WXA: Configuring TCP Acceleration on SonicWall WXA Appliances & Software and deployment Scenarios

How to configure TCP acceleration on SonicWall WXA Appliances and deployment scenarios

Following are the deployment modes where SonicWall WAN Acceleration devices can be deployed inconjunction with SonicWall UTM Appliances to optimize TCP Acceleration

1. Site-Site VPN - IPsec/Tunnel Mode

2. Routed Mode - Using Route Statements

3. Layer 2 Bridge Mode

Typical deployment involves two Appliances between Headquarters and remote offices to accelerate traffic

TCP Acceleration uses transparent TCP Proxy. User has to tell the managing SonicWall UTM Appliance what Network traffic needs to be sent to SonicWall WXA Appliance for TCP acceleration
If using Site-Site IPSec VPN, by default if you enable TCP Acceleration on a VPN Policy, UTM  chooses the local and destination network defined for TCP acceleration
If using Site-Site Tunnel Interface VPN, when defining route statements, you can specify if the traffic should  be subjected to TCP Acceleration
If using regular Layer 2 bridge or route mode, when defining route statements, you can specify if the traffic should  be subjected to TCP Acceleration

Enable TCP Acceleration Globally on SonicWall WXA Appliance by navigating to WXA Appliance -> TCP acceleration from the Managing SonicWall UTM Appliance

.

1. Site-Site VPN

Most common deployments use Site-Site VPN Traffic to be accelerated and involve 2 SonicWall WXA Appliances (one at each end of Site-Site VPN ) and 2 Managing SonicWall UTM appliances

(Configuring Site-Site IPSEC VPN/Tunnel Based VPN is not shown here. How to enable TCP acceleration is shown here)

  2. Route Mode

Involves 2 SonicWall WXA Appliances  and 2 Managing SonicWall UTM appliances. In this mode, Source and Destination traffic that is specified in the Route Statements are accelerated. This type of TCP acceleration is typically used in a private MPLS scenario .Each end requires that these route statements are in place. Here is an example of a route statement where TCP acceleration can be enabled and specify the source and destination traffic that needs to be accelerated. Route Statements on Managing SonicWall UTM appliance can be configured by navigating to Network->Routing on UTM appliance

 3. Layer 2 Bridge Mode:

In this mode, typically route statements with source and destination networks with TCP acceleration needs to be enabled. SonicWall WXA Appliance needs to be connected to unused Physical Interface just like any deployments. Here is an example of the topology and configuration.