en-US
search-icon

SonicOS 6.2 Admin Guide

Introduction

Preface

a
 

Conventions

Text Conventions

 

Convention

Use

Bold

Highlights items you can select in the SonicOS management interface.

Menu Item > Menu Item

Indicates a multiple step Management Interface menu choice. For example, Security Services > Content Filter means select Security Services, then select Content Filter.

Screen Text

Indicates text as you would see it on a computer screen or would enter in a field or on a command line. For example, myDevice > show alerts

Message Icons

These special messages refer to noteworthy information, and include a symbol for quick identification:

* 
WARNING: Important information that warns about a potential for property damage, personal injury, or death
* 
CAUTION: Important information that cautions about features affecting firewall performance, security features, or causing potential problems with your SonicWall appliance.
* 
TIP: Useful information about security features and configurations on your SonicWall appliance.
* 
IMPORTANT: Important information on a feature that requires call out for special attention.
* 
NOTE: Supporting information on a feature.
* 
MOBILE: Useful information about mobile apps for your SonicWall appliance.
* 
VIDEO: Links to videos containing further information about a feature on your SonicWall appliance.

About SonicOS

The web-based SonicOS management interface allows you to configure and administer SonicWall network security appliances (firewalls) running SonicOS 6.2:

 

SuperMassive 9800

NSA 6600

TZ600

SOHO Wireless

SuperMassive 9600

NSA 5600

TZ500/TZ500 Wireless

 

SuperMassive 9400

NSA 4600

TZ400/TZ400 Wireless

 

SuperMassive 9200

NSA 3600

TZ300/TZ300 Wireless

 

 

NSA 2600

 

 

Management Interface

SonicOS provides an easy-to-use, graphical interface for configuring your network security appliance. The following sections provide an overview of the key management interface features:

Dynamic User Interface

Table statistics and log entries are dynamically updated within the user interface without requiring users to reload their browsers. Active connections, user sessions, VoIP calls, and similar activities can be disconnected or flushed dynamically with a single click on the Delete icon in the Flush or Logout column.

This dynamic interface is designed to have no impact on the Web server, CPU utilization, bandwidth or other performance factors. You can leave your browser window on a dynamically updating page indefinitely with no impact to the performance of your firewall.

Navigating the Management Interface

Navigating the management interface is facilitated by a hierarchy of menu items on the navigation bar (left side of your browser window). When you click a menu item, related management functions are displayed as submenu items in the navigation bar.

If the navigation bar continues below the bottom of your browser, up-and-down arrow buttons appear in the bottom right corner of the navigation bar. Mouse over the up or down arrow to scroll the navigation bar up or down. You also can use the scroll wheel on your mouse.

Icons and Buttons in the Management Interface

Topics:  

Common Icons

The Management Interface uses icons to facilitate certain actions. Some icons are common throughout the Management Interface while others apply to only one or two pages. Common icons describes the functions of common icons used in the Management Interface:

 

Common icons

Action

Icon

Description

Edit

Displays a dialog (secondary or popup window) for editing the settings.

Delete

Deletes a table entry.

Comment

Displays text from a field entry or information about the table entry.

Funnel

Indicates access rules with bandwidth management.

Upload

Uploads a file to a common database or external switch.

Print

Print PDF Report

Exports the data flow to a printer or file.

For some UI pages, prints a pdf file.

Send Report

Downloads a visualization report.

Email

Sends the log to an email address.

Refresh

Updates the real-time data in a table, chart, or other display.

Notes

Displays a popup balloon containing status or statistics about an entry in tables.

Statistics

Displays a popup balloon containing statistics about an entry in tables or general status about the table or page.

Clear Statistics

Updates the statistics shown in the traffic tables.

Configure

Allows for customization of the display. The function changes with the page containing the icon.

NOTE: The Configure icon and Configure button have different functions.

Left-arrow

Displays a pop-up balloon containing the respective VPN policy in the middle of the page.

Priority

Displays a pop-up containing statistics about an entry in tables or general status about the table or page.

Enabled

Indicates the interface or service is enabled. Clicking on the icon disables the interface or service.

 

Indicates the option or event is enabled. Clicking on the icon disables the option or event.

 

or

Indicates a service, such as Guest Services, is enabled for the user/group. Mousing over the icon displays a popup message.

 

or

Solid indicates that all members of the category, group, or event are enabled.

 

or

Semi-solid indicates that some are enabled, some are disabled.

Disabled

Indicates the interface or service is disabled. Clicking on the icon enables the interface or service.

 

Indicates the option or event is disabled. Clicking on the icon enables the option or event.

 

or

Indicates that all members of the category, group, or event are disabled.

Link

Provides a link to another page in the UI. Clicking the link displays the page.

Import

Imports certificate information or images.

Reboots the firewall with the firmware version listed in the same row

Export

Exports a VPN policy to a file in either encrypted or non-encrypted format.

 

Exports the data flow into a comma separated variable (.csv) file. The default file name is sonicflow.csv.

 

Exports the log as a CSV-format file. Clicking this icon displays a dialog that allows you to open or save the log in CSV format.

 

Exports the log as a plain text-format (.txt) file.

Boot

Imports certificate information or images.

Reboots the firewall with the firmware version listed in the same row.

Information

or or

Displays popup dialogs containing more detailed information than displayed on the page.

Question Mark
Help

Tooltip

or

Displays information about an option or setting on a page, report, or dialog; see Tooltips.

Search

Searches a table for the specified data.

NOTE: The Search icon and the Search button are used on different pages.

Status

Indicates the status of the feature:

Green signifies that the feature is active and operating.
Yellow signifies the feature is not active or operating.
Red signifies the feature is disabled.

Collapse

or or

Hides a chart, table, or section of a management interface page to allow more display room for other data.

Expand

or or

Redisplays a hidden chart, table, or section of a management interface page.

Display

or

Opens a new tab in your browser that displays only the report or graph associated with a submenu item. For more information, see Display Icons.

Pause

Freezes the data flow. The time and date also freeze.

The Pause icon appears gray if the data flow has been frozen.

NOTE: On some pages, Pause and Play are the same icon that toggles between functions. That is, when clicked, the Pause icon becomes the Play icon, and when clicked, the Play icon becomes the Pause icon.

Play

Unfreezes the data flow. The time and date refresh as soon as the data flow is updated.

The Play icon appears gray if the data flow is live.

NOTE: On some pages, Pause and Play are the same icon that toggles between functions. That is, when clicked, the Pause icon becomes the Play icon, and when clicked, the Play icon becomes the Pause icon.

Stop

Stops services for an appliance.

Start

Resumes stopped services for an appliance.

Reject

Disables a built-in common name, but does not delete it.

Accept

Add

Enables a built-in common name.

Displays a dialog (secondary or popup window) for adding entries to a table.

Remove

Removes a local user from a group.

Clock

Displays a popup balloon containing information about account and session expirations.

 

Displays a popup balloon containing information about schedules.

Chart Format:

Bar Chart

Flow (Area) Chart



Toggles the display of a chart between bar and flow (area) formats.

NetExtender

Launches and configures NetExtender.

Display Icons

Most submenus in the Dashboard menu have a Display icon associated with them. Clicking on the icon for a submenu item opens a new tab in your browser that displays only the report or graph associated with that submenu item. You can display all these submenu items or only the ones of interest. When the submenu item is in a new tab, you can move the tab to a new browser window to display separately from the management interface.

Other submenus that display sometimes rapidly changing data also have a Display icon associated with them. This icon is located at the top of the submenu page near the Mode option. This Display icon works the same as those of the Dashboard submenus and is also associated with them.

Common Buttons

The Management Interface uses buttons to facilitate certain actions. Some buttons are common throughout the Management Interface while others apply to only one or two pages. Common buttons describes the functions of common buttons used in the management interface:

 

Common buttons

Action

Button

Description

Accept

Applies the changes entered on certain Interface Management pages.

OK

Applies the changes entered on the Interface Management page or for a dialog, applies the changes and closes the dialog.

Save

Applies the changes made in a dialog and then closes the dialog.

Apply

Applies the changes made in a dialog, but does not close the dialog.

Cancel

Discards the changes entered on the Interface Management page or for a dialog, discards any changes made in the dialog and closes the dialog.

Close

Discards any changes made in the dialog and closes the dialog.

Help

Displays the help page for the dialog.

Add

Displays a dialog that allows you to add elements, such as zones, services, and access/firewall rules, to your appliance.

Configure

Displays a configuration dialog for configuring SonicOS settings.

NOTE: The Configure button and Configure icon have different functions.

Default

Erases current values and restores factory default values.

Create Rule

Displays the dialog for creating AppFlow rules.

Refresh

Updates real-time data in a table.

Update

Updates entries in a table.

Delete

Deletes the selected items from a table.

Delete Box

Deletes the item, especially in a filter.

Delete All

Deletes all items except default and system-generated items in a table.

Remove

Deletes the selected items from a table.

Remove All

Deletes all items in a table.

Flush

Removes one or more selected items in a table.

Flush All

Removes all items in a table.

Purge

Deletes one or more selected FQDN objects from a table.

Purge All

Deletes all FQDN objects from a table.

Clear

Clears the packet monitor queue and the displayed statistics for the capture buffer, mirroring, and FTP logging.

Clear Statistics

Clears the counters and the displayed statistics; restarts the counters.

Filter View

Correlates data among tabs in the AppFlow Monitor page.

 

Adds or deletes a filter based on selected criteria.

Filter Add

Adds the selected element to the filter

Install

Installs a SonicWall SSO Agent feature.

Preview

Displays the HTML message in a dialog for verification of how the message looks.

Example Template

Reverts the HTML message code to the default HTML message.

Right Arrow

Moves an item from a generic list to a specific list.

Left Arrow

Removes an item from a specific list to a generic list.

Double Right Arrow

Moves items from a generic list to a specific list.

Double Left Arrow

Removes items from a specific list to a generic list.

Status bar

The Status bar at the bottom of the management interface window displays the status of actions executed in the management interface. If the action was not completed, the Status bar displays an error message.

Applying Changes

Click the Accept button at the top of the management interface to save any configuration changes you made on the page.

If the settings are contained in a dialog (secondary window) within the Management Interface, the settings are applied automatically to the firewall when you click OK. To apply the settings without closing the dialog, some dialogs have an Apply button.

To cancel any configuration changes before applying them, click the Cancel button at the top of a management interface page or the bottom of a dialog.

Tooltips

Topics:  

Generic Tooltips

SonicOS provides embedded tooltips, or small pop-up balloons, that display when you hover your mouse over an element in the management interface or click on a small triangle after the element. They provide brief information describing the element. Tooltips are displayed for many forms, buttons, table headings and entries.

* 
NOTE: Not all UI elements have Tooltips. If a Tooltip does not display after hovering your mouse over an element for a couple of seconds, you can safely conclude that it does not have an associated Tooltip.

Tooltips with Values

When applicable, Tooltips display the minimum, maximum, and default values for form entries. These entries are generated directly from the SonicOS firmware, so the values are correct for the specific platform and firmware combination you are using.

Several tables include a tooltip that displays the maximum number of entries that the appliance supports. For example, the Firewall > Address Objects page displays the maximum number of address groups the appliance supports. These entries are generated directly from the SonicOS firmware, so the values are correct for the specific platform and firmware combination you are using.

Tables that display the maximum entry tooltip include NAT policies, access rules, address objects, and address groups.

Configuring Tooltips

The behavior of the Tooltips can be configured in the Web Management Settings on the System > Administration page.

Tooltips are enabled by default. To disable Tooltips, clear the Enable Tooltip checkbox. The duration of time before Tooltips display can be configured:

Form Tooltip Delay - Duration in milliseconds before Tooltips display for forms (boxes where you enter text).
Button Tooltip Delay - Duration in milliseconds before Tooltips display for radio buttons and checkboxes.
Text Tooltip Delay - Duration in milliseconds before Tooltips display for UI text.

Manipulating Tables

Topics:  

Navigating Dynamic Tables

In the SonicOS dynamic user interface, table statistics and log entries dynamically update without requiring you to reload your browsers.You can navigate tables in the management interface with a large number of entries by using the navigation buttons located on the upper-right top corner of the table.The table navigation bar includes buttons for moving through table pages:

A number of tables now include an option to specify the number of items displayed per page.

Sorting Tables

Tables are sorted automatically by the first column of data (not the # column). Many tables can be re-sorted by clicking on the headings for the various columns. On tables that are sortable, the cursor becomes a pointing hand when you mouse over the column headings. On some sortable tables, a Click to sort by tooltip appears when you mouse over the column headings.

When tables are sorted, entries with the same value for the column are grouped together with the common value shaded as a sub-heading. In the following example, the Route Packets table is sorted by Priority.

Removing Table Entries

Active connections, user sessions, VoIP calls, and similar activities can be disconnected or flushed dynamically with a single click on the Delete icon in the Flush or Logout column.

To flush one or more selected items in the table, click the Flush button. To flush all the items in the table, click the Flush All button.

To delete one or more selected FQDN objects from a table, click the Purge button. To flush all the FQDN objects from the table, click the Purge All button.

Displaying Statistics

Several tables include a table Statistics icon that displays a brief, dynamically updating summary of information for that table entry. Some tables with the Statistics icon are:

Port Configuration tab on the Network > PortShield Groups page
NAT Policies on the Network > NAT Policies page
Relay Protocols on the Network > IP Helper page
Access Rules on the Firewall > Access Rules page
App Rules Policies on the Firewall > App Rules page

To update the real-time data in a table, click the Refresh icon or the Refresh button.

To clear the statistics and start statistics collection anew, click the Clear Statistics button.

Management Interface Options

The top-right corner of every management interface page has the following options that you can click:

Wizards (Guides)

* 
NOTE: The terms wizards and guides are interchangeable.

Each firewall includes a Configuration Guide option that steps you through various firewall configurations, such as Setup, PortShield interface, Public Server, VPN policies, LAN network, wireless LAN network, and 3G/4G Modem. Clicking Wizards accesses the Configuration Guide dialog.

Help

Each firewall includes Web-based online help that explains how to use management interface pages and how to configure the firewall. Clicking Help accesses the context-sensitive help for the page.

Some of the dialogs also have a Help button that accesses context-sensitive help for the window.

Logout

Each firewall includes a Logout option that terminates the management interface session and displays the authentication page for logging into the firewall. Clicking Logout logs you out of the firewall.

Mode

Each appliance includes a Mode option that toggles the configuration mode of the management interface between:

Configuration mode – You can make changes to the settings of the firewall.
Non-Config mode – You can only view the settings of the firewall and cannot make any changes or view some management interface pages.

Clicking the arrow next to Mode: Configuration/Non- Config, allows you to toggle between configuration mode and non-configuration mode.

Command Line Interface (CLI)

The SonicOS Enterprise Command Line Interface (E-CLI) provides a concise and powerful way to configure SonicWall network security appliances without using the SonicOS web-based management interface. You can use the CLI commands individually on the command line or in scripts for automating configuration tasks.

For a listing of Command Line Interface (CLI) commands for SonicOS 6.2 firmware, refer to the SonicOS 6.2 CLI Reference Guide.

Registering Your SonicWall Security Appliance

After you have established your Internet connection, it is recommended you register your SonicWall Security Appliance. Registering your SonicWall Security Appliance provides these benefits:

Try a FREE 30-day trial of SonicWall Intrusion Prevention Service, SonicWall Gateway Anti-Virus, Content Filtering Service, and Client Anti-Virus
Activate SonicWall Anti-Spam
Activate SonicWall security services and upgrades
Access SonicOS firmware updates
Get SonicWall technical support

For instructions about creating a MySonicWall account as well as registering and licensing your SonicWall appliance, see the Getting Started Guide for your appliance and Managing SonicWall Licenses.

* 
NOTE: Make sure the Time Zone and DNS settings on your appliance are correct when you register the device.
* 
NOTE: mysonicwall.com registration information is not sold or shared with any other company.