SonicWALL TZ 180 Humidifier User Manual


 
Network > Interfaces
140
SonicOS Enhanced 4.0 Administrator Guide
Physical Interfaces
Physical interfaces must be assigned to a Zone to allow for configuration of Access Rules to
govern inbound and outbound traffic. Security zones are bound to each physical interface
where it acts as a conduit for inbound and outbound traffic. If there is no interface, traffic cannot
access the zone or exit the zone.
For more information on zones, see “Network > Zones” on page 191.
The first two interfaces, LAN and WAN are fixed interfaces, permanently bound to the Trusted
and Untrusted Zone types. The TZ 170 series appliances can also have two special interfaces
for Modem and WLAN. The remaining Interfaces can be configured and bound to any Zone
type, depending on your SonicWALL security appliance.
Permanently Assigned Interfaces
SonicWALL TZ 170 and 180 series: LAN - The single LAN interface includes all five LAN
ports on the back of the TZ 170 and 180 series appliances.
SonicWALL TZ 190 Wireless: Wireless WAN (WWAN).
User-definable Interfaces
SonicWALL TZ 170, TZ 170 SP, TZ 180, and TZ 190 security appliances include one user
definable interface, OPT.
SonicOS Enhanced Secure Objects
The SonicOS Enhanced scheme of interface addressing works in conjunction with network
zones and address objects. This structure is based on secure objects, which are utilized by
rules and policies within SonicOS Enhanced. Physical interface objects include the LAN1
through LAN5, WAN, OPT, Modem and WLAN ports. Address objects comprise a host, a
network, a range of addresses, or a MAC address.
Secured objects include interface objects that are directly linked to physical interfaces and
managed in the Network > Interfaces page. Address objects are defined in the Network >
Address Objects page. Service and Scheduling objects are defined in the Firewall section of
the SonicWALL security appliance Management Interface, and User objects are defined in the
Users section of the SonicWALL security appliance Management Interface.
Zones are the hierarchical apex of SonicOS Enhanced’s secure objects architecture. SonicOS
Enhanced includes pre-defined zones as well as allow you to define your own zones.
Predefined zones include LAN, DMZ, WAN, WLAN, and Custom. Zones can include multiple
interfaces, however, the WAN Zone is restricted to a total of two interfaces. Within the WAN
zone, either one or both WAN interfaces can be actively passing traffic depending on the WAN
Failover and Load Balancing configuration on the Network > WAN Failover & LB page.
For more information on WAN Failover and Load Balancing on the SonicWALL security
appliance, see Chapter 10 Setting Up Network WAN Failover and Load Balancing.
At the zone configuration level, the Allow Interface Trust setting for zones automates the
processes involved in creating a permissive intra-zone Access Rule. It creates a
comprehensive Address Object for the entire zone and a inclusively permissive Access Rule
from zone address to zone addresses.