 19
Registering Your Appliance
In this Section:
This section provides instructions for registering your SonicWALL UMA EM5000 appliance.
Creating a MySonicWALL Account - page 20
Registering Your Appliance - page 20
Registering as an Associated Component - page 22
3
Page 20 Creating a MySonicWALL Account
Creating a MySonicWALL Account
A MySonicWALL account is required for product registration. If you already have an account, continue to the Registering Your Appliance section. Perform the following steps to create a MySonicWALL account:
1. In your browser, navigate to www.mysonicwall.com.
2. In the login screen, click the Not a registered user?
link.
3. Complete the Registration form and then click Register.
4. Verify that the information is correct and click Submit.
5. In the screen confirming that your account was created, click Continue. MySonicWALL registration information is not sold or
shared with any other company.
Registering Your Appliance
You must register your SonicWALL UMA EM5000 on MySonicWALL before you can run SonicWALL GMS on it. Registration is performed using the appliance management interface. When registration is completed, SonicWALL GMS will be licensed on your appliance.
When you log in to the SonicWALL UMA EM5000 after running the Host Configuration Tool, the Register button is displayed in the top right corner of the page. The registration process requires that the
SonicWALL UMA EM5000 have access to the Internet. To register your SonicWALL UMA EM5000, perform the
following steps:
1. In a browser, log in to the appliance management interface and click the Register button.
2. In the License Management page, type your MySonicWALL user name and password and click Submit.
SonicWALL UMA EM5000 Getting Started Guide Page 21
3. Type a descriptive name for the appliance into the Friendly Name field and then click Submit. The Serial Number field is automatically populated.
Note: If this is the first SonicWALL UMA EM5000 that you
have registered, the Friendly Name for this appliance will also be used as the name for the distributed deployment. As you register more UMA EM5000 appliances or instances of SonicWALL GMS on Windows Server systems, you will have the option of adding them to this deployment.
4. Select the Create New Deployment as radio button and then click Submit.
5. Click Continue.
6. On the License Summary page, verify that SonicWALL GMS is now licensed on your appliance.
Page 22 Registering as an Associated Component
Registering as an Associated Component
When you have a distributed SonicWALL GMS deployment involving more than one appliance or software instance of SonicWALL GMS, you can associate these components on MySonicWALL.
Note: The default 10-node management license is not
automatically increased when additional components are associated with an existing SonicWALL GMS deployment. Contact SonicWALL Technical Support to add the node licenses to the deployment.
To register a SonicWALL UMA EM5000 as an associated component of an existing SonicWALL GMS deployment, perform the following steps:
1. In a browser, log in to the appliance management interface and click the Register button.
2. Enter your MySonicWALL user name and password in the appropriate fields and then click Submit.
3. Type a descriptive name for the appliance into the Friendly Name field and then click Submit.
The Serial Number field is automatically populated.
4. The next registration page prompts you to associate this SonicWALL GMS component with an existing deployment, or create a new GMS deployment instance. Select the Select from existing Deployments radio button.
5. Select the desired deployment for the association from the drop-down list and then click Submit.
6. Click Continue.
SonicWALL UMA EM5000 Getting Started Guide Page 23
Configuring the Role of Your Appliance
In this Section:
This section provides information about configuring the role for your SonicWALL UMA EM5000, as well as information about deployment settings and services.
Overview of SonicWALL UMA EM5000 Roles - page 24
Using the Role Configuration Tool - page 25
Manually Configuring the System Role - page 31
Configuring Deployment Settings - page 38
Starting and Stopping Host Services - page 39
4
Page 24 Overview of SonicWALL UMA EM5000 Roles
Overview of SonicWALL UMA EM5000 Roles
The role that you assign to your SonicWALL UMA EM5000 defines the SonicWALL Universal Management Suite services that it will provide. SonicWALL GMS uses these services to perform management, monitoring, and reporting tasks.
Your SonicWALL UMA EM5000 can be deployed in any of the following roles:
All In One
Agent
Console
Database Only
•Monitor
Syslog Collector In the appliance management interface, clicking Details in the
same row as a role provides a list of the servic es th at run on a system in that role, and information about using the role.
As the number of managed appliances increases, a more distributed deployment provides better performance. To manage large numbers of SonicWALL appliances, you can use several SonicWALL UMA EM5000 appliances operating in different roles in a distributed deployment. You can also use Windows Server machines running SonicWALL GMS in any of the roles.
You can include the MySQL database installation with any role. The All In One or Database Only roles automatically include the MySQL database.
You can scale your deployment to handle more units and more reporting by adding more systems in the Agent role. Agents provide built-in redundancy capability, meaning that if an Agent goes down, other Agents can perform the configuration tasks and other tasks of the Agent that went down.
Note: When configuring the role for the first appliance in a
distributed deployment, you should either include the database or be prepared to provide the IP address of an existing database server.
You can meet this database objective in one of the following ways:
By selecting a role that includes the database automatically, such as All In One or Database Only
By selecting the Include Database (MYSQL) checkbox if configuring the appliance with any other role
By setting up a compatible database on another machine and providing that IP address when prompted
SonicWALL UMA EM5000 Getting Started Guide Page 25
The initial Deployment > Role page is shown below:
Using the Role Configuration Tool
The Role Configuration T ool is a wizard that guides you through the process of defining the deployment role for your SonicWALL UMA EM5000 appliance. Your system must be registered and licensed for SonicWALL GMS to run the Role Configuration Tool.
There are two ways to access the Role Configuration Tool:
After the appliance is registered and licensed for
SonicWALL GMS, the System > Status page of the appliance management interface provides a link to the wizard.
Page 26 Using the Role Configuration Tool
•The Wizards button in the top right corner of the page provides access to the Role Configuration Tool.
To use the Role Configuration Tool, perform the following steps:
1. Log in to the appliance management interface and navigate to the System > Status page.
2. Click the Click here link at the top of the page.
3. In the Introduction page of the Role Configuration Tool, click Next.
SonicWALL UMA EM5000 Getting Started Guide Page 27
4. In the Setup Type page, select Yes if you are adding this system to an existing SonicWALL GMS deployment on one or more systems. Selecting Y es indicates to the wizard that there is an existing SonicWALL GMS database on another server. Select No if this appliance is part of a new SonicWALL GMS deployment or is the only system in your GMS deployment. Click Next.
Note: If you selected Yes, skip step 5 and proceed to step 6.
5. In the Deployment Type page, select Yes if this system will be the only SonicWALL GMS server in the deployment, or select No if there will be multiple GMS servers. Click Next.
6. In the Role Configuration page, select the desired role for this system and select the Include Database (MYSQL) checkbox if you want to configure a SonicWALL GMS database on this system. Click Next.
The list of roles on this page will vary depending on your previous selections such as whether this system is part of an existing SonicWALL GMS deployment and if it is a single-server or part of a multi-server deployment. Neither the Database Only nor the Include Database (MYSQL) options are available if this system is part of an existing deployment.
Loading...
+ 68 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use