{"id":2427,"date":"2014-04-30T14:25:00","date_gmt":"2014-04-30T21:25:00","guid":{"rendered":"https:\/\/thebeagle.itgroove.net\/?p=1418"},"modified":"2023-02-24T21:48:29","modified_gmt":"2023-02-24T21:48:29","slug":"bear-and-fish-mark-ii","status":"publish","type":"post","link":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/","title":{"rendered":"Bear and Fish, Mark II"},"content":{"rendered":"<p>I made an earlier post about Sonicwall wireless issues <a href=\"https:\/\/thebeagle.itgroove.net\/2014\/04\/10\/some-days-you-are-the-bear-and-others-you-are-the-fish\/\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>, this is a bit of a follow up to that post (or follow on).<\/p>\n<p>All Sonicwall firewalls come with a number of predefined security Zones that get applied to individual network interfaces on the box.&nbsp; Some of the standard zones are Trusted, Public and Wireless.&nbsp; Be aware that the Wireless zones is <em>specific<\/em> to Sonicwall wireless which encompasses both the built-in wireless on wireless models as well as Sonicpoint access points.&nbsp; It is NOT meant to be used as security zone for any other wireless devices.&nbsp; Traffic from any device that is NOT Sonicwall will be tagged as being from a &#8220;rogue&#8221; device and the firewall will eventually lockdown any network segments within the Wireless zone. <\/p>\n<p>If you are going to hang another vendor&#8217;s access points behind a Sonicwall and you want to have the network segregated from the regular LAN by firewall rules then you will have to create a custom Zone and tag the interface that is the gateway for the AP&#8217;s with the custom zone.&nbsp; This way you get to apply the same tricks with the firewall and\/or VLAN&#8217;s that you can with Sonicpoints and the Wireless zone but you won&#8217;t end up with a zone lockdown. <\/p>\n<p>I had this happen at the customer where the Sonicpoints were ripped out and replaced with a pricey Cisco wireless controller and access points.&nbsp; The new AP set up worked brilliantly for a few hours then the whole network shutdown.&nbsp; I went around in a number of circles trying to figure it all out until I saw entries in the logs that indicated traffic from \u201cnon-Sonicwall\u201d devices was being blocked on the network segment supporting the Cisco AP\u2019s.&nbsp; Once I backed out everything and created a new zone things went back to being \u201cperfect\u201d on the Cisco wireless.&nbsp; And, yes, the Cisco AP\u2019s (and the work performed by the company that installed the Cisco system) solved all of the issues we were having in the customer\u2019s warehouse.&nbsp; In this case the customer <em>definitely <\/em>got what they paid for (the Cisco goodies were considerably more expensive than the Sonicwall wireless access points). <\/p>\n<p>So, keep all of this in mind if you are going to build out a non-Sonicwall wireless infrastructure <em>behind <\/em>your Sonicwall firewall.&nbsp; A little up front work will save you a lot of grief.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>I made an earlier post about Sonicwall wireless issues here, this is a bit of a follow up to that post (or follow on). All Sonicwall firewalls come with a number of predefined security Zones that get applied to individual network interfaces on the box.&nbsp; Some of the standard zones are Trusted, Public and Wireless.&nbsp; &hellip; <a href=\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/\"><\/a><\/p>\n","protected":false},"author":10,"featured_media":1376,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[266,275],"tags":[322,573,574,661],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.0 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Bear and Fish, Mark II - Archive<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Bear and Fish, Mark II - Archive\" \/>\n<meta property=\"og:description\" content=\"I made an earlier post about Sonicwall wireless issues here, this is a bit of a follow up to that post (or follow on). All Sonicwall firewalls come with a number of predefined security Zones that get applied to individual network interfaces on the box.&nbsp; Some of the standard zones are Trusted, Public and Wireless.&nbsp; &hellip;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/\" \/>\n<meta property=\"og:site_name\" content=\"Archive\" \/>\n<meta property=\"article:published_time\" content=\"2014-04-30T21:25:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-02-24T21:48:29+00:00\" \/>\n<meta name=\"author\" content=\"Sean Wallbridge\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sean Wallbridge\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/\",\"url\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/\",\"name\":\"Bear and Fish, Mark II - Archive\",\"isPartOf\":{\"@id\":\"https:\/\/regroove.ca\/archive\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#primaryimage\"},\"thumbnailUrl\":\"\",\"datePublished\":\"2014-04-30T21:25:00+00:00\",\"dateModified\":\"2023-02-24T21:48:29+00:00\",\"author\":{\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77\"},\"breadcrumb\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#primaryimage\",\"url\":\"\",\"contentUrl\":\"\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog Archive\",\"item\":\"https:\/\/regroove.ca\/archive\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Bear and Fish, Mark II\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/regroove.ca\/archive\/#website\",\"url\":\"https:\/\/regroove.ca\/archive\/\",\"name\":\"Archive\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/regroove.ca\/archive\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77\",\"name\":\"Sean Wallbridge\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g\",\"caption\":\"Sean Wallbridge\"},\"url\":\"https:\/\/regroove.ca\/archive\/author\/swallbridge\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Bear and Fish, Mark II - Archive","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/","og_locale":"en_US","og_type":"article","og_title":"Bear and Fish, Mark II - Archive","og_description":"I made an earlier post about Sonicwall wireless issues here, this is a bit of a follow up to that post (or follow on). All Sonicwall firewalls come with a number of predefined security Zones that get applied to individual network interfaces on the box.&nbsp; Some of the standard zones are Trusted, Public and Wireless.&nbsp; &hellip;","og_url":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/","og_site_name":"Archive","article_published_time":"2014-04-30T21:25:00+00:00","article_modified_time":"2023-02-24T21:48:29+00:00","author":"Sean Wallbridge","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Sean Wallbridge","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/","url":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/","name":"Bear and Fish, Mark II - Archive","isPartOf":{"@id":"https:\/\/regroove.ca\/archive\/#website"},"primaryImageOfPage":{"@id":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#primaryimage"},"image":{"@id":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#primaryimage"},"thumbnailUrl":"","datePublished":"2014-04-30T21:25:00+00:00","dateModified":"2023-02-24T21:48:29+00:00","author":{"@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77"},"breadcrumb":{"@id":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#primaryimage","url":"","contentUrl":""},{"@type":"BreadcrumbList","@id":"https:\/\/regroove.ca\/archive\/2014\/04\/30\/bear-and-fish-mark-ii\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog Archive","item":"https:\/\/regroove.ca\/archive\/"},{"@type":"ListItem","position":2,"name":"Bear and Fish, Mark II"}]},{"@type":"WebSite","@id":"https:\/\/regroove.ca\/archive\/#website","url":"https:\/\/regroove.ca\/archive\/","name":"Archive","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/regroove.ca\/archive\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77","name":"Sean Wallbridge","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g","caption":"Sean Wallbridge"},"url":"https:\/\/regroove.ca\/archive\/author\/swallbridge\/"}]}},"_links":{"self":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2427"}],"collection":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/comments?post=2427"}],"version-history":[{"count":1,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2427\/revisions"}],"predecessor-version":[{"id":2919,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2427\/revisions\/2919"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/media?parent=2427"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/categories?post=2427"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/tags?post=2427"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}