Manyèl yo+

Sonicwall TZ670

SonicWall TZ670 Gen7 Firewall User Manual

Modèl: TZ670

1. Entwodiksyon

The SonicWall TZ670 Gen7 Firewall is a high-performance desktop security appliance designed for distributed enterprises and midsize organizations. It provides robust scalability and multi-gigabit performance for cloud and collaboration traffic, ensuring comprehensive protection against modern cyber threats.

Karakteristik kle yo enkli:

  • High throughput: 5 Gbps firewall throughput and 2.5 Gbps threat prevention.
  • Advanced Protection Service Suite (APSS): Combines Gateway AV, IPS, Application Control, Content Filtering, 24x7 Support, Capture ATP sandboxing, and RTDMI.
  • Threat prevention: Protects against ransomware, zero-day exploits, and encrypted attacks with multi-layered security.
  • Secure Upgrade Plus program: Allows replacement of qualifying firewalls with a current Gen 7 model and a service subscription.

2. Pwodwi souview

2.1 Panèl devan

SonicWall TZ670 Front Panel with labeled ports and indicators

Figure 2.1: SonicWall TZ670 Front Panel. This image displays the front of the TZ670 firewall, highlighting the USB 3.0 SuperSpeed ports, various LED indicators (Power, Test, Security, M.2 SSD, WWAN, LAN/MGMT, WAN, RJ45, SFP/SFP+), and port labels (X0-X9).

The front panel of the SonicWall TZ670 features several indicators and ports:

  • Pouvwa dirije: Endike estati pouvwa aparèy la.
  • Tès ki ap dirije: For diagnostic purposes.
  • Sekirite ki ap dirije: Indicates security status or alerts.
  • M.2 SSD LED: Indicates activity of the M.2 SSD storage.
  • USB 3.0 SuperSpeed ports: Two ports for connecting external devices.
  • LAN/MGMT X0 Port LED: Status indicator for the LAN/Management port.
  • WAN X1 ak X2 Port LED: Status indicators for the WAN ports.
  • X0-X7 RJ45 Port LEDs: Status indicators for the Ethernet ports.
  • X8 / X9 SFP/SFP+ Port LEDs: Status indicators for the fiber ports.
  • WWAN LEDs for USB 5G/LTE: Indicate status for wireless WAN connectivity.

2.2 Panèl dèyè

SonicWall TZ670 Rear Panel with labeled ports and connectors

Figure 2.2: SonicWall TZ670 Rear Panel. This image shows the rear of the TZ670 firewall, detailing the RJ45 Console Port, Micro-USB Console Port, X8/X9 SFP/SFP+ Ports, various RJ45 ports (X0 LAN, X1 WAN, X2 WAN, X3, X4/X5/X6/X7), SafeMode Button, Grounding Screw, Primary Power Input, and Redundant Power Input.

The rear panel provides connectivity and control options:

  • Pò konsole RJ45: For direct console access.
  • Pò konsòl mikwo-USB: Alternative console access.
  • X8 / X9 SFP/SFP+ Ports: High-speed fiber connectivity.
  • X0 LAN RJ45: Primary LAN port.
  • X1 WAN RJ45 pò: Primary WAN port.
  • X2 WAN RJ45 pò: Secondary WAN port.
  • X3 RJ45 pò: Additional Ethernet port.
  • X4 / X5 / X6 / X7 RJ45 Ports: Additional Ethernet ports.
  • Bouton SafeMode: For system recovery or factory reset.
  • Vis Terre: Pou yon koneksyon elektrik ki apwopriye atè.
  • Primary Power Input: Koneksyon prensipal kouran an.
  • Antre pouvwa redondant: For power redundancy.

3. Enstalasyon

This section outlines the general steps for setting up your SonicWall TZ670 firewall. For detailed configuration, refer to the SonicWall documentation portal.

3.1 Debalaj ak Premye Enspeksyon

  1. Carefully unpack the SonicWall TZ670 unit and all accessories from the packaging.
  2. Verifye ke tout konpozan ki nan lis nan fich anbalaj la prezan.
  3. Inspect the unit for any physical damage. If damage is found, contact your vendor immediately.

3.2 Enstalasyon Fizik

  1. Plasman: Position the firewall on a stable, flat surface in a well-ventilated area. Ensure adequate space around the unit for airflow.
  2. Atè: Connect a grounding wire to the grounding screw on the rear panel and to a suitable earth ground.
  3. Koneksyon pouvwa: Connect the primary power adapter to the 'Primary Power Input' port and then to an electrical outlet. For redundancy, connect a second power adapter to the 'Redundant Power Input' if available.

3.3 Koneksyon rezo

  1. Koneksyon WAN: Connect your internet service provider's modem or router to the 'X1 WAN RJ45 Port' using an Ethernet cable.
  2. Koneksyon LAN: Connect your internal network switch or a computer to the 'X0 LAN RJ45' port.
  3. Console Access (Optional): For initial configuration or troubleshooting, connect a computer to the 'RJ45 Console Port' or 'Micro-USB Console Port' using the appropriate cable.

3.4 Inisyal Konfigirasyon

  1. Power on the device. The Power LED should illuminate.
  2. Access the management interface via a web browser by navigating to the default IP address (typically 192.168.168.168).
  3. Follow the on-screen setup wizard to configure basic network settings, administrator credentials, and register your device.
  4. Ensure the device has internet connectivity to download the latest firmware and security updates.

4. Operasyon Enstriksyon

Once the SonicWall TZ670 is set up, it operates as a central point for network security. Management is primarily performed through its webkoòdone itilizatè grafik (GUI) ki baze sou.

4.1 Aksè nan Entèfas Jesyon an

  1. Louvri a web browser on a computer connected to the LAN side of the firewall.
  2. Enter the IP address of the firewall (e.g., https://192.168.168.168 or the IP address configured during setup) in the address bar.
  3. Log in using your administrator username and password.

4.2 Operasyon debaz yo

  • Dach: Bay yon souview of system status, network activity, and security threats.
  • Konfigirasyon rezo: Manage interfaces, routing, DHCP, and DNS settings.
  • Security Services: Configure Gateway Anti-Virus, Intrusion Prevention, Anti-Spyware, Content Filtering, and Application Control.
  • VPN: Set up Virtual Private Network connections for secure remote access or site-to-site connectivity.
  • Users and Zones: Manage user accounts, authentication methods, and security zones.
  • Logs and Reporting: Monitor system events, security alerts, and generate reports.

Regilyèman review the SonicWall documentation for best practices and advanced configuration guides.

5. Antretyen

Proper maintenance ensures the optimal performance and security of your SonicWall TZ670 firewall.

5.1 Mizajou Firmware

  • Regularly check for and apply the latest firmware updates. Firmware updates often include security patches, bug fixes, and new features.
  • Before updating, back up your current configuration.

5.2 Configuration Backups

  • Perform regular backups of your firewall configuration. This allows for quick restoration in case of a system failure or misconfiguration.
  • Store backups in a secure, off-device location.

5.3 Siveyans ak Logging

  • Tanzantan review system logs and security reports for unusual activity or potential threats.
  • Ensure that logging is configured to capture relevant security events.

5.4 Anviwònman Fizik

  • Ensure the device remains in a cool, dry, and well-ventilated environment to prevent overheating.
  • Keep the area around the firewall free from dust and obstructions.

NAN. Depanaj

This section provides basic troubleshooting steps for common issues. For more complex problems, consult the SonicWall support resources.

6.1 Pwoblèm pouvwa

  • Pa gen pouvwa: Check power cable connections, power outlet, and ensure the power adapter is functioning. Verify the Power LED is illuminated.

6.2 Pwoblèm koneksyon rezo

  • Pa gen aksè entènèt: Verify WAN cable connection, check ISP status, and ensure WAN interface is configured correctly in the firewall GUI. Check WAN port LEDs for activity.
  • Internal Network Issues: Check LAN cable connections, verify LAN interface configuration, and ensure DHCP server (if enabled on firewall) is functioning. Check LAN port LEDs for activity.

6.3 Aksè nan Entèfas Jesyon an

  • Pa ka jwenn aksè nan koòdone itilizatè grafik la: Ensure your computer is on the correct network segment, verify the firewall's IP address, and try clearing your browser's cache. If necessary, use the console port for direct access.
  • Modpas bliye: Use the password recovery procedure outlined in the SonicWall documentation, or perform a factory reset via the SafeMode button (note: this will erase all configurations).

6.4 Endikatè Estati Sistèm

  • Sekirite ki ap dirije: If this LED indicates an alert, check the system logs in the GUI for details on detected threats or security events.
  • Pò LEDs: Flashing or solid green/amber LEDs indicate link status and activity. No light may indicate a cable issue or disabled port.

7. Espesifikasyon

The SonicWall TZ670 offers robust hardware and performance capabilities suitable for demanding network environments.

SonicWall Gen 7 TZ series system specifications table part 1

Figure 7.1: SonicWall Gen 7 TZ Series System Specifications (Part 1). This table details general specifications for the TZ270, TZ370, TZ470, TZ570, and TZ670 series, including operating system, interfaces, wireless support, PoE support, storage expansion, management, redundant power, SSO users, VLAN interfaces, and access points supported.

SonicWall Gen 7 TZ series system specifications table part 2

Figure 7.2: SonicWall Gen 7 TZ Series System Specifications (Part 2). This table continues the specifications, focusing on firewall and VPN performance, security services, and networking features for the TZ270, TZ370, TZ470, TZ570, and TZ670 series.

7.1 Espesifikasyon Jeneral

  • Dimansyon pwodwi: 19.69 x 19.69 x 11.02 pous
  • Pwa atik: 2.13 liv (0.97 kilogram)
  • Nimewo Modèl Atik: TZ670
  • Manifakti: SonicWall
  • Sistèm operasyon: SonicOS 7.0
  • Entèfas: 8x1GbE, 2x10GbE, 2 USB 3.0, 1 Console
  • Storage Expansion Slot: Optional up to 256GB, 32GB included
  • Alimantasyon pouvwa redondan: Wi
  • Single Sign-On (SSO) Users: 2,500
  • VLAN Interfaces: 256
  • Access Points Supported (maximum): 32

7.2 Pèfòmans

  • Firewall Inspection Throughput: 5 Gbps
  • Threat Prevention Throughput: 2.5 Gbps
  • Application Inspection Throughput: 3 Gbps
  • IPS Throughput: 2.5 Gbps
  • Anti-Malware Throughput: 2.1 Gbps
  • TLS/SSL Inspection and Decryption Throughput (DPI SSL): 800 Mbps
  • IPSec VPN Throughput: 2.1 Gbps
  • Maximum Connections (SPI): 1,500,000
  • Maximum Connections (DPI): 75,000
  • Site-to-Site VPN Tunnels: 200
  • IPSec VPN Clients (maximum): 200 (500)
  • SSL VPN Licenses (maximum): 2 (250)

8. Garanti ak sipò

8.1 Enfòmasyon sou Garanti

The SonicWall TZ670, when purchased with the Advanced Protection Service Suite (APSS), includes a 3-year service period. This service suite typically covers hardware warranty during its active period, providing peace of mind and ensuring your device is protected against defects.

For specific warranty terms and conditions, please refer to the official SonicWall warranty documentation provided with your purchase or available on the SonicWall websit.

8.2 Sipò teknik

The Advanced Protection Service Suite (APSS) includes 24x7 support. For technical assistance, troubleshooting, or any inquiries regarding your SonicWall TZ670, please contact SonicWall Technical Support.

You can typically find support contact information and resources on the official SonicWall websit:

  • Pòtal Sipò Sou Entènèt: Access knowledge bases, FAQs, and support tickets.
  • Sipò telefòn: Contact numbers for regional support centers.
  • Dokimantasyon: Comprehensive guides and manuals for advanced configurations.

Dokiman ki gen rapò - TZ670

Preview Gid Enstalasyon ak Ranplasman Alimantasyon SonicWall NSa 2700
Enstriksyon detaye pou enstale ak retire inite ekipman pou pouvwa a pou aparèy sekirite rezo SonicWall NSa 2700 la, ki gen ladan avètisman sekirite ak gidans miltileng.
Preview SonicWall TZ Series Quick Start Guide: TZ670, TZ570, TZ570W, TZ570P Setup and Configuration
This Quick Start Guide provides essential information for setting up and configuring SonicWall TZ670, TZ570, TZ570W, and TZ570P next-generation firewalls. Learn about package contents, hardware overview, connectivity, power, and initial setup options including local, cloud, and mobile app management.
Preview SonicWall Network Security Gen 8 and Management Platform Order Guide
An official order guide for SonicWall's Gen 8 Next-Generation Firewalls (NGFWs) and Management Platform, detailing purpose, audience, overview, licensing options, purchase options, upgrades, renewals, and company information.
Preview SonicWall TZ670/TZ570W Quick Start Guide - Network Security Appliance Setup
Concise guide to setting up and configuring SonicWall TZ670 and TZ570W network security appliances, covering package contents, hardware overview, connection, and initial setup options.
Preview SonicWall TZ & NSa MSSP Monthly Services Getting Started Guide
A comprehensive getting started guide for SonicWall Gen 7 TZ and NSa products utilizing MSSP Monthly Services. Learn about registration, license provisioning, and validation for enhanced network security.
Preview SonicWall TZ Series (Gen 7) Datasheet: Next-Generation Firewalls for SMBs & Branches
Discover the SonicWall TZ Series (Gen 7) next-generation firewalls (NGFWs), engineered for SMBs and distributed branches. This datasheet details features, specifications, and deployment advantages of these integrated SD-Branch platforms.