How can I configure VLANs in SonicWall NSv?

Description

This article details the steps involved in configuring VLANs in SonicWall NSv with Virtual Switches.

Environment: VMware vSphere Web Client 6.5, Windows Server 2016, SonicWall NSv.

In this tutorial, we would be creating two Virtual Interfaces, X0:V100 and X0:V200 with the Parent Interface bound to X0.

Resolution

  1. Click Manage in the top navigation menu. Navigate to Network | InterfacesImage

  2.  Set up the Interface Settings per your requirement. In this case, X0:V100 interface is configured with an IP address of 172.16.100.1/24Image

  3.  Now, X0:V200 interface is configured with an IP address of 172.16.200.1/24Image

 Both the Virtual Interfaces are created successfully on the NS𝘷. Port Groups for X0:V100 and X0:V200 need to be created on the Virtual Switch, so that they can be bound to the network adapters of the Virtual Machines (Windows Server) in the network. A Port Group is a essentially group of ports on a vSwitch, created to provide logical segmentation. A Port Group connects to a vSwitch, and a vSwitch connects to a physical network interface.  

TIP: Information in setting up a Virtual Network, Virtual Switches and Port Groups can be found here: Virtual Networking in SonicWall NS𝘷.

 Port Group for X0:V100 network is set up as follows

Image

 
Port Group for X0:V200 network is set up as follows

Image

  •  Now, a Port Group needs to be created in Trunk mode so that it can read all the tagged and untagged packets ingressing to the NS𝘷 on X0 port. In ESXi, setting the Port Group with a VLAN ID of 4095 makes it a trunk port which includes all VLAN IDs. Image

  •  Now, the Trunk Port Group is assigned to the Network Adapter 1 (X0 Interface) of the NS𝘷.Image

  •  To confirm that the trunk port is working as expected, the port groups X0:V100, X0:V200 and X0 would be assigned one by one to the Network Adapter on the Windows Server to check the IP address received from the DHCP Server on the NS𝘷.
  • The DHCP Server is set up and enabled on the NS𝘷 for Interfaces, X0, X0:V100 and X0:V200 under Network | DHCP Server.

TIP: Configuring the DHCP Server on the SonicWall 

Image

  •  X0: V100 Port Group is assigned to the Network Adapter of the Windows Server.Image


  •  After an ipconfig /release and ipconfig /renew on the Windows Server, the DHCP DORA process can be seen on the SonicWall (after configuring a packet monitor on UDP 67,68). Image

  •  The broadcast packet (Discover) ingresses on X0:V100 with a VLAN ID = 100, confirming that the Windows Server is now on the X0:V100 network. It is also assigned a DHCP lease.  
    Image

  •  Similarly, Port Group X0: V200 is assigned to the Network Adapter of the Windows Server. Image

  •  The DHCP lease for the Windows Server is now assigned from Interface X0:V200.Image


  •  And lastly, Port Group X0 is assigned to the Network Adapter of the Windows server.Image

  •  The DHCP lease for the Windows server is now assigned from the X0 (Parent) Interface. Image


TIP: Further reading for ESXi Networking Configurations: Create a vSphere Standard Switch, Edit a Standard Switch Port Group, About vSphere Networking

Related Articles

  • SonicWall UTM throws an error : " Invalid Authentication " Error: SN and EPAID Do Not Match
    Read More
  • Firewall logs show frequent probe status changes after upgrade
    Read More
  • SSO Agent 4.0: Installation, Configurations, and troubleshooting
    Read More

Categories

Firewalls
NSv Series
Networking
Firewalls
NSv Series
not finding your answers?
Ask the Community
was this article helpful?
YesNo