How to Setup DMZ on SonicWALL

by Ruri Ranbe
Standard mode permits you to configure DMZ for a range of IP addresses.

Standard mode permits you to configure DMZ for a range of IP addresses.

A demilitarized zone enables one or more computers to access the outside network unrestricted. You can set up DMZ on SonicWALL in network address translation mode or standard mode. NAT mode assigns private IP addresses to the computers on the network but configures these devices to communicate with the Internet using a single public address. Standard mode disables NAT, requiring all devices that connect to the WAN to use public addresses. The steps to enable DMZ vary depending on which mode your appliance uses.

NAT Mode

1

Log in to the appliance from a Web browser; most SonicWALL devices use the address "192.168.168.168." Click "Network" followed by "Interfaces."

2

Locate an unassigned zone in the list, and then click the "Configure" icon to open the Edit Interface window.

3

Select "DMZ" from the "Zone" drop-down menu, and then select "Static" from the "IP Assignment" drop-down menu.

4

Enter the IP address and subnet mask of the target device into the appropriate fields. Enter an optional note into the "Comment" field.

5

Check an option next to Management to enable remote management of the DMZ interface via the protocol you selected.

6

Check "HTTP" or "HTTPS" next to User Login to require users with management rights to sign into the SonicWALL appliance.

7

Click "OK" to set up DMZ on the firewall.

Standard Mode

1

Log in to the appliance from a Web browser. The default address for most devices is "192.168.168.168." Click "Network" and then "Interfaces."

2

Locate an unassigned zone in the list. Click the "Configure" icon to open the Edit Interface window.

3

Select "DMZ" from the "Zone" drop-down menu, and then select "Transparent Mode" from the "IP Assignment" drop-down menu.

4

Click the "Transparent Range" drop-down menu, and then click "Create New Address Object" to open the Add Address Object window.

5

Enter a name for the object into the appropriate field, and then choose "WAN" from the "Zone Assignment" drop-down menu.

6

Select "Host" from the "Type" drop-down menu to permit a single IP address to connect to the interface. Select "Range" to enable a range of IP addresses to connect to the interface. Select "Network" to enable an entire subnet to connect to the interface.

7

Enter the appropriate IP address or range of addresses into the "IP Address" field. If you selected "Network" in Step 6, enter the subnet mask of the network into the "Subnet Mask" field.

8

Click "OK" to create the address object. Select the object from the "Transparent Range" drop-down menu.

9

Enter an optional note into the "Comment" field. Check an option next to Management to enable remote management of the DMZ interface via the protocol you selected.

10

Check "HTTP" or "HTTPS" next to User Login to require users with management rights to sign into the SonicWALL appliance. Click "OK" to set up the interface.

About the Author

Ruri Ranbe has been working as a writer since 2008. She received an A.A. in English literature from Valencia College and is completing a B.S. in computer science at the University of Central Florida. Ranbe also has more than six years of professional information-technology experience, specializing in computer architecture, operating systems, networking, server administration, virtualization and Web design.

Photo Credits

  • photo_camera Stockbyte/Retrofile/Getty Images