Great Vid...... gee's my network is totally nested, now i'm going to have to configure one for guests, family, personal and gaming only :) .... this will be tedious. :) thanks good vid again bro
Hi Dj, It's nice to hear it helped you. As food for thought, the less SSID'S broadcasted the less chatty your wireless medium will be and in turn will be overall faster. Cheers!
Fantastic video. You are saving folks a lot of time. Thank you. Question for you though. I need to have the corporate WiFi and desktops on the same network because of particular applications. Right now, the LAN and WLAN is L2 bridged and working well. Is it possible to add a sub interface and VLAN simply for the Guest network and nest it under the presently operational WLAN interface (vs. creating two virtual interfaces like you did in this video)? Thanks again!
Hi Cookiecybermonster, Answer in short, No. unfortunately because they are bridged via layer 2 they are joined to each other and fair warning I've seen some really strange behavior occurred when bridging the interfaces. I understand having the same wireless devices on the same subnet by bridging but that limits your granularity of applying restrictions. The only way and supported way is to add sub interfaces without layer 2 bridging. Does this answer your question?
Great Video - I have a TZ105 with a netgear wifi in AP mode. How do i allow those users to access the domain devices inside the office. They can access the domain over the Global VPN from home but when in the office the VPN does not connect and they have WiFi only devices. They are remote users that come in for a meeting on occasion.
Hi Ben, I appreciate the compliment. When they are in the office there's no need for them to reconnect to the vpn since they are local assuming that's what your saying. as for access to local resources check the firewall access rules. Is the netgear connected to an interface in the Lan zone on the Sonicwall? If so then Lan to Lan firewall rule by default allows you pass traffic between like interfaces. If the interface is in a different zone than what the local resources branch from then you must make sure the firewall rules allow traffic to pass between zones. example wireless > lan. I hope this helps.
Hi, I really appreciate you posting this video. I have 3 sonicpoints and a wired printer to connect. I only have the TZ400 for connectivity (no switches). I plan to stick to your config. X3 is my WLAN interface. My question: can I plug my remaining 2 APs into X4 and X5? and if I plug my printer into X6 how do I make sure the corporate wireless users see the wired printer?
Hi Elmo, In order for the SoincPoints to provision they all have to be off the same WLAN interface. In this case your X3. You may be able to Portshield other interfaces to X3 but I do not recommend it. Best Practice is to use a switch and connect all the SoincPoints to it. You can access the wired printer in two ways. It can be accessed if plugged in to the same switch the only SoincPoint traffic will be scene. There is a setting to allow other connected non wireless devices to pass traffic through the WLAN interface. The most common way to is plug in an additional switch in the X0 Lan interface for wired devices. This scenario requires that you edit the firewall rules from the custom zone to the lan zone for example Corporate > Lan or Guests > Lan. By default LAN to any zone is allowed. I hope this helps!
What if you're not doing VLANs just need two wireless networks, 1 private and 1 public, with no access to the LAN or switch. Would it be the same procedure just without assigning VLANs or would you assign a VLAN anyway? Great video!
With the SonicPoints it is a requirement to vlan them apart because each SSID broadcasted is on its own subnet. If you had only 1 SSID then it is not required.
With no SonicPoints your can manage it on the LAN zone or give it its own Zone like WLAN but if doing so you must configure firewall rules to allow traffic to pass between zones.
Hi +Victor Lucio, It is possible to throttle guest Wi-Fi speed. At the time of this video it is able to throttle the bandwidth but it is global meaning that all that SSIDs were effected by this. I unfortunately do not have the latest firmware to test but the new access points (AC) with the latest firmware may be able to support this on a per SSID basis or rather a per subnet basis. I will have to download the release notes and take a look at the new WiFi updates.
Great Video. Are these the same steps if I'm plugging in a non Sonic Point AP to the X3 port? I have an Engenius and a Linksys AP that I want to plug into my sonicwall rather than my switch.
Hi Tom, Thanks for the compliment! These steps are not quite the same as its specific to an SonicPoint however you can still configure the interface to be in the WLAN zone to take advantage of zoning it off and use firewall rules to allow or deny traffic between zones.
That is correct. You can use an existing zone like LAN if its not a SonicPoint or you can create a custom zone then use firewall rules to allow or deny traffic to that zone or specific IP on that zone.
I cannot speak for the TZ300 however the prior models would broadcast the SSID'S over the same channels. Likely the same scenario for the TZ300. If we're to use Sonicpoints then you can specify what channels they broadcast on.
I really - REALLY - appreciate this tutorial. Question for you: How do I then tie the 'Corporate' network to the "LAN" zone so that my wirelessly connected employees have access to servers, printers, etc.?
Hi Mike, I am glad you appreciate the video. To answer your question simply go to your firewall access rules and allow your custom wireless zone(s) to access your Lan zone. That's it. :)
hi, at first thanks for the video is very helpful, I am having some issues tho setting up on a TZ350W, Once my interface has been created and my zones are setup, at the Virtual access point (virtual access points) when I try to add at the VLAN ID I have only one option NO VLAN ID and I am stuck here, is there any way to allow the zones shows here? or am I missing something?
Hi Jhon, Another person mentioned the same issue in the comments below and instead of using the VAP section demonstrated in this video on a NSA firewall he also has a TZ firewall series and he mentioned he had to go through the "Wireless menu". He may be referring to Zones section where a Wireless zone/menu may apply for you. It's been many years since I made this video and my memory is a little fuzzy but please try referring to the Wireless menu to add your vlan IDs
@@ExploreFL2022 thank you so much, yes, I read it and I did as he mention and I was able to set up it up, what I am unable tho, is pass internet to the virtual sonic points, I cannot find anywhere is the last step that you did on the sonic point
Hi Alan, Navigate to Network > Dhcp Server and disable the subnet that you don't want to pull from the firewalls Dhcp server. I recommend the firewall be the Dhcp server for the Sonicpoints. You can use a Windows server for the wireless clients but you may need to use IP Helper to redirect the Dhcp requests to the windows server. I hope this helps!
I think I've finally found what I've been looking for here! I have followed all of these steps but, when adding Virtual Access Points, on VLAN ID, the only option I get is No VLAN ID... Any clue about it??
Hi Daniel, Confirm that the interface show the vlans are assigned. If they are missing then there's your answer. You will have to go back and create the sub-interfaces again. If that is not case then try another browser or clear the cache and try again. Worst case scenario is to export the settings, factory default the firewall, reimport the setting and try again. If that still doesn't work factory default the firewall and recreate the steps from this video. If it then works your settings file is likely corrupted. Hope this helps, looking forward to hear what the issue was.
Hi again! So, after some more research, I've found what was happening. I have a TZ105. Instead of configuring a new VAP through SonicPoint, I needed to do it via Wireless menu... Thanks a lot!
Say you have one building with 6 Sonicpoints. You use channel 1, 6, and 11 but put 2 Sonicpoints on each channel.Is that the normal way to deploy them and what could go wrong. I seen this in a building before and their were issues but I don't know with connecting. I am not sure what's causing the connection issues.
Hi George, your comment was flagged a spam and I just saw it and approved it. I am going to answer this anyway 8 months late in hopes other readers can find this reply useful. If you have 6 SonicPoints and they are using the Non-overlapping channels 1,6 and 11 then there shouldn't be a problem unless lets say for example 2 of 6 SonicPoints are using the same channel as each other and they are close enough to see each other. This is called Co-channel interference and that can be a problem. This can be resolved by re-planning the channels used on the SonicPoints so they do not interfere with one another. The biggest obstacle is neighboring AP's that you have no control over that are using the same channels or the power is set to the max therefor saturating your wireless network with RF interference. This would cause connection or stability issues. There are many other reasons but that typically is the biggest reason following coverage issues. I hope this helps.
Is it possible to have 8 sonicpoints with this configuration... A guest subnet of 172.16.31.x and a corp subnet of 10.50.50.x with the corp WLAN bridged to the LAN interface. When i try to make a managed sonicpoint config, it wants me to assign each one to it's own subnet and DHCP. Our sonicwall is a nsa2600 and we have a managed 24 port Avaya phone switch.
Hi Jim, I strongly suggest not bridging the wireless network with the lan network. It is better practice to simply allow firewall rules to pass traffic unidirectional or bidirectional between the zones. In my experience I've seen more issues bridging the zones together. Using firewall rules allows for more granularity.
So is it possible to have 8 Sonicpoints all on the same subnet in managed mode and let the sonicwall do DHCP to the wireless clients ? This is what I'm attempting to do.... support.software.dell.com/sonicwall-sonicpoint-series/kb/sw11076
Yes it is. You can in fact have a lot more than 8 SonicPoints on the same subnet using Managed mode. All the SonicPoints should be on the same subnet to talk to each other and provision to the Firewall using a discovery protocol. This link help, support.software.dell.com/kb/sw3482
Thank you... I thought they should. I have a project in front of me getting this figured out starting Monday when 4 new buildings gets connected via fiber.
Hi Jose, Using subnet 172.16.31.0 /16 mask is common industry practice for wireless networks. So for sake of the tutorial I choose the first host ip to use as my interface ip on X3 interface. Does this answer your question Jose?
Yes it does. Another question I have if you will: I have a tz 105 and I would like to add a wireless router to one of the empty ports on the sonicwall. How do you recommend going about this? Is there any configuration needed on the sonic wall to allow internet through the router?
Do you have a TZ105 or TZ105w? If you also have a wireless router and prefer to use that as your wireless solution then just use an interface of the Sonicwall and assign it to the LAN zone. Be sure to statically assign an IP to that interface that will be in the same subnet that the router will be in. As a piece of advice: if you use the wireless router to hand out DHCP addressing to the wireless clients, this means most consumer grade wireless routers will have one subnet for the physical interfaces and another subnet for wireless. If you use DHCP on the wireless router that means you are now double-nating which is not supported by Sonicwall but it will functionally work. I suggest to disable DHCP on the wireless router so that the clients pull an IP from the Sonicwall no matter if they are wired or wireless. Let me know if you need any more clarification or advice on this.
It's definitely a TZ105. I'm setting up an office network and a secured network. The office will run through the router and the secured hidden network would be ideal through the sonicwall. I'm sure I can figure it out with your video. Great video btw!
Hey Jim, thanks for taking the time to comment. I know what you mean. Like anything else there's a learning curve. I have not had many opportunities to mess with Ruckus other than setting up a Rukus 7372 AP and a POE adapter and configuring it. For the most part I thought it was easy to setup but not being familiar with the GUI took a little longer naturally. To answer your inquiry can you rephrase your question? I am not sure what you mean by "the SSID is not showing the correct SSID"? I assume you created a VAP and added the SSID to it then followed my steps to provision the AP. If your VAP profile is not applied to the SonicPoint then its going to broadcast the default SSID instead. I hope this helps.
Where do you add them to the group - it did not appear that you added them to any group in the video. 38 minutes and counting on hold with Sonicwall...
I saw that - but you did NOT add PHYSICAL units to the group, only VAP's to the group. This is why I am STILL seeing default VLAN's. I watched this several times and was waiting for "here is how you PHYSICALLY add sonicpoint units to the profile." This is the logic my brain is expecting.
What's more, this video does not take into account how to assign more than one SonicPoint to a group. At no point is there any mention of adding physical units to a group of any kind, it just kind of happens "automagically." Looks like I'll have to wait the requisite 30 minutes on hold to talk to their support.....
Jim - When the SonicPoints have been recognized by the firewall you have a choice to Provision them to inherit the VAP group and settings to 1 or more SonicPoints. I could of probably went into more detail at the time of making this video however the video is tailored around a single SonicPoint and any other SonicPoints follow suit using the same provisioning process. If this video doesnt help you then hopefully SonicWall support will. Good Luck!
Just a well done video, all there is to say. Clear and concise, no fluff just info. Well done sir, you're a beacon to all.
Thank you for the kind words. Comments like yours inspire me to want to make more educational videos. Thanks again!
You ROCK!!! Thanks for such a great job of talking and being precise :)
OMG, I love you! This video totally helped me. Thank you for posting it!!!!
Thank you! Happy to hear it helped. :)
Great Vid...... gee's my network is totally nested, now i'm going to have to configure one for guests, family, personal and gaming only :) .... this will be tedious. :) thanks good vid again bro
Hi Dj,
It's nice to hear it helped you. As food for thought, the less SSID'S broadcasted the less chatty your wireless medium will be and in turn will be overall faster. Cheers!
am so thankful... this video help me lot. keep going
Fantastic video. You are saving folks a lot of time. Thank you. Question for you though. I need to have the corporate WiFi and desktops on the same network because of particular applications. Right now, the LAN and WLAN is L2 bridged and working well. Is it possible to add a sub interface and VLAN simply for the Guest network and nest it under the presently operational WLAN interface (vs. creating two virtual interfaces like you did in this video)? Thanks again!
Hi Cookiecybermonster,
Answer in short, No. unfortunately because they are bridged via layer 2 they are joined to each other and fair warning I've seen some really strange behavior occurred when bridging the interfaces. I understand having the same wireless devices on the same subnet by bridging but that limits your granularity of applying restrictions. The only way and supported way is to add sub interfaces without layer 2 bridging. Does this answer your question?
+WiFi Guy it does. Thanks!
+CyberCookieMonster support.software.dell.com/kb/sw10837
Very helpful, thank you!
Great Video - I have a TZ105 with a netgear wifi in AP mode. How do i allow those users to access the domain devices inside the office. They can access the domain over the Global VPN from home but when in the office the VPN does not connect and they have WiFi only devices. They are remote users that come in for a meeting on occasion.
Hi Ben, I appreciate the compliment. When they are in the office there's no need for them to reconnect to the vpn since they are local assuming that's what your saying. as for access to local resources check the firewall access rules. Is the netgear connected to an interface in the Lan zone on the Sonicwall? If so then Lan to Lan firewall rule by default allows you pass traffic between like interfaces. If the interface is in a different zone than what the local resources branch from then you must make sure the firewall rules allow traffic to pass between zones. example wireless > lan. I hope this helps.
Hi, I really appreciate you posting this video. I have 3 sonicpoints and a wired printer to connect. I only have the TZ400 for connectivity (no switches). I plan to stick to your config. X3 is my WLAN interface. My question: can I plug my remaining 2 APs into X4 and X5? and if I plug my printer into X6 how do I make sure the corporate wireless users see the wired printer?
go to the matrix and allow all traffic from corporate wireless vlan to lan. make sure that the printer interface (x6) is portshielded to the lan
Hi Elmo,
In order for the SoincPoints to provision they all have to be off the same WLAN interface. In this case your X3. You may be able to Portshield other interfaces to X3 but I do not recommend it. Best Practice is to use a switch and connect all the SoincPoints to it. You can access the wired printer in two ways. It can be accessed if plugged in to the same switch the only SoincPoint traffic will be scene. There is a setting to allow other connected non wireless devices to pass traffic through the WLAN interface. The most common way to is plug in an additional switch in the X0 Lan interface for wired devices. This scenario requires that you edit the firewall rules from the custom zone to the lan zone for example Corporate > Lan or Guests > Lan. By default LAN to any zone is allowed. I hope this helps!
thanks for video. really helpful. can you also make a video on how to connect 2 SSID in a layer 2 switch like cisco
What if you're not doing VLANs just need two wireless networks, 1 private and 1 public, with no access to the LAN or switch. Would it be the same procedure just without assigning VLANs or would you assign a VLAN anyway? Great video!
and no sonicpoints?
With the SonicPoints it is a requirement to vlan them apart because each SSID broadcasted is on its own subnet. If you had only 1 SSID then it is not required.
With no SonicPoints your can manage it on the LAN zone or give it its own Zone like WLAN but if doing so you must configure firewall rules to allow traffic to pass between zones.
great instructions... do you know if you can throttle guest Wi-Fi speed?
Hi +Victor Lucio,
It is possible to throttle guest Wi-Fi speed. At the time of this video it is able to throttle the bandwidth but it is global meaning that all that SSIDs were effected by this. I unfortunately do not have the latest firmware to test but the new access points (AC) with the latest firmware may be able to support this on a per SSID basis or rather a per subnet basis. I will have to download the release notes and take a look at the new WiFi updates.
Great Video. Are these the same steps if I'm plugging in a non Sonic Point AP to the X3 port? I have an Engenius and a Linksys AP that I want to plug into my sonicwall rather than my switch.
Hi Tom, Thanks for the compliment! These steps are not quite the same as its specific to an SonicPoint however you can still configure the interface to be in the WLAN zone to take advantage of zoning it off and use firewall rules to allow or deny traffic between zones.
Thanks. So I can Stop after I add the zone and don't have to add groups or virtual access points, correct?
That is correct. You can use an existing zone like LAN if its not a SonicPoint or you can create a custom zone then use firewall rules to allow or deny traffic to that zone or specific IP on that zone.
Good Stuff Thanks!
Having a TZ300 with buil-in wirless, it's possible to separate the wifi channels between the Corporate and the Guest network?
I cannot speak for the TZ300 however the prior models would broadcast the SSID'S over the same channels. Likely the same scenario for the TZ300. If we're to use Sonicpoints then you can specify what channels they broadcast on.
I really - REALLY - appreciate this tutorial. Question for you: How do I then tie the 'Corporate' network to the "LAN" zone so that my wirelessly connected employees have access to servers, printers, etc.?
Hi Mike, I am glad you appreciate the video. To answer your question simply go to your firewall access rules and allow your custom wireless zone(s) to access your Lan zone. That's it. :)
hi, at first thanks for the video is very helpful, I am having some issues tho setting up on a TZ350W, Once my interface has been created and my zones are setup, at the Virtual access point (virtual access points) when I try to add at the VLAN ID I have only one option NO VLAN ID and I am stuck here, is there any way to allow the zones shows here? or am I missing something?
Hi Jhon,
Another person mentioned the same issue in the comments below and instead of using the VAP section demonstrated in this video on a NSA firewall he also has a TZ firewall series and he mentioned he had to go through the "Wireless menu". He may be referring to Zones section where a Wireless zone/menu may apply for you. It's been many years since I made this video and my memory is a little fuzzy but please try referring to the Wireless menu to add your vlan IDs
@@ExploreFL2022 thank you so much, yes, I read it and I did as he mention and I was able to set up it up, what I am unable tho, is pass internet to the virtual sonic points, I cannot find anywhere is the last step that you did on the sonic point
@@ExploreFL2022 also, thanks so much again for the video and reply!
How do you set the firewall to use a Windows server for a DHCP server on the wireless zone? I'm setting up a TZ105.
Hi Alan,
Navigate to Network > Dhcp Server and disable the subnet that you don't want to pull from the firewalls Dhcp server. I recommend the firewall be the Dhcp server for the Sonicpoints. You can use a Windows server for the wireless clients but you may need to use IP Helper to redirect the Dhcp requests to the windows server. I hope this helps!
I think I've finally found what I've been looking for here! I have followed all of these steps but, when adding Virtual Access Points, on VLAN ID, the only option I get is No VLAN ID... Any clue about it??
Hi Daniel,
Confirm that the interface show the vlans are assigned. If they are missing then there's your answer. You will have to go back and create the sub-interfaces again. If that is not case then try another browser or clear the cache and try again. Worst case scenario is to export the settings, factory default the firewall, reimport the setting and try again. If that still doesn't work factory default the firewall and recreate the steps from this video. If it then works your settings file is likely corrupted. Hope this helps, looking forward to hear what the issue was.
Hi again!
So, after some more research, I've found what was happening. I have a TZ105. Instead of configuring a new VAP through SonicPoint, I needed to do it via Wireless menu...
Thanks a lot!
+Daniel A. Guerrero, good deal! Enjoy
Say you have one building with 6 Sonicpoints. You use channel 1, 6, and 11 but put 2 Sonicpoints on each channel.Is that the normal way to deploy them and what could go wrong. I seen this in a building before and their were issues but I don't know with connecting. I am not sure what's causing the connection issues.
Hi George, your comment was flagged a spam and I just saw it and approved it. I am going to answer this anyway 8 months late in hopes other readers can find this reply useful. If you have 6 SonicPoints and they are using the Non-overlapping channels 1,6 and 11 then there shouldn't be a problem unless lets say for example 2 of 6 SonicPoints are using the same channel as each other and they are close enough to see each other. This is called Co-channel interference and that can be a problem. This can be resolved by re-planning the channels used on the SonicPoints so they do not interfere with one another. The biggest obstacle is neighboring AP's that you have no control over that are using the same channels or the power is set to the max therefor saturating your wireless network with RF interference. This would cause connection or stability issues. There are many other reasons but that typically is the biggest reason following coverage issues. I hope this helps.
Is it possible to have 8 sonicpoints with this configuration... A guest subnet of 172.16.31.x and a corp subnet of 10.50.50.x with the corp WLAN bridged to the LAN interface. When i try to make a managed sonicpoint config, it wants me to assign each one to it's own subnet and DHCP. Our sonicwall is a nsa2600 and we have a managed 24 port Avaya phone switch.
Hi Jim,
I strongly suggest not bridging the wireless network with the lan network. It is better practice to simply allow firewall rules to pass traffic unidirectional or bidirectional between the zones. In my experience I've seen more issues bridging the zones together. Using firewall rules allows for more granularity.
So is it possible to have 8 Sonicpoints all on the same subnet in managed mode and let the sonicwall do DHCP to the wireless clients ? This is what I'm attempting to do.... support.software.dell.com/sonicwall-sonicpoint-series/kb/sw11076
Yes it is. You can in fact have a lot more than 8 SonicPoints on the same subnet using Managed mode. All the SonicPoints should be on the same subnet to talk to each other and provision to the Firewall using a discovery protocol. This link help, support.software.dell.com/kb/sw3482
Thank you... I thought they should. I have a project in front of me getting this figured out starting Monday when 4 new buildings gets connected via fiber.
How's the project going Jim?
Why did you use ip add 172.16.31.1 for your x3 interface?
Hi Jose,
Using subnet 172.16.31.0 /16 mask is common industry practice for wireless networks. So for sake of the tutorial I choose the first host ip to use as my interface ip on X3 interface. Does this answer your question Jose?
Yes it does. Another question I have if you will: I have a tz 105 and I would like to add a wireless router to one of the empty ports on the sonicwall. How do you recommend going about this? Is there any configuration needed on the sonic wall to allow internet through the router?
Do you have a TZ105 or TZ105w? If you also have a wireless router and prefer to use that as your wireless solution then just use an interface of the Sonicwall and assign it to the LAN zone. Be sure to statically assign an IP to that interface that will be in the same subnet that the router will be in. As a piece of advice: if you use the wireless router to hand out DHCP addressing to the wireless clients, this means most consumer grade wireless routers will have one subnet for the physical interfaces and another subnet for wireless. If you use DHCP on the wireless router that means you are now double-nating which is not supported by Sonicwall but it will functionally work. I suggest to disable DHCP on the wireless router so that the clients pull an IP from the Sonicwall no matter if they are wired or wireless. Let me know if you need any more clarification or advice on this.
It's definitely a TZ105. I'm setting up an office network and a secured network. The office will run through the router and the secured hidden network would be ideal through the sonicwall. I'm sure I can figure it out with your video. Great video btw!
If you run into any snags let me know. Thanks for compliment! Good luck Jose.
Baffling... the SSID is not showing the correct SSID. Where is that set? I do NOT like Sonicwall's wireless at all. Ruckus is much easier.
Hey Jim, thanks for taking the time to comment. I know what you mean. Like anything else there's a learning curve. I have not had many opportunities to mess with Ruckus other than setting up a Rukus 7372 AP and a POE adapter and configuring it. For the most part I thought it was easy to setup but not being familiar with the GUI took a little longer naturally.
To answer your inquiry can you rephrase your question? I am not sure what you mean by "the SSID is not showing the correct SSID"? I assume you created a VAP and added the SSID to it then followed my steps to provision the AP. If your VAP profile is not applied to the SonicPoint then its going to broadcast the default SSID instead. I hope this helps.
Where do you add them to the group - it did not appear that you added them to any group in the video. 38 minutes and counting on hold with Sonicwall...
Jim @ 6:23 into my video goes over the VAP Group.
I saw that - but you did NOT add PHYSICAL units to the group, only VAP's to the group. This is why I am STILL seeing default VLAN's. I watched this several times and was waiting for "here is how you PHYSICALLY add sonicpoint units to the profile." This is the logic my brain is expecting.
Update - as I suspected, SNWL support told me that "something's wrong" and I defaulted the two SonicPoints to factory defaults and started over.
What's more, this video does not take into account how to assign more than one SonicPoint to a group. At no point is there any mention of adding physical units to a group of any kind, it just kind of happens "automagically." Looks like I'll have to wait the requisite 30 minutes on hold to talk to their support.....
Jim - When the SonicPoints have been recognized by the firewall you have a choice to Provision them to inherit the VAP group and settings to 1 or more SonicPoints. I could of probably went into more detail at the time of making this video however the video is tailored around a single SonicPoint and any other SonicPoints follow suit using the same provisioning process. If this video doesnt help you then hopefully SonicWall support will. Good Luck!