WSM User Guide - WatchGuard Technologies
WSM User Guide - WatchGuard Technologies WSM User Guide - WatchGuard Technologies
Exporting Reports ...............................................................................................................................190Exporting reports to HTML format ................................................................................................191Exporting reports to NetIQ format ................................................................................................191Using Report Filters ............................................................................................................................191Creating a new report filter .............................................................................................................192Editing a report filter ........................................................................................................................192Deleting a report filter .....................................................................................................................193Applying a report filter .....................................................................................................................193Running Reports ..................................................................................................................................193Report Sections and Consolidated Sections .............................................................................193Report sections ..................................................................................................................................193Consolidated sections ......................................................................................................................196CHAPTER 15 Management Server Setup and Administration ............................................197WatchGuard Management Server Passphrases ........................................................................197Setting Up the Management Server .............................................................................................199Changing the Management Server Configuration .................................................................200Adding or removing a Management Server license ..................................................................200Recording diagnostic log messages for the Management Server ..........................................201Configuring the Certificate Authority ..........................................................................................201Configuring properties for the CA certificate ..............................................................................201Configuring properties for client certificates ...............................................................................202Configuring properties for the Certificate Revocation List (CRL) .............................................203Recording diagnostic log messages for the Certificate Authority service .............................204Backing up or Restoring the Management Server Configuration .....................................204Moving the WatchGuard Management Server to a New Computer ................................205CHAPTER 16 Using the Management Server ................................................................................207Connecting to a Management Server ..........................................................................................207Managing Devices with the Management Server ...................................................................208Configuring a Firebox X Core or X Peak Running Fireware as a Managed Client ................208Configuring a Firebox III or Firebox X Core Running WFS as a Managed Client ...................210Configuring a Firebox X Edge as a Managed Client ...................................................................211Configuring a Firebox SOHO 6 as a Managed Client .................................................................212Adding Devices to the Management Server .............................................................................213Using the Device Management Page ...........................................................................................216Viewing the Firebox management page ......................................................................................216Configuring Firebox management properties ............................................................................218Updating the device .........................................................................................................................218Adding a VPN resource ....................................................................................................................219Starting Firebox tools .......................................................................................................................219Adding a Firebox VPN tunnel ..........................................................................................................220Monitoring VPNs ..................................................................................................................................220CHAPTER 17 Managing Certificates and the Certificate Authority ...................................221Public Key Cryptography and Digital Certificates ....................................................................221PKI in a WatchGuard VPN ..................................................................................................................222xWatchGuard System Manager
MUVPN and certificates ...................................................................................................................222Managing the Certificate Authority ..............................................................................................222Managing certificates with the CA Manager ..............................................................................223CHAPTER 18 Introduction to VPNs .....................................................................................................225Tunneling Protocols ............................................................................................................................226IPSec ....................................................................................................................................................226PPTP .....................................................................................................................................................226Encryption ..........................................................................................................................................226Selecting an encryption and data integrity method .................................................................227Authentication ..................................................................................................................................227Extended authentication ................................................................................................................227Selecting an authentication method ............................................................................................227IP Addressing ........................................................................................................................................228Internet Key Exchange (IKE) .............................................................................................................228Network Address Translation and VPNs ......................................................................................229Access Control ......................................................................................................................................229Network Topology ...............................................................................................................................229Meshed networks ..............................................................................................................................229Hub-and-spoke networks ...............................................................................................................230Tunneling Methods .............................................................................................................................231WatchGuard VPN Solutions .............................................................................................................232Remote User VPN with PPTP ...........................................................................................................232Mobile User VPN ................................................................................................................................232Branch Office Virtual Private Network (BOVPN) .........................................................................233VPN Scenarios .......................................................................................................................................234Large company with branch offices: WatchGuard System Manager .....................................234Small company with telecommuters: MUVPN ............................................................................235Company with remote employees: MUVPN with extended authentication .........................235CHAPTER 19 Configuring Managed VPN Tunnels ......................................................................237Configuring a Firebox as a Managed Firebox Client ...............................................................237Adding VPN Resources ......................................................................................................................237Get the current resources from a device .......................................................................................238Make a new VPN resourve ...............................................................................................................238Adding resources ..............................................................................................................................239Adding Security Templates ..............................................................................................................239Making Tunnels Between Devices .................................................................................................240Using the drag-and-drop procedure ............................................................................................240Using the Add VPN wizard without drag-and-drop ..................................................................240Editing a Tunnel ...................................................................................................................................241Removing Tunnels and Devices .....................................................................................................241Removing a tunnel ...........................................................................................................................241Removing a device ...........................................................................................................................242CHAPTER 20 Configuring BOVPN with Manual IPSec ..............................................................243Before You Start ...................................................................................................................................243User Guidexi
- Page 1: WatchGuard ® System ManagerUser Gu
- Page 4 and 5: Installation Topics ...............
- Page 6 and 7: Restoring a Firebox backup image ..
- Page 8 and 9: Setting Blocked Sites .............
- Page 12 and 13: Configuring a Gateway .............
- Page 14 and 15: Configuring GAV engine settings ...
- Page 16 and 17: MSSQL-Monitor .....................
- Page 18 and 19: xviiiWatchGuard System Manager
- Page 20 and 21: Fireware Features and ToolsYour org
- Page 22 and 23: WatchGuard System Manager (WSM) Use
- Page 24 and 25: WatchGuard System Manager (WSM) Use
- Page 26 and 27: WatchGuard System Manager (WSM) Use
- Page 28 and 29: Installing WatchGuard System Manage
- Page 30 and 31: Installing WatchGuard System Manage
- Page 32 and 33: Quick Setup Wizardtion, you must ha
- Page 34 and 35: Putting the Firebox into Operation
- Page 36 and 37: Starting WatchGuard System ManagerT
- Page 38 and 39: Upgrading to a New Version of Firew
- Page 40 and 41: Installation Topics• High Availab
- Page 42 and 43: LiveSecurity Service Broadcastslear
- Page 44 and 45: WatchGuard Users ForumAdvanced FAQs
- Page 46 and 47: Product Documentation• Netscape N
- Page 48 and 49: Training and Certification30 WatchG
- Page 50 and 51: Firebox System Manager Menus and To
- Page 52 and 53: Seeing Basic Firebox and Network St
- Page 54 and 55: Seeing Basic Firebox and Network St
- Page 56 and 57: Monitoring Firebox TrafficMonitorin
- Page 58 and 59: Clearing the ARP CacheLearning more
Exporting Reports ...............................................................................................................................190Exporting reports to HTML format ................................................................................................191Exporting reports to NetIQ format ................................................................................................191Using Report Filters ............................................................................................................................191Creating a new report filter .............................................................................................................192Editing a report filter ........................................................................................................................192Deleting a report filter .....................................................................................................................193Applying a report filter .....................................................................................................................193Running Reports ..................................................................................................................................193Report Sections and Consolidated Sections .............................................................................193Report sections ..................................................................................................................................193Consolidated sections ......................................................................................................................196CHAPTER 15 Management Server Setup and Administration ............................................197<strong>WatchGuard</strong> Management Server Passphrases ........................................................................197Setting Up the Management Server .............................................................................................199Changing the Management Server Configuration .................................................................200Adding or removing a Management Server license ..................................................................200Recording diagnostic log messages for the Management Server ..........................................201Configuring the Certificate Authority ..........................................................................................201Configuring properties for the CA certificate ..............................................................................201Configuring properties for client certificates ...............................................................................202Configuring properties for the Certificate Revocation List (CRL) .............................................203Recording diagnostic log messages for the Certificate Authority service .............................204Backing up or Restoring the Management Server Configuration .....................................204Moving the <strong>WatchGuard</strong> Management Server to a New Computer ................................205CHAPTER 16 Using the Management Server ................................................................................207Connecting to a Management Server ..........................................................................................207Managing Devices with the Management Server ...................................................................208Configuring a Firebox X Core or X Peak Running Fireware as a Managed Client ................208Configuring a Firebox III or Firebox X Core Running WFS as a Managed Client ...................210Configuring a Firebox X Edge as a Managed Client ...................................................................211Configuring a Firebox SOHO 6 as a Managed Client .................................................................212Adding Devices to the Management Server .............................................................................213Using the Device Management Page ...........................................................................................216Viewing the Firebox management page ......................................................................................216Configuring Firebox management properties ............................................................................218Updating the device .........................................................................................................................218Adding a VPN resource ....................................................................................................................219Starting Firebox tools .......................................................................................................................219Adding a Firebox VPN tunnel ..........................................................................................................220Monitoring VPNs ..................................................................................................................................220CHAPTER 17 Managing Certificates and the Certificate Authority ...................................221Public Key Cryptography and Digital Certificates ....................................................................221PKI in a <strong>WatchGuard</strong> VPN ..................................................................................................................222x<strong>WatchGuard</strong> System Manager