Dell 1RK30-0AF, Getting Started Manual

Page 1: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide SMA 6200 Regulatory Model Number 1RK31 0B0 SMA 7200 Regulatory Model Number 1RK30 0AF ...

Page 2: ...S ANY EXPRESS IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTY OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE OR NON INFRINGEMENT IN NO EVENT SHALL DELL BE LIABLE FOR ANY DIRECT INDIRECT CONSEQUENTIAL PUNITIVE SPECIAL OR INCIDENTAL DAMAGES INCLUDING WITHOUT LIMITATION DAMAGES FOR LOSS OF PROFITS BUSINESS INTERRUPTION OR LOSS OF INFORMATI...

Page 3: ...claims any proprietary interest in the marks and names of others This product contains third party components For third party license information go to http software dell com legal license agreements aspx Source code information for open source components is available at http opensource dell com Legend CAUTION A CAUTION icon indicates potential damage to hardware or loss of data if instructions ar...

Page 4: ......

Page 5: ...e Access 6200 7200 appliances For Quick Policy Setup Charts refer to Quick policy setup on page 61 Chapters and sections Chapter 1 Sections include In this guide on page 5 Chapters and sections on page 5 Chapter 2 Sections include Introduction to the SMA 6200 7200 on page 9 SMA 6200 7200 package contents on page 10 SMA 6200 7200 front panels on page 12 SMA 6200 7200 back panels on page 13 ...

Page 6: ...on on page 23 Connecting the appliance on page 24 Starting the appliance on page 24 Entering network settings using the LCD on page 24 Running the Setup Wizard on page 25 Connecting to AMC on page 26 Configuring basic WorkPlace portal access on page 27 Chapter 5 Sections include Registering and obtaining a license on page 31 Using MySonicWALL on page 32 Creating a MySonicWALL account on page 32 Re...

Page 7: ...talling the outer rails on page 40 Installing the appliance in the rack on page 42 Removing the appliance from the rack on page 42 Chapter 7 Sections include Safety and regulatory information on page 45 Safety information for the SMA 6200 appliance on page 46 Safety information for the SMA 7200 appliance on page 52 Regulatory information for both SMA 6200 and SMA 7200 on page 58 ...

Page 8: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 8 ...

Page 9: ...he SMA 6200 7200 This section describes the items shipped with the Dell Secure Mobile Access 6200 7200 appliances and provides front and rear illustrations of them SMA 6200 7200 package contents on page 10 SMA 6200 7200 front panels on page 12 SMA 6200 7200 back panels on page 13 ...

Page 10: ... two power cords for SMA 7200 6 One Dell Secure Mobile Access 6200 7200 Getting Started Guide The included power cord s are approved for use only in specific countries or regions Before using a power cord verify that it is rated and approved for use in your location The power cords are for AC mains installation only See Safety and regulatory information on page 45 for minimum power cord rating and...

Page 11: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 11 Figure 1 Package contents If any items are missing from your package contact Support at https support software dell com 1 4 5 6 3 2 1 ...

Page 12: ...splayPort USB ports LED Indicators top to bottom Hard disk drive activity Alarm condition Test Quick blinking Initializing Solid Test mode Power 1 2 Blue operating correctly Yellow Unconnected power supply or failure X1 X0 X3 X2 X5 X4 SFP ports 10 Gb Diagnostics port for future use 1 Gb 1 Gb 1 Gb Digital audio video ...

Page 13: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 13 SMA 6200 7200 back panels SMA 6200 SMA 7200 Hard drives 2 Power supply Fans 3 Hard drives 2 Fans 3 Power supplies 2 ...

Page 14: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 14 ...

Page 15: ...es an overview of single homed and dual homed network architecture and discusses firewall settings and other information you need about components of your network to successfully deploy the SMA 6200 7200 Network architecture on page 16 Preparing for the installation on page 18 About installation and deployment on page 21 ...

Page 16: ...stration Guide for further information If you are installing a cluster refer to the SMA Administration Guide Dual homed configuration internal and external interfaces One network interface is used for external traffic that is to and from the Internet and the other interface is used for internal traffic to and from your corporate network Single homed interface configuration internal interface A sin...

Page 17: ...e or more Domain Name System DNS servers Optionally a Windows Internet Name Service WINS server This is required for browsing Windows networks using WorkPlace Although not required enabling the appliance to communicate with these additional resources provides greater functionality and ease of use Network Time Protocol NTP server for synchronizing the time on the appliance External server for stori...

Page 18: ...his name is used only in log files you do not need to add it to DNS The internal IP address and optionally an external IP address Select a routing mode and supply IP addresses for the network gateways to the Internet and your corporate network Certificate information Several pieces of information are used to generate the server and AMC certificates A fully qualified domain name FQDN for the applia...

Page 19: ... know the IP addresses for one or more NTP servers To send data to a syslog server you need to know the IP address and port number for one or more syslog servers Verifying your firewall policies For the appliance to function correctly you must open ports on your external Internet facing and internal firewalls External firewall For secure access to the appliance from a Web browser or OnDemand you m...

Page 20: ...oft networking 138 tcp and 138 udp 137 tcp and 137 udp 139 udp 162 snmp 445 smb Used by WorkPlace to perform WINS name resolution browse requests and access file shares LDAP unencrypted 389 tcp Communicate with an LDAP directory or Microsoft Active Directory LDAP over SSL encrypted 636 tcp Communicate with an LDAP directory or Microsoft Active Directory over SSL RADIUS 1645 udp or 1812 udp Communi...

Page 21: ...See Rack mounting the appliance on page 37 and Connecting the appliance on page 24 Turn on the appliance and begin configuration To connect to your appliance on your internal network you must specify an internal IP address the subnet mask and indicate whether your appliance is part of a cluster Use the controls on the front of the appliance See Entering network settings using the LCD on page 24 Ru...

Page 22: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 22 ...

Page 23: ...l Secure Mobile Access 6200 7200 For more detailed information the SMA Administration Guide has complete instructions for installing your SMA 6200 7200 appliance Connecting the appliance on page 24 Starting the appliance on page 24 Entering network settings using the LCD on page 24 Running the Setup Wizard on page 25 Connecting to AMC on page 26 Configuring basic WorkPlace portal access on page 27...

Page 24: ...only in specific countries or regions Before using a power cord verify that it is rated and approved for use in your location To connect the power of the SMA 6200 plug in the power cord to the power supply socket on the back of the appliance and then connect the cord to an AC outlet For the SMA 7200 plug the power cords to the power supply sockets on the appliance back and then connect the cords t...

Page 25: ...pair of appliances and which node it is enter 1 for the primary node and 2 for the secondary node Press Right to continue to the next screen 5 Review your settings and apply them then wait until the LCD screen displays Setup is complete Running the Setup Wizard After the LCD configuration steps the Setup Wizard continues the initial setup for your SMA 6200 7200 appliance To run the Setup Wizard 1 ...

Page 26: ...work i Enter user access settings and an initial access policy for users which you can refine later in AMC Select Allow authenticated users access to all defined resources This automatically allows users access and is the least secure but can always be changed later when more security is needed For the most secure select Initially deny all access 5 When ready click Finish to apply your settings Th...

Page 27: ...server a realm a user and an access rule This section describes how to configure a local authentication server and user on the appliance itself and create a realm and access rule to go with them This allows you to quickly create a portal while gathering the information needed for a full production deployment This same sequence of steps also applies if you are configuring an external authentication...

Page 28: ...e Authentication server drop down list select the local authentication server you just configured 6 Click Finish The Realms page displays your new realm and shows it as associated with your local authentication server Creating a local user To create a local user 1 Navigate to the Security Administration Users Groups page 2 Click the Local Accounts tab 3 Click New and select User 4 In the Username ...

Page 29: ...MA 6200 7200 appliance uses a granular access policy to determine what backend resources a given user is allowed to access To configure a default access rule to allow any user to access resources through the appliance 1 Navigate to the Security Administration Access Control page 2 Click New 3 Optionally type in a Description 4 Click Finish Applying the pending changes To apply all your changes 1 C...

Page 30: ...o the WorkPlace portal using the local user credentials To log in as the local user 1 Point your browser to https IP address where IP address matches the address you defined for the internal or external network interface The default internal IP address is 192 168 0 10 2 In the portal login screen enter the username and password for the local user 3 Click Login ...

Page 31: ...nicWALL You can register your SMA 6200 7200 appliance before or after you initialize or deploy it Registration provides access to essential resources such as your license file firmware updates documentation and technical support information Using MySonicWALL on page 32 Creating a MySonicWALL account on page 32 Registering your appliance on page 32 Downloading your license file on page 33 Importing...

Page 32: ...ompany Creating a MySonicWALL account A MySonicWALL account is required in order to register the appliance To create a MySonicWALL account from any computer 1 In your Web browser navigate to https www mysonicwall com 2 In the login screen click the Register Now link 3 Complete the Registration form and then click Register 4 Verify that the information is correct and then click Submit 5 To confirm ...

Page 33: ...cense To retrieve the license file for your appliance perform the following steps 1 In your Web browser go to https www mysonicwall com and log in with your username and password 2 Click My Products to view the list of your registered appliances 3 Click the link for the appliance that requires a license 4 On the Service Management page click the Click here for the License File link 5 In the View L...

Page 34: ...the AMC displays a license warning message in the status area that links to the Licensing page Both Setup Wizard and AMC are Web based applications for configuring the appliance PCs running these applications must have JavaScript enabled JavaScript must also be enabled on the browsers used for accessing WorkPlace If you are installing a cluster refer to the SMA Administration Guide When you are re...

Page 35: ...ending changes link in the upper right corner and then clicking Apply changes NOTE When you upload a Spike License the countdown of the number of days it is valid begins once you activate it and apply the pending change in the AMC Do not click the Activate link until you are ready to start using it ...

Page 36: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 36 ...

Page 37: ...ng contains a slide rail kit for mounting the appliance in a four post cabinet Before installing the appliance in an equipment rack the rails must be attached to the appliance and to the rack posts You will need the following tools and hardware for installation Phillips cross head screwdriver 1 bit and 2 bit Anti static wrist strap and conductive foam pad recommended Two outer rails Four inner rai...

Page 38: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 38 M4 SCREW 8 WASHERS 8 Fasten 4 screws to the rail Assemble the Slide Rail A B A B ...

Page 39: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 39 M5 SCREW 8 M5 Nut 8 Assemble the Slide Rail Fasten two sided screws to the rail C C ...

Page 40: ...ner rail to the appliance with crosshead threaded screws 3 Repeat the above steps to attach another rail on the same side of the appliance 4 Attach the front bracket to the system 5 Repeat to attach the other inner rails and front bracket to the other side of the appliance Installing the outer rails To install the outer rail 1 Attach the rail to the posts of the rack by using three rack screws 2 E...

Page 41: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 41 Assemble Inner Rail to Chassis Fasten 6 screws to attach the inner channel onto the chassis M4 SCREW 6 D D ...

Page 42: ...il 2 Push the appliance all the way in until the front brackets contact the rack 3 Optionally attach the front brackets to the rack Removing the appliance from the rack 1 Pull the appliance half way out to the lock position 2 Press the rail lock release tabs on both sides while pulling the appliance towards you until past the tabs Continue to pull the appliance until it is fully removed from the o...

Page 43: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 43 Insert Chassis to Frame Push hook down to separate Slide inner channel into rails ...

Page 44: ...Dell Secure Mobile Access 6200 7200 Getting Started Guide 44 ...

Page 45: ...fety and regulatory information This section provides safety and regulatory information Safety information for the SMA 6200 appliance on page 46 Safety information for the SMA 7200 appliance on page 52 Regulatory information for both SMA 6200 and SMA 7200 on page 58 ...

Page 46: ...cure location accessible only by trained personnel The following statement applies only to rack installed products that are GS Marked This equipment is not intended for use at workplaces with visual display units in accordance with 2 of the German ordinance for workplaces with visual display units Mount in a location away from direct sunlight and sources of heat A maximum ambient temperature of 10...

Page 47: ...hed flexible cord according to IEC 60227 designation or H05 VV F or H05 VVH2 F2 and rated for at least 3G 0 75 mm Thumbscrews should be tightened with a tool after both installation and subsequent access to the rear of the product Before replacing the fan unit carefully read and follow the instructions provided with the unit When using a Fiber Optic Small Form Pluggable SFP module ensure it is IEC...

Page 48: ...m abgeschlossenen Raum installiert wird der nur von speziell ausgebildetem Personal betreten werden kann Der folgende Hinweis gilt nur für rackmontierte Produkte mit GS Kennzeichen Dieses Gerät ist nicht zur Verwendung an Arbeitsplätzen mit visuellen Anzeigegeräten gemäß 2 der deutschen Verordnung für Arbeitsplätze mit visuellen Anzeigegeräten vorgesehen Wählen Sie für die Montage einen Ort der ke...

Page 49: ...ang enthaltenen Netzkabel sind nur für die Verwendung in bestimmten Ländern und Regionen zugelassen Überprüfen Sie bitte vor der Verwendung eines Netzkabels ob es für die Verwendung in Ihrem Land oder Ihrer Region zugelassen ist und den geforderten Normen entspricht Mindest Stromkabel Bewertung für die Europäische Union CE Zertifizierte Netzkabel nicht leichter als leichte PVC Schlauchkabel nach I...

Page 50: ...ellers Kabelverbindungen Alle Ethernet und RS232 C Kabel eignen sich für die Verbindung von Geräten in Innenräumen Schließen Sie an die Anschlüsse der Dell keine Kabel an die aus dem Gebäude in dem sich das Gerät befindet herausgeführt werden 安全說明 需要滿足以下條件以進行正確安裝 戴爾 SonicWALL 設備被設計成安裝在一個標準的 19 吋機 架安裝櫃 需要滿足以下條件以進行正確安裝 使用機架製造商推薦的裝載硬體 確認機架足夠裝置所需 請確認裝置內不會滲入水分或過多的濕氣 裝置週邊請保持通風 特別是裝置通風口側 建議裝置與 牆壁間至少要有 1 ...

Page 51: ... SonicWALL 產品包括為後備交 流電源和增加可靠性而附帶的兩個電源 要斷開交流電源 兩條電源線都必須被拔除 隨附的電源線僅限於特定的國家或地區使用 使用前 請 確認電源線的額定值且已被認可在你的地區上使用 切勿在交流電源線還連接著電源時移除或安裝電源 當安裝及後續接觸產品背面之後 必須用工具將指旋螺釘 鎖緊 更換風扇部件前 請仔細閱讀 並遵循所提供的指示 當使用光纖小型可插拔 SFP 模塊 確保它是 IEC60825 認證 鋰電池警告 使用者不得自行更換 戴爾 SMA 網際網路安全性裝置中使用的鋰 電池 必須將 戴爾 SMA 送回 戴爾 SMA 授權的服務中心 以更換 相同的鋰電池或製造商推薦的同類型鋰電池 若因任何原因必須 丟棄電池或 戴爾 SMA 網際網路安全性裝置 請嚴格遵守電池製 造商的指示 纜線連結 所有乙太網路與 RS232 主控台 線路都是為與其他裝置進行內 建連接所...

Page 52: ...cure location accessible only by trained personnel The following statement applies only to rack installed products that are GS Marked This equipment is not intended for use at workplaces with visual display units in accordance with 2 of the German ordinance for workplaces with visual display units Mount in a location away from direct sunlight and sources of heat A maximum ambient temperature of 10...

Page 53: ... it is rated and approved for use in your location Minimum power cord rating for European Union CE Certified power supply cord not lighter than light PVC sheathed flexible cord according to IEC 60227 designation or H05 VV F or H05 VVH2 F2 and rated for at least 3G 0 75 mm Never remove or install a power supply with the AC power cord attached to the power supply being removed or installed Thumbscre...

Page 54: ...ie Funksendern oder Breitbandverstärkern befinden Dieses Produkt ist nicht dafür entwickelt um in Bereichen mit öffentlichem Zugang betrieben zu werden Wenn es in Schulen betrieben wird stellen Sie sicher dass das Gerät in einem abgeschlossenen Raum installiert wird der nur von speziell ausgebildetem Personal betreten werden kann Der folgende Hinweis gilt nur für rackmontierte Produkte mit GS Kenn...

Page 55: ...gbarkeit ausgeliefert Um den Wechselstrom AC zu unterbrechen muessen beide Stromkabel entfernt werden Das im Lieferumfang enthaltene bzw die im Lieferumfang enthaltenen Netzkabel sind nur für die Verwendung in bestimmten Ländern und Regionen zugelassen Überprüfen Sie bitte vor der Verwendung eines Netzkabels ob es für die Verwendung in Ihrem Land oder Ihrer Region zugelassen ist und den geforderte...

Page 56: ...rstellers Kabelverbindungen Alle Ethernet und RS232 C Kabel eignen sich für die Verbindung von Geräten in Innenräumen Schließen Sie an die Anschlüsse der Dell keine Kabel an die aus dem Gebäude in dem sich das Gerät befindet herausgeführt werden 安全說明 需要滿足以下條件以進行正確安裝 戴爾 SMA 設備被設計成安裝在一個標準的 19 吋機架安裝 櫃 需要滿足以下條件以進行正確安裝 使用機架製造商推薦的裝載硬體 確認機架足夠裝置所需 請確認裝置內不會滲入水分或過多的濕氣 裝置週邊請保持通風 特別是裝置通風口側 建議裝置與 牆壁間至少要有 1 英吋 ...

Page 57: ...個戴爾 SMA 產品包括為後備交流電源 和增加可靠性而附帶的兩個電源 要斷開交流電源 兩條電源線都必須被拔除 隨附的電源線僅限於特定的國家或地區使用 使用前 請 確認電源線的額定值且已被認可在你的地區上使用 切勿在交流電源線還連接著電源時移除或安裝電源 當安裝及後續接觸產品背面之後 必須用工具將指旋螺釘 鎖緊 更換風扇部件前 請仔細閱讀 並遵循所提供的指示 當使用光纖小型可插拔 SFP 模塊 確保它是 IEC60825 認證 鋰電池警告 使用者不得自行更換 戴爾 SMA 網際網路安全性裝置中使用的鋰 電池 必須將 戴爾 SMA 送回 戴爾 SMA 授權的服務中心 以更換 相同的鋰電池或製造商推薦的同類型鋰電池 若因任何原因必須 丟棄電池或 戴爾 SMA 網際網路安全性裝置 請嚴格遵守電池製 造商的指示 纜線連結 所有乙太網路與 RS232 主控台 線路都是為與其他裝置進行內 建連接所設計的...

Page 58: ...clarations can be found online at www dell com India RoHS statement This product complies with Restriction of Hazardous Substances RoHS requirements as prescribed by E Waste Management Handling Rules by the Ministry of Environment Forests Government of India For further information refer to http www dell com regulatory_compliance Model Product 1RK31 0B0 SMA 6200 1RK30 0AF SMA 7200 NOTE Additional ...

Page 59: ...ldwide innovative technology business solutions and services they trust and value For more information visit www software dell com Contacting Dell on page 59 Technical support resources on page 60 Contacting Dell Technical support Online support Product questions and sales 800 306 9329 Email info software dell com ...

Page 60: ...t support engineers through an online Service Request system To access the Support Portal go to https support software dell com The site enables you to Create update and manage Service Requests cases View Knowledge Base articles Obtain product notifications Download software For trial software go to Trial Downloads View how to videos Engage in community discussions Chat with a support engineer Thi...

Page 61: ... device profiles How do you define trust level for user How are users authenticated Who is authenticating A realm allows users to authenticate using credentials stored on an external authentication server Communities allow you to group realm members based on different security needs as well as what access agents the user will use to interact with the network WorkPlace sites determine what Web base...

Page 62: ...n further refine your users and groups later 6 Define Access Control rules Select Access Control from the AMC navigation menu n Select New and then specify a community user or group that will have access n Select the resource you want users to access n Optional To place a zone restriction on the resource associate the rule with a zone defined in step 4 1 Select Realms from the main AMC navigation ...