Connecting multiple SonicPoints using managed switches

By riot
in Smart Home, Network & Security

 Share

Recommended Posts

Rising Star

riot

Posted
Posted

I'm new to the whole managed switches thing, so I am completely lost right now. I have two buildings that are right next to each other, they are connected by fiber. The fiber terminates into unmanaged switches on both ends. This keeps the workstations/servers in both buildings connected to each other. Internet comes into one building, and we use an NSA 240 as our router/firewall. We have one SonicPoint connected directly to the NSA to provide wireless, there are two SSIDs (corporate and guest) broadcasting from the SonicPoint. Now we need to put two SonicPoints in the other building. I purchased two Dell PowerConnect 5524 switches thinking that we could use VLANs to connect the two new SonicPoints to the NSA. The SonicPoints need to be directly connected to a port on the NSA, I am thinking I could use VLAN's to trick the SonicPoints into thinking they are directly connected to the NSA. I figured I'd put one 5524 into each building, plug the fiber into each to connect the building, and then set up VLANs for workstation traffic and SonicPoint traffic. Problem is, I have no idea where to start. I've looked over the documentation multiple times, but I'm confused about access vs general vs trunk and native VLANs and PVIDs and everything else. Can someone please point me in the right direction? Thanks!

Community Regular

Zinomian

Posted
Posted

The sonicpoints need to be connected to the wlan port (which could by any port!), at this point if you want to allow wlan traffic to the lan, you have to bridge the two ports, and have ALL of your sonicpoints connected to a switch which connects to the wlan. You cannot and will not be able to use ANY sonicpoint on the LAN segment. A firmware update I believe will make the sonicpoints in the future become regular APs and be use on the LAN segment, but until then you have to use them on the wlan segment.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Not sure why you think you needed to introduce vlans for?

from the sonicpoint deployment guide

Layer 2 and Layer 3 considerations for SonicPoints

SonicWALL uses two proprietary protocols (SDP and SSPP) and both *cannot* be routed across any layer 3 device. Any SonicPoint that will be deployed must have an Ethernet connection back to the provisioning SonicWALL UTM appliance, in the same broadcast domain/network.

SonicWALL UTM appliance must have interface or sub-interface in same VLAN/broadcast domain as SonicPoint.

SonicPoints must be able to reach the DHCP scope on the SonicWALL; make sure other DHCP servers are not present on VLAN/broadcast domain.

Sharing SSIDs across SonicPoints attached to multiple interfaces may case connectivity issues as wireless client roams to different SonicPoint subnet.

From how you have described your network, your devices are all on the same broadcast domain. You should be able to plug your new sonicpoints into any port on the switch(es) in the other building without issue.

You do not need to use vlans from what I can see.

Rising Star

riot

Posted
  • Author
Posted

The sonicpoints need to be connected to the wlan port (which could by any port!), at this point if you want to allow wlan traffic to the lan, you have to bridge the two ports, and have ALL of your sonicpoints connected to a switch which connects to the wlan. You cannot and will not be able to use ANY sonicpoint on the LAN segment. A firmware update I believe will make the sonicpoints in the future become regular APs and be use on the LAN segment, but until then you have to use them on the wlan segment.

Currently the one SonicPoint is connected to the WLAN port, and we've bridged it to the LAN port so people on the corporate SSID can access servers/etc. But now I need to connect two more SonicPoints in the building across the street. Because I cannot physically plug the two SonicPoints into the back of the NSA, I need to find a way fool them into thinking they are.

Not sure why you think you needed to introduce vlans for?

from the sonicpoint deployment guide

Layer 2 and Layer 3 considerations for SonicPoints

SonicWALL uses two proprietary protocols (SDP and SSPP) and both *cannot* be routed across any layer 3 device. Any SonicPoint that will be deployed must have an Ethernet connection back to the provisioning SonicWALL UTM appliance, in the same broadcast domain/network.

SonicWALL UTM appliance must have interface or sub-interface in same VLAN/broadcast domain as SonicPoint.

SonicPoints must be able to reach the DHCP scope on the SonicWALL; make sure other DHCP servers are not present on VLAN/broadcast domain.

Sharing SSIDs across SonicPoints attached to multiple interfaces may case connectivity issues as wireless client roams to different SonicPoint subnet.

From how you have described your network, your devices are all on the same broadcast domain. You should be able to plug your new sonicpoints into any port on the switch(es) in the other building without issue.

You do not need to use vlans from what I can see.

I think this isn't working for us because we've bridged the wireless and lan ports on the NSA unit.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

If you have bridged the wlan to lan, then you can plug into any lan port. If you connect to other dumb switches, you could connect to any of them. Your on one big dumb broadcast domain. So you can plug in anything anywhere and get anywhere that is plugged into any other port on any of the switches, etc.

So again I am no seeing where you need to setup vlans, or what this is going to do - since you don't have any setup now.

No where in the guide does it say you have to be directly connected to anything, nor does setting up a vlan accomplish that even if did.

I am looking at the picture of the nsa 240 -- where is this WLAN port you talk about? Says it can support up to 16 sonicpoints - it clearly does not have 16 ports ;) So not sure what you are talking about with a WLAN port

post-14624-0-65038600-1343825172.png

Rising Star

riot

Posted
  • Author
Posted

The individual ports are "programmable", so you can define a port as WAN, LAN, WLAN, etc. In our case, port X6 is the WLAN port, it's bridged to X0 (the LAN port). Port X6 also has a VLAN so we can have two SSIDs running off one SonicPoint.

Capture.jpg

Rising Star

riot

Posted
  • Author
Posted

Just wanted to come back and let everyone know that I got this to work. I had to set up the same VLAN's on the switches that were created in the Sonicwall, and then trunk the switch to the Sonicwall. Created access ports for the SonicPoints and was good to go. Thanks for the help everyone!

  • 1 year later...
Neowinian

inertia64

Posted
Posted

I'm trying to configure pretty much the same setup. Can you give me more information on how you connected the Sonicwall to your network switches?  Di you plug X0 and X2 into the same switch?  If so, how were they provisioned?  Did you set them up as an aggregate/trunk?

 

If I plug a SonicPoint into X2 it works just the way I want. I'm not sure how to "extend" that XO port to my switches?  I have tried a few ways but each time I lose DHCP on the Geast WLAN.

 

Thanks

  • 2 months later...
Neowinian

netwiz01

Posted
Posted

I'm trying to configure pretty much the same setup. Can you give me more information on how you connected the Sonicwall to your network switches?  Di you plug X0 and X2 into the same switch?  If so, how were they provisioned?  Did you set them up as an aggregate/trunk?

 

If I plug a SonicPoint into X2 it works just the way I want. I'm not sure how to "extend" that XO port to my switches?  I have tried a few ways but each time I lose DHCP on the Geast WLAN.

 

Thanks

Hello, 

 

I recently completed a 25 Sonicpoint deployment for a school.  My recommendation for a secure and stable installation.  You should get a POE switch or switches to provide power and data to your access points.  Not sure how many access points you are delpoying, but get a POE switch to handle the  number of access points.  We used Cisco Small Business gigabit POE managed switch, which works great.

 

I strongly recommed using VLANs on the Sonicwall and the POE switch.  If you create VLANs you setup will be easy and manageble.  As an example we created 3 VLANs and created those sub-interfaces  (50, 60, and 70) on the WLAN (X4).  50 was for Corp users, 60 for guest users, and 70 is for another function, but readily available.    On your POE switch(s) create VLANs as well.  Be sure to assign each port that will host a Sonic access point to VLANs 50 and 60 respectively.

 

I hope this helps.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • New AMD graphics driver fixes install issues and FSR 4.1 crashes on RX 7000 GPUs

      By TarasBuria · Posted

      New AMD graphics driver fixes install issues and FSR 4.1 crashes on RX 7000 GPUs by Taras Buria AMD is rolling out yet another graphics driver. Version 26.6.4 is now available for download, bringing two important fixes. One is for those still using Windows 10 and having trouble installing driver 26.6.2. In fact, this patch is coming from the recently released hotfix, so it is not new if you are already running version 26.6.3. The second fix is for RX 7000 owners. AMD recently brought FSR 4.1 support to the previous-gen graphics cards, but there was a bug with certain games crashing when using FSR 4.1. I experienced this issue with Forza Horizon 6, so today's driver should take care of that. Here is the official changelog: Intermittent install issue seen when installing AMD Software: Adrenalin Edition 26.6.2 on Windows® 10 systems for Radeon™ RX 7000 series and above graphics products. Intermittent application crash may be observed in some games with AMD FSR Upscaling 4.1 enabled on Radeon™ RX 7000 series graphics products. Known issues include the following: Intermittent application crash or driver timeout may be observed while playing Battlefield™ 6 on AMD Ryzen AI 9 HX 370. AMD is actively working on a resolution with the developer to be released as soon as possible. Texture flickering or corruption may appear while playing Battlefield™ 6 with AMD Record and Stream on some AMD graphics products. AMD FSR Upscaling and AMD FSR Frame Generation may show as inactive in AMD Software: Adrenalin Edition while playing Battlefield™ 6 when enabled on Radeon™ RX 9000 series graphics products. Failure to install may be observed while installing AI Bundle components in some regions with limited access to HuggingFace and GitHub. Model flickering or rendering failure may be observed in Maxon Cinema 4D and Blender on Radeon™ RX 7000 series and above graphics products. Users experiencing this issue are recommended to install AMD Software: Adrenalin Edition 26.3.1. Intermittent application crash may be observed on some models while running Blender on Radeon™ RX 7000 series and above graphics products. Users experiencing this issue are recommended to install AMD Software: Adrenalin Edition 26.3.1. You can download the AMD Radeon driver 26.6.4 from the official website here. Full release notes are available on the same page.
    • Amazon may use OpenAI and Nova models after Anthropic reportedly raises costs

      By Karthik Mudaliar · Posted

      Amazon may use OpenAI and Nova models after Anthropic reportedly raises costs by Karthik Mudaliar Amazon is reportedly considering to use OpenAI models and even its own Nova family of AI models after Anthropic raised the cost of using Claude inside Amazon services. According to a report from The Information, Amazon is weighing its options to reduce costs under a new arrangement with Anthropic. But back in April, Amazon said it would invest $5 billion more in Anthropic, with the possibility of adding up to another $20 billion if certain commercial milestones are met. That investment actually came on top of another $8 billion Amazon had already put into the Claude maker. Anthropic, meanwhile, committed to spend more than $100 billion over 10 years on AWS technologies, including Amazon’s Trainium chips. Amazon isn't just a customer of Anthropic but also one of the most important backers and cloud partners. This is why it makes it interesting that Amazon is considering other alternatives to handle its internal workloads. Although Amazon has been building its own options for a while now. Its Nova family of AI models was announced in late 2024 for Amazon Bedrock, with models aimed at text, image, and video tasks. Amazon pitched the model around cost and latency at that time. With that said, OpenAI has also become a more realistic option recently for AWS customers as well as for Amazon itself. Earlier this year, OpenAI brought its latest models and Codex coding agent to Amazon Bedrock, after changes to its previously more restrictive Microsoft cloud arrangement. This allowed AWS to serve even those customers who wanted other alternatives from Claude, without having to move workloads out of Amazon's cloud. Evaluating alternatives could also be due to commercial pressure and not necessarily a sign of a damaged partnership between Amazon and Anthropic. Whether or not Amazon is actually considering switching entirely to OpenAI's models or its own Nova models remains unknown at this moment.
    • Samsung introduces new AI classroom tools and interactive displays at ISTELive 2026

      By Fiza Ali · Posted

      Samsung introduces new AI classroom tools and interactive displays at ISTELive 2026 by Fiza Ali Samsung has announced several new education-focused software features and interactive displays for schools during ISTELive 2026, taking place in Orlando, Florida, from 28 June to 1 July. The focus of these updates is on making shared classroom displays easier to use for teachers while giving IT administrators more control over managing devices. One of the key additions is the Samsung Account Management Solution (AMS). In many schools, multiple teachers share the same interactive display throughout the day, which means signing in and setting everything up can become repetitive. With AMS, teachers can log in by scanning a QR code or tapping an NFC-enabled ID card. Once signed in, their personalised workspace, including wallpapers, bookmarks, app shortcuts, and files, can be instantly accessed through Home Personalisation. Samsung has also included a screen lock feature, allowing teachers to lock the display if they need to step away briefly. Furthermore, the company is also updating its Education Portal with new tools designed for school IT administrators. The portal will allow IT administrators to register teachers, enrol devices, and manage user access from a central dashboard. Administrators can also link NFC cards to teacher accounts, making sign-ins quicker across shared displays. Another addition is a Tags feature that lets schools organise displays by building or classroom. Those tags can also be used to send emergency notifications to selected Samsung Interactive Displays through compatible platforms such as InformaCast and Raptor. Moreover, the tech giant's AI Assistant is gaining several new features aimed at supporting everyday classroom tasks such as lesson planning and classroom engagement. One of the features is Circle to Search, which lets teachers circle text or images on the display to quickly find related information, videos, or web results without interrupting the lesson. The content can then be brought into Samsung Whiteboard. Another feature, Live Transcript, converts spoken lessons into real-time captions, which could be useful for students with hearing impairments or those in multilingual classrooms. The AI Assistant also introduces AI Summary and AI Quiz. The summary tool creates summaries of recorded lessons, while AI Quiz generates questions based on lesson content so teachers can quickly check how well students are following along. Teachers signed in through Samsung AMS can also return to their previous AI-generated lesson materials without logging in again. Alongside the software updates, Samsung has expanded its Android-based Interactive Display range with three new models: the WAF-S, WAFX-PS, and WAHX-M. The WAF-S and WAFX-PS ship with Android 16, bringing updates to security, accessibility, and overall usability while maintaining compatibility with Google's education services including Google Classroom and Google Drive through EDLA certification. Meanwhile, the new WAHX-M is the biggest addition to the lineup, introducing a 98-inch display for larger spaces such as lecture halls and conference rooms. It will also be available in 65-inch, 75-inch and 86-inch sizes. Samsung says the WAHX-M further includes on-device AI features such as voice commands, text-to-speech, and an AI calculator, alongside support for Samsung AMS and AI Assistant. Samsung AI Assistant has been available since April, while Samsung AMS and the updated Education Portal will begin rolling out in July.
    • Apple's newest AirTag 2 gets first big discount

      By JayZJay · Posted

      It's been $24 (single) or $89 (4-pack) for many days on both Amazon and Walmart as far as I know. That isn't a big discount. If these end up like the 1st gen, the 4-pack will routinely get down around $80, give or take a dollar. I think they have even hit $69 at times.
    • Microsoft brings Claude to its own Azure infrastructure, powered by Nvidia GB300 Blackwell

      By Karthik Mudaliar · Posted

      Microsoft brings Claude to its own Azure infrastructure, powered by Nvidia GB300 Blackwell by Karthik Mudaliar Anthropic's Claude models are now generally available in Microsoft Foundry on Azure and are running on Nvidia's GB300 Blackwell Ultra systems. Nvidia wrote in its announcement that the models are hosted on Microsoft Azure and accelerated by GB300 Blackwell Ultra GPUs, with Quantum-X800 InfiniBand networking used to support larger agentic systems and specialized sub-agents that can operate across business domains. This is great for customers and enterprises that want to build autonomous and domain-specific AI agents using Claude without moving outside Microsoft’s cloud platform. Microsoft currently offers Claude models in Foundry in two forms: “Hosted on Azure,” which runs end-to-end on Azure infrastructure and is generally available, and “Hosted on Anthropic infrastructure,” which remains in preview. This separation is quite important for organizations that have procurement, compliance, data processing, or internal governance requirements tied to Azure. Anthropic currently has 11 Claude models listed in Microsoft Foundry, including Opus 4.8, Sonnet 4.6, and even the unavailable Mythos and Fable models. Billing is handled through Claude Consumption Units (CCUs). Microsoft says CCU is an invoicing unit for Claude models in Foundry, with token usage converted using Anthropic’s published per-model token rates. The usage is billed through Azure Marketplace just like models from other distributors and appears on the customer's Azure invoice, while eligible spend can count against a Microsoft Azure Consumption Commitment. For starters, GB300 NVL72 is a rack-scale, fully liquid-cooled system that combines 72 Blackwell Ultra GPUs and 36 Grace CPUs. Nvidia has listed 37TB of fast memory, 130TB/s of NVLink bandwidth, and FP4 Tensor Core performance of up to 1,440 petaflops with sparsity. The deal is also part of a three-way partnership between Microsoft, Nvidia, and Anthropic. Under the deal, Anthropic has committed to buying $30 billion in Azure compute capacity and contracting additional capacity up to one gigawatt. Nvidia and Microsoft also said they would invest up to $10 billion and $5 billion in Anthropic, respectively.

  • Recent Achievements

    • Reacting Well
      NovaEdgeX earned a badge
      Reacting Well
    • Week One Done
      NovaEdgeX earned a badge
      Week One Done
    • One Year In
      BA the Curmudgeon earned a badge
      One Year In
    • Conversation Starter
      rosiecharles earned a badge
      Conversation Starter
    • First Post
      KMilenkoski1202 earned a badge
      First Post

  • Popular Contributors

    1. 1
      +primortal
      536
    2. 2
      +Edouard
      269
    3. 3
      PsYcHoKiLLa
      150
    4. 4
      Steven P.
      97
    5. 5
      macoman
      65
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!