Hey everyone,
I'm new in my job and I'm dealing with multiple clients that use SonicWall devices. The issue is, many of these clients only have workstations and SonicWall appliances without a dedicated server that's always on. I need a way to remotely access the SonicWall for configuration changes, and I want to do this without interfering with users during business hours.
I've been looking into SSH reverse tunneling as a potential solution to access the SonicWall's LAN interface from the outside. I do have access to the workstations, but my goal is to avoid any disruption or kicking users out while I make these changes.
Here are my main questions:
- Is SSH reverse tunneling a good or recommended method for this type of setup?
- What are the potential downsides or security risks I should be aware of?
- Should SonicWall devices be set up to guard against this kind of access?
- How do managed service providers (MSPs) usually handle remote firewall management when there isn't a server on-site?
Thanks for any insights!
2 Answers
You might want to consider accessing it via the WAN interface. Like the previous comment said, enrolling in their Network Security Manager (NSM) can really help you manage the firewall remotely via the cloud. Just keep in mind that NSM comes with a cost, which might be a downside for some.
Yeah, good point! I've read some debates on that too. Cloud management sounds efficient, but security should be a priority!
If you have the SonicWall registered and managed at mysonicwall.com, you can make changes directly through their cloud portal without needing to connect to the firewall itself. Makes things a lot simpler!
That's interesting, but I’ve heard that allowing management through the WAN can lead to security vulnerabilities. Are there many CVEs linked to that?