Liongard

Roar Users Guide & Documentation

Welcome! You'll find comprehensive guides and documentation to help MSPs start working with Liongard's Roar as quickly as possible, as well as support if you get stuck. Let's go #MakeITRoar!

Get Started    

SonicWall

This document provides the steps required to configure the Sonicwall Inspector.

👍

Quick Details

Recommended Agent: On-Premise
Supported Agents: On-Premise or Self-Hosted
Is Auto-Discovered By: Network Discovery Inspector
Can Auto-Discover: N/A
Parent/Child Type Inspector: No
Inspection via: SSH
Data Summary: Here

Overview

See it in Action

Video isn't playing? Click here.

There are three methods for setting up a SonicWall Inspector in Liongard:

If you would like to roll out the SonicWall Inspector through an On-Premise Agent, you must first install the Windows Agent on a server within the network residing behind the firewall of the SonicWall device. If you would like to roll out the SonicWall Inspector through a Self-Hosted Agent, you must first install the Self-Hosted Agent in your datacenter.

Inspector Setup Preparation

🚧

SonicWall Firmware Version

Liongard supports SonicWall firmware Version 6.0 and later. We will support versions less than 6.0 on a best-effort basis

SonicWall Inspectors can be Auto-Discovered by Network Discovery Inspectors, if a SonicWall firewall is the gateway of the network where a Network Discovery Inspector has been rolled out.

If you have not rolled out a Network Discovery Inspector for a network, and would like to setup the SonicWall Inspector through Auto-Discovery, then follow our Network Discovery Documentation to do so.

Otherwise, set up a SonicWall Inspector by first following the On-Premise Agent based inspection Inspector Setup Preparation, or the Self-Hosted Agent based inspection Inspector Setup Preparation

🚧

Remotely Inspect SonicWall through A VPN Tunnel

Liongard can inspect a SonicWall using an Agent at a different location if you have persistent site-to-site tunnels set up.

If you need to allow your SonicWall device's SSH management interface over a VPN tunnel, please review SonicWall's Documentation to learn more.

On-Premise Based Inspection

Inspector Setup Preparation

You'll need to configure the SonicWall device to communicate with the Liongard On-premise Agent. Follow the steps below:

Step 1: Create new Host Address Objects for LAN zone

  • Navigate to Network > Address Objects
  • Select Custom
  • Click ADD
  • Create Address Object using the following information:
    • Zone should be LAN/LAN for the Liongard On-premise Agent
    • Type should be Host
    • Liongard Agent (IP Address) - x.x.x.x/255.255.255.255 (where x.x.x.x is the network address of the server where the Windows Agent has been installed)

Step 2: Create Liongard Address Group with the Above Item

  • Navigate to Network > Address Objects > Address Groups
  • Add Group > Suggested name “Liongard Monitor Group”
  • Add the Liongard network object
  • Click Save

Step 3: Enable SSH Management on Internal Interface

  • Click Interfaces > Configure LAN
  • Check SSH Management
  • Click OK

Step 4: Enable SSH Access on LAN

  • Click Firewall > Access Rules > Grid View > LAN to LAN
  • Under Configure column > Click Edit/Pencil for SSH Management
  • Change Source to "Liongard Group" from above

Step 5: Create a Naming Convention for the Liongard Service Account (e.g. liongard.svc)

📘

Naming Convention

Please refer to your organization's naming convention policies when creating usernames. Usernames we state in the documentation are suggestions only.

  • Click Users > Local Users > Add User
  • User name: liongard.svc
  • Create password
  • Comment: Liongard Service
  • Go to Groups tab
  • Add SonicWall Administrators
  • Click OK

🚧

SSH Password Complexity Requirements

Please note that SonicWall has different password complexity requirements for SSH access than it does for the web UI. These requirements can vary between versions of the firmware.

More information can be found in their documentation.

🚧

SonicWall Password Supported Characters

Please note that SonicWall does not support certain characters in system passwords, which may cause authentication issues between Liongard and SonicWall if you attempt to use an unsupported character.

More information can be found in their documentation.

Liongard Inspector Setup

In Liongard, navigate to Admin > Inspectors > Navigate to the SonicWall Inspector > Select Add System.

Fill in the following information:

  • Environment: Select the Environment this System should be associated to
  • Friendly Name: Suggested "[Environment Name] SonicWall"
  • Agent: Select the On-premise Agent installed for this Environment
  • Inspector Version: Latest
  • SSH Username: Liongard service credentials created in the Inspector Setup Preparation above
  • SSH Password: Liongard service credentials created in the Inspector Setup Preparation above
  • IP/Hostname: Hostname or IP address of the SonicWall appliance
  • SSH Port: SSH Port
  • Schedule: The Inspector will default to run once a day at the time the Inspector is set up. Here you can adjust the schedule

Select Save. The Inspector will now be triggered to run within the minute.

Self-Hosted Agent Based Inspection

Inspector Setup Preparation

You'll need to configure the SonicWall device to communicate with the Liongard Self-Hosted Agent. Follow steps below:

Step 1: Create New Host Address Objects for WAN Zone

  • Go to Network > Address Objects
  • Select Custom
  • Click ADD
  • Create address object using the information below:
    • Zone should be WAN if the Liongard Self-Hosted Agent is being used.
    • Type should be Host
    • Liongard Agent x.x.x.x/255.255.255.255 (where x.x.x.x is the IP Address of the Agent you wish to run the inspection through)

Step 2: Create Address Group Liongard Group with Above Item

  • Navigate to Network > Address Objects > Address Groups
  • Add Group > Name “Liongard Monitor Group”
  • Add the Liongard network object
  • Click Save

Step 3: Enable SSH Management on Internal Interface

  • Click Interfaces > Configure WAN
  • Check SSH Management
  • Click OK

Step 4: Enable SSH Access on WAN

  • Click Firewall > Access Rules > Grid View > WAN to WAN > Under Configure column click Edit/Pencil for SSH Management
  • Change Source to "Liongard Group" from above

❗️

Verify SSH Security Access

  1. By default, SonicWall opens up the SSH port from any IP on the WAN interface. Make certain to verify the steps from "Enable SSH Access on WAN".

  2. Verify the WAN to WAN access group for SSH has been locked down to Liongard and any other needs for your organization

Step 5: Create a Naming Convention for the Liongard Service Account (e.g. liongard.svc)

📘

Naming Convention

Please refer to your organization's naming convention policies when creating usernames. Usernames we state in the documentation are suggestions only.

  • Click Users > Local Users
  • Click Add User
  • Suggested Username: liongard.svc
  • Create password
  • Comment: Liongard Service
  • Go to Groups tab, add SonicWall Administrators
  • Click OK

Liongard Inspector Setup

In Liongard, navigate to Admin > Inspectors > Navigate to the SonicWall Inspector > Select Add System.

Fill in the following information:

  • Environment: Select the Environment this System should be associated to
  • Friendly Name: Suggested "SonicWall [Environment Name]"
  • Agent: Select the Self-Hosted Agent
  • Inspector Version: Latest
  • SSH Username: Liongard service credentials created in the Inspector Setup Preparation above
  • SSH Password: Liongard service credentials created in the Inspector Setup Preparation above
  • IP/Hostname: Hostname or IP address of the SonicWall appliance
  • SSH Port: SSH Port
  • Scheduling: The Inspector will default to run once a day at the time the Inspector is set up. Here you can adjust the schedule

Select Save. The Inspector will now be triggered to run within the minute.

Roll out Inspectors at Mass via CSV Import

  • Use this process when rolling out multiple SonicWall Inspectors at once.

For more information, please watch our How To video

To import SonicWall Inspectors via CSV Import, navigate to Admin > Inspectors > SonicWall > Select the down arrow icon in the top right-hand to Download CSV Import Template.

In the CSV Template, each row, starting on row three, will represent an Inspector. Fill in the following information for each Inspector you want to roll out:

  • Agent.Name: This column is case sensitive. Copy and paste the associated Agent name from the Admin > Agents screen
  • Inspector.Name: Enter "sonicwall-inspector"
  • Environment.Name: This column is case sensitive. Copy and paste the associated Environment name from the Dashboard screen
  • Alias: Enter the Desired Friendly Name
  • Config.SSH_USER: Enter the Liongard service username created in the Inspector Setup Preparation above
  • SecureConfig.SSH_PASSWORD: Enter Liongard service password created in the Inspector Setup Preparation above
  • Config.SSH_HOST: Enter the hostname or IP address of the SonicWall appliance
  • Config.SSH_PORT: Enter the SSH Port
  • FreqType: Enter "days"
  • FreqInterval: Enter "1"

When ready to Import the CSV Template of Inspectors, navigate to Admin > Inspectors > SonicWall > Select the up arrow icon in the top right-hand to Import CSV > Select your saved template.

After the successful import notification, reload your browser to find your imported Inspectors.

These Inspectors will automatically trigger themselves to run within a minute.

Activating Auto-Discovered Inspectors

If you have set up a Network Discovery Inspector, it can auto-discover your SonicWall Inspectors. After completing the Inspector Setup Preparation (either for an inspection via an On-Premise Agent or via a Self-Hosted Agent), follow the steps below:

Navigate to Admin > Inspectors > Select SonicWall Inspector > Select the Discovered Systems tab

Here you can Activate your Discovered SonicWall Inspector(s):

  1. Individually select the three dots Action menu to the left of the Discovered SonicWall Inspector(s)
  2. Edit the SonicWall Inspector(s) to include the following credentials gathered in the Inspector Setup Preparation
  • SSH Username: Liongard service credentials created in the Inspector Setup Preparation
  • SSH Password: Liongard service credentials created in the Inspector Setup Preparation
  1. Save the Inspector(s)
  2. Select the checkbox to the left of the Inspector(s) that you would like to Activate
  3. Select the Actions drop-down menu above the Discovered Systems table
  4. Select Activate Launchpoints

Optional: Turn on Flexible Asset/Configuration Auto-Updating

If you would like this Inspector's data to be sent to ConnectWise and/or IT Glue, turn on Flexible Assets/Configurations for this Inspector:

  • ConnectWise: Admin > Integrations > ConnectWise > Configuration Types > Confirm the "Configuration Auto-Updating" toggle is enabled
  • IT Glue: Admin > Integrations > IT Glue > Flexible Assets > Confirm the "Flexible Asset Auto-Updating" toggle is enabled

SonicWall Quick Tips/FAQs

Inspector FAQs

Updated 2 months ago


SonicWall


This document provides the steps required to configure the Sonicwall Inspector.

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.