NSM - How to remove a firewall from NSM and its associated firewall configuration?

07/01/2022 3 People found this article helpful 33,054 Views

This article describes the steps in details on how to remove firewall from NSM and its associated firewall configuration.

Steps on MysonicWALL Portal.

Login to your MySonicWall account and select the tenant under My Workspace|Tenant Products
Select the firewall which is required to be removed from NSM and change the Managed by the option to ‘On-Box’.

This step will remove the firewall from NSM within 5 to 10 minutes. Login to the NSM and Navigate to Firewalls>>Inventory to verify the firewall entry.

Steps on Firewall Appliance.

Login to the Firewall with admin privilege

Navigate to Device|Log | Syslog| Syslog Servers. There should be no entry in the Syslog Servers list for GMS.
Navigate to Device|AppFlow| AppFlow Agent - uncheck “Auto-Synchronize GMSFlow Server.”
Verify there is no entry for SGMSServer-VPN policy under VPN settings when licensed for NSM Advanced.
Navigate to Policy|Rules, and Policies |Access Rules – set the View to “All Types.” Verify the VPN to LAN and LAN to VPN access rules are not there for GMS. Also, verify the WAN to WAN management rule for GMS should not be available.
Navigate to Objects| Address Objects :
Set the View to “All Types.”

Search for GMS and delete the entries which start with GMS as shown below:
Navigate to Objects| Match Objects|Services– set the View to “All Types.”
Search for GMS and delete the entries which start with "GMS"
Navigate to Diag Page on the firewall https://<IP ADDRESS>/sonicui/7/m/diag and uncheck the below options:

Log into the Firewall and Navigate to System | Diagnostics. Generate a new TSR and review the contents to see if there are any remaining GMS settings. If there are, go to the appropriate sections in the firewall, locate the entries and delete them.