- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
VLAN Translation Overview in SonicOS 6.2.5
03/26/2020 
50 People found this article helpful
46,178 Views
Description
VLAN Translation is introduced to SonicOS from version 6.2.5, which is supported on all wire mode capable appliances. This feature allows for traffic coming on a VLAN to a Wire Mode interface operating in Secure Mode to be mapped to a different VLAN on the outgoing paired interface, so that you can re-route some of the traffic coming into the firewall onto different VLANs to perform further analysis, processing or just traffic remapping.
Resolution
1. VLAN Translation feature supports creating two modes (Bi-directional and Uni-directional map) mapping policies.
2. You can create a VLAN Translation mapping policy before you create a Wire Mode pair interfaces of after.
3. The VLAN Translation policy created for a pair of interfaces is persistent over reload and is stored as part of the configuration.
4. If the interfaces are moved out of Wire Mode while they have mapping policies associated with, those mapping policies will not get deleted but become inactive.
5. You can create mapping policies for an interface with multiple interfaces at the same time, but only mapping for the current active Wire Mode pair will be in active status. If the paired interface is changed and the new pair has pre-created mapping policy will go into effect immediately once the pair changed.
In the above picture, you can see a mapping policy exist for X2 to X4 as well as X2 to X3, but since only X2 and X4 are currently forming a Wire Mode pair, the first policy is active. If change the paired interface from X4 to X3 for the interface X2, the first policy will become inactive and the second policy will become active immediately.
Related Articles
- How to force an update of the Security Services Signatures from the Firewall GUI
- How to upload security services signatures manually on Closed Environments?
- How to Create Gen 7 Settings File by Using the Online Migration Tool
Categories
- Firewalls > TZ Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall NSA Series
YES
NO