{"id":2582,"date":"2016-08-09T07:38:21","date_gmt":"2016-08-08T19:38:21","guid":{"rendered":"http:\/\/www.zoyinc.com\/?p=2582"},"modified":"2016-08-09T07:38:21","modified_gmt":"2016-08-08T19:38:21","slug":"esx-vlan-to-sonicwall-dmz","status":"publish","type":"post","link":"http:\/\/www.zoyinc.com\/?p=2582","title":{"rendered":"ESX VLAN to SonicWALL DMZ"},"content":{"rendered":"

<\/p>\n

I have an ESX server on my LAN and I want to connect it to the DMZ on my SonicWALL using a VLAN as the ESX server only has one network adaptor.<\/p>\n

The SonicWALL is a TZ 205w which is connected to Fibre. This in itself was a challenge and is described in the post Connect SonicWALL TZ205w to Fibre ONT.<\/a><\/p>\n

Prerequisites<\/h2>\n

The main prerequisite is that the SonicWALL must be running firmware 5.9 or greater, if a generation 5 applicance such as the TZ 205w or I believe 6.0 or greater for a generation 6 appliance.<\/p>\n

Worth noting that I am running ESX v6, though I don’t think that matters as I am sure VLANs have been supported for quite a while in VMware.<\/p>\n

Enabling a VLAN on ESX virtual machine<\/h2>\n

Open up the vSphere Client and select the root. From there select the configuration tab and click on the “Properties” link for your vSwitch:<\/p>\n

\"vSphere<\/p>\n

In the vSwitch properties, Select the “VM Network” port and click on the “Edit” button to set the VLAN ID to match your VLAN number, in my case “5” and potentially change the “Network Label” to something more meaning full like say “VLAN 5”:<\/p>\n

\"vSwitch<\/p>\n

To give:<\/p>\n

\"VLAN<\/p>\n

Obviously you need to go back to your VM and set the network label to match:<\/p>\n

\"VM<\/p>\n

Enabling a VLAN setting on a SonicWALL DMZ<\/h2>\n

On the SonicWALL side of the equation we need to now create a “Virtual Interface”.<\/p>\n

So login to the SonicWALL and select “Network | Interfaces”\"VirtualThen set the following:
\n\"VLANNote that the “Advanced” settings are all default. Obviously the “VLAN Tag” needs to match the “VLAN ID” used in ESX.<\/p>\n

The “IP Address” is the address of the interface and is the “gateway” for the VLAN.<\/p>\n

VM network settings<\/h3>\n

In the above example the “IP Address” of the interface is “192.168.204.1” and subnet “255.255.255.0” or “\/24”. This means that for the virtual machine on this VLAN in order for it to connect outside the VLAN it should have an IP in the range 192.168.204.x with a “default gateway” of “192.168.204.1”. Remember you can change any of this to suit your requirements !<\/p>\n

Resources<\/h2>\n

Sample configuration of virtual switch VLAN tagging (VST Mode)<\/p>\n

https:\/\/kb.vmware.com\/selfservice\/microsites\/search.do?language=en_US&cmd=displayKC&externalId=1004074<\/a><\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

I have an ESX server on my LAN and I want to connect it to the DMZ on my SonicWALL using a VLAN as the ESX server only has one network adaptor. The SonicWALL is a TZ 205w which is connected to Fibre. This in itself was a challenge and is described in the post […]<\/p>\n","protected":false},"author":2,"featured_media":2594,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[124,345],"tags":[343,354,346,353,308],"class_list":["post-2582","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-esxi","category-sonicwall","tag-esx","tag-network","tag-sonicwall","tag-vlan","tag-vmware"],"_links":{"self":[{"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/posts\/2582","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2582"}],"version-history":[{"count":5,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/posts\/2582\/revisions"}],"predecessor-version":[{"id":2595,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/posts\/2582\/revisions\/2595"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=\/wp\/v2\/media\/2594"}],"wp:attachment":[{"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2582"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2582"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.zoyinc.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2582"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}