- Products
- Network Security
- Threat Protection
- Secure Access Service Edge (SASE)
- Cloud Security
- Endpoint Security
- Email Security
- Secure Access
-
Wi-Fi 6 Access Points
SonicWall SonicWave 600 series access points provide always-on, always-secure connectivity for complex, multi-device environments.
Read More
- Solutions
- Industries
- Use Cases
- Solutions Widgets
- Solutions Content Widgets
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
- Solutions Image Widgets
-
- Partners
- SonicWall Partners
- Partner Resources
- Partner Widgets
- Custom HTML : Partners Content WIdgets
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
- Partners Image Widgets
-
- Support
- Support
- Resources
- Capture Labs
- Support Widget
- Custom HTML : Support Content WIdgets
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
- Support Image Widgets
-
- COMPANY
- PROMOTIONS
- MANAGED SERVICES
- Contact Sales
-
- Menu
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
Explanation of Management Modes
03/26/2020 
1,057 People found this article helpful
195,196 Views
Description
General information about GMS management modes
Cause
Customer wants to know which management mode is the most feasible
Resolution
Explanation of Management modes in GMS
Management Modes:
- Existing Tunnel/LAN
- HTTPS/SSL
- Management Tunnel
Explanation of each management mode and when to use them
1. Existing Tunnel/LAN:
With this management method all of the syslog files are transmitted in clear text between the firewall and the GMS server. If syslog is destined for a GMS server across a VPN, the VPN will provide encryption (of clear text syslog) while traffic is traversing the Internet. This is a very good mode for troubleshooting and simple setups, or setups with already configured S2S VPNs.
Over VPN:
Same subnet or point to point connection :
2. HTTPS/SSL:
The logic is the same as with existing tunnel/LAN mode. However, syslog are encrypted. The encryption is based on the password of the admin account. This means you must use the admin account (of the SonicWall) when adding the SonicWall to GMS. This management method is good for any network topology that requires end to end encryption for syslogs messages.
3. Management Tunnel:
Management tunnel is the only method that requires the GMS Gateway to be configured on GMS. The GMS gateway is the gateway firewall for GMS (so the firewall over which GMS communicates). On this firewall you will see the VPN tunnel, it will not be visible on the target firewall. Essentially this mode allows GMS to automate a VPN tunnel between the target firewall and the GMS gateway which passes the data on to GMS. This management method can be used if VPN is the preferred transmit method in which the only communication across the VPN is GMS and the firewall (no other network traffic is needed between the two networks).
The recommended management method is HTTPS/SSL.
Related Articles
- Specific syslog IDs are not seen in Analytics reports
- Upgrading to Analytics 2.5.0.4
- How to upgrade firmware for a group of firewalls in NSM
YES
NO