SONICWALL FIREWALL

OPERATIONAL MANUAL
 TABLE OF CONTENTS
INTRODUCTION ........................................................................................................................................ ii
1. Concept of Operation......................................................................................................................... 1
1.1. Parts ................................................................................................................................................. 1
1.2. Basic Operation .............................................................................................................................. 1
1.3. Technical Specifications ................................................................................................................ 3
1.4. Checklists ........................................................................................................................................ 4
1.5. Report Template ............................................................................................................................. 4
2. Maintenance ........................................................................................................................................ 4
2.1. Basic Care ....................................................................................................................................... 4
2.2. Schedule of Maintenance ............................................................................................................. 4
2.3. Procedures ...................................................................................................................................... 5
2.4. Parts and Supplies ......................................................................................................................... 5
2.5. Detailed Cost................................................................................................................................... 6
2.6. Checklists ........................................................................................................................................ 6
2.7. Report Template ............................................................................................................................. 7
3. Troubleshooting .................................................................................................................................. 7
3.1. Testing ............................................................................................................................................. 7
3.2. Various Components ..................................................................................................................... 8
3.3. Checklists ........................................................................................................................................ 8
3.4. Report Template ............................................................................................................................. 9

i
 INTRODUCTION

The main objective of the DICT Government Emergency Communications

System (GECS) Project is to provide support and augmentation in the communication
systems using the different equipment before, during, and after disasters.

A firewall is a network security device that monitors incoming and outgoing

network traffic and decides whether to allow or block specific traffic based on a defined
set of security rules. Firewalls have been a first line of defense in network security. The
Firewall installed in the GECS Mobile Operations Vehicle for Emergency (MOVE) is the
Sonicwall NSA 3650 Firewall.

The GECS provided this operational manual to give the user a brief discussion
about the basic operation, maintenance and troubleshooting of this device. This
includes the basic configuration, technical specifications, basic care and testing of
components of this device.

ii
1. Concept of Operation
1.1. Parts
1.1.1. Front Panel

1.1.2. Back Panel

1.2. Basic Operation

1.2.1. Connecting to Power
To connect the Sonicwall to Power:
1. Connect the Power Cord into the Power port at the Back Panel.
2. Plug it into the power outlet.

1
1.2.2. Connecting to Devices

To connect your management computer to the NSA appliance for initial setup:
1. Using the provided Ethernet cable, connect one end to your management
computer and the other to the MGMT port on the appliance. The MGMT port
is a dedicated 1 Gigabit Ethernet interface for appliance management and
SafeMode access.
2. Connect the power cord to the appliance and to an appropriate electrical
outlet (100-240 volts).

1.2.3. Connecting the LAN and WAN interfaces

To connect the interfaces:

1. Using a standard Ethernet cable, connect the appliance LAN interface (X0) to
your local network switch or device, or to your computer.
2. Using another Ethernet cable, connect the appliance WAN interface (X1) to
your Internet connection.

2
 If you have a router, DSL modem, or cable modem, connect the Ethernet cable
to a LAN port on the router or modem.

1.3. Technical Specifications

The technical specification of the Sonicwall Firewall is listed below.

Feature Description
General
Security processing cores 4
2 x 10-GbE SFP+,
8 x 2.5-GbE SFP,
4 x 2.5-GbE,
Interfaces
12 x 1-GbE,
1 GbE Management,
1 Console
Built-in-storage 32GB
CLI, SSH, Web UI, Capture Security
Management
Center, GMS, REST APIs
Firewall/VPN Performance
Maximum Speed 3.75 Gbps
VPN Throughput 1.5 Gbps
Network Interface Speed 1 Gb
Protection Level UTM Enabled
Networking
Static (DHCP, PPPoE, L2TP and PPTP
IP address assignment client), Internal DHCP server, DHCP
Relay
VLAN Interfaces 256
BGP, OSPF, RIPv1/v2, static routes,
Routing Protocols
policy-based routing
TCP/IP, ICMP, HTTP, HTTPS, IPSec,
Standards
ISAKMP/IKE, SNMP, DHCP, PPPoE,
L2TP, PPTP, RADIUS, IEEE 802.3

3
 1.4. Checklists
This checklist will serve as a guide in during inspection of the parts of the
device.

√
Parts checklist
Present Missing
1. Power Cord
2. Ethernet Cable
3. Serial Console Cable

1.5. Report Template

Use this report during inspection of the parts of the device. Note the missing
parts or components of the device.

Name of Equipment
Manufacturer
Serial number
Date Missing Parts Checked by

2. Maintenance
Preventive maintenance is needed to avoid damages to the equipment. Also, the
equipment downtime is decreased and the number of major repairs is reduced.

2.1. Basic Care

2.1.1. Upgrading to the Latest Firmware
SonicWall recommends that you run the latest available firmware on your
appliance by upgrading the factory-installed firmware to the latest version
available on MySonicWall.

2.1.2. Cleaning the Device – a build-up of dust on the router can cause
overheating of device and sometimes prevent the controls from being
operated properly. A clean, damp cloth can be used to wipe the scale.

2.2. Schedule of Maintenance

The firewall shall be scheduled for maintenance every 6 months to check
and inspect the different parts especially the wires, cables, and the air filters.
This is to prevent the device from overheating that might affect the internal
components.

4
2.3. Procedures
1. Update your SonicOS firmware to the current latest version to get current
features and functions (for normal requirements use current General Release).

2. Backup for disaster and recovery, backup often. Create and save system export
(EXP) files and a Tech Support Report (TSR) at each critical stage (before and
after any change).

3. Protect Administrator accounts at all cost. Use strong passwords and change
often. Limit Administration access to only where it is really needed.

4. Use Network Time Protocol (NTP) NTP is a widely used protocol used to
synchronize the clocks of routers and other hardware devices on the Internet. If any
of the device clocks is wrong, then not only logs and troubleshooting information
can be incorrect, but also security policy objects such as schedulers can have
unintended results.

2.4. Parts and Supplies

The following are the parts and supplies of Sonicwall NSA 3650 Firewall.

Parts Image
1. Power Cord

2. Ethernet Cable

3. Serial Console Cable

5
2.5. Detailed Cost
Below is the list of the parts and its corresponding replacement cost.

Parts Cost
1. Power Cord Php
2. Ethernet Cable Php
3. Serial Console Cable Php

2.6. Checklists
This checklist will serve as a guide in monitoring the operability and functionality
of the device.

√
Checklist
Y N
Power Supply
1. Check if the power cord is still functional
2. Check if the power mode button is still functional
3. Check if the SafeMode Button is still functional
Cables
1. Inspect for possible damages on the console cables
2. Inspect for possible damages on the Ethernet cables
3. Check if there are loose cable connections
Interfaces
1. Check if all ports of the device is still functional
Air Ventilation
1. Check that the airflow is unobstructed around the device and into
the air intake vents
2. Inspect the air filter at the bottom front of the device if it
obstructed with dusts
LED Indicator
1. The System Status LEDs are still functional
Software
1. Is the Firmware updated?

6
 2.7. Report Template
Use this report during testing at the integration level and higher to track the
disposition of known problems. If necessary, create multiple copies of this report
related to deficiencies found in the test results.

Name of Equipment
Manufacturer
Serial number
Date Maintenance Description Performed by

3. Troubleshooting
3.1. Testing
3.1.1. To test your Internet connection:
1. Verify that the Local Area Connection settings on your management computer
are set to use either DHCP or a static IP on the LAN subnet. Restart it or
renew the DHCP address.
2. Verify that the WAN interface being used for Internet connectivity is not
configured in Wire Mode or Tap Mode.
3. Restart your Internet router or modem to communicate with the DHCP client
in SonicOS on the appliance.
4. Check all cable connections and IP addresses.

3.1.2. To troubleshoot your Internet Connection:

1. Reset your computer to use DHCP IP addressing and connect it to your LAN
subnet or to the appliance X0 interface.
2. Point your browser to the X0 IP address configured during initial setup
(default: 192.168.168.168).
3. Log into SonicOS using the configured credentials (default:
admin/password).
4. In a command prompt window, type: ping sonicwall.com. You should receive
a reply.
5. Open another browser tab or window and point it to
https://www.sonicwall.com or another valid web site. If the site displays, you
have correctly configured your appliance.

7
3.2. Various Components
3.2.1. Interface ports – Check port if they are still functional. Mostly, the ports
are damaged due to accumulation of excessive dusts.
3.2.2. System Status LEDs – if the Ethernet Cables are inserted in the port, the
link status LEDs must be green at both ends. If not, check the cable you are
using.
3.2.3. Power Cord – Check for possible damages of the power cord.

3.3. Checklists
This checklist will serve as a guide in monitoring the operability and functionality
of the device.

√
Checklist
Y N
Power Supply
1. Check if the power cord is still functional
2. Check if the power mode button is still functional
3. Check if the SafeMode Button is still functional
Cables
1. Inspect if there are damages on the console cables
2. Inspect if there are damages on the Ethernet cables
3. Check if there are loose cable connections
Interfaces
1. Check if all ports of the device is still functional
Air Ventilation
1. Check that the airflow is unobstructed around the device and into
the air intake vents
2. Inspect the air filter at the bottom front of the device if it
obstructed with dusts

8
3.4. Report Template
Use this report during testing at the integration level and higher to track the
disposition of known problems. If necessary, create multiple copies of this report
related to deficiencies found in the test results

Name of Equipment
Manufacturer
Serial number
Troubleshooting Action Performed Performed
Date
Description by