WatchGuard Firebox System 4.6 User Guide
WatchGuard Firebox System 4.6 User Guide WatchGuard Firebox System 4.6 User Guide
for blocked sites 44global preferences 75LogViewer 103options 96PPTP 137replaying a file 99searching log files 103setting for a service 77setting up 20viewing files 103WebBlocker 60Logsconsolidating in LogViewer 106LogViewer 2, 83consolidating logs 106copying 104copying log files 107described 32displaying fields 105fields and meanings 105forcing file roll over 107hiding fields 105preferences 103searching 103searching for entries 104starting 103time zone 25viewing files 103worrking with log files 106Loopback configuration 25LSEP see Event ProcessorMManagement Stationconnecting with out-of-band 81definition 22enabling 79with Windows NT 80Manual security 126Masquerading optionsSMTP 54Memory 96Merginglog files in LogViewer 106MIME 53adding address patterns 53headers to allow 53Mobile Userdefining new user 138Mobile User VPN 18Modemconnecting 79install 80Modifyingservice 51Modifying view properties on HostWatch 101MonitorBandwidthMeter 94BOVPN tunnel 28connecting to a Firebox 93Firebox 2, 32, 93opening 32Interpreting VPN display 27reading VPN display 27setting view properties 94VPN front panel 28VPN, red exclamation point 29MonitoringFirebox activity 83high availability host 28introduction 93through Control Center 2MonitorsFirebox 2HostWatch 2, 98description 33display properties 100modifying view properties 101opening 33replaying a log file 99viewing authenticated users 100viewing hosts 100viewing ports 100LogViewer 2description 32ServiceWatch 94starting Firebox 93StatusReport 94active FTP connections 95active TCP connections 95ARP table 98authentication host information 96authentication list 98blocked sites list 95, 98interfaces 97load average 96log and notification hosts 95logging options 96memory 96network configuration 95packet counts 95processes status 96routes 97spoofing 95uptime and version information 94MSDUN 142NNAT 63and HostWatch 99dynamicadding entries 64described 63disabling 65enabling 63, 65enabling simple 64reordering entries 64using simple 64service-based 63configuring 65enabling 65using 65setting up 19, 20simple 63using defalt 65staticadding external IP addresses 66configuring a service 66configuring service for 66described 63setting on a service 66NAT See also Network Address Translation154
NavigatingControl Center 27Netscape Communicator 3Networkbroadcast 2changing range of client 124configuration 95configuring 35configuring OOB 81interfaces 97LiveSecurity Broadcast 5, 7routed described 37secondary 38services debugging 93setting the default gateway 39star with DVCP 122Network address translation 63Network address translation. See also DynamicNAT.Network address translation. See also Static NATNetwork addresses, unconnected 44Network configuration 19Network Configuration worksheet 36Network interfacesFirebox 35Network routes 37Networksconfiguration worksheet 36defining a host route 39drop-in configuration 36external interface 35optional interface 35secondary 38trusted interface 35New featuresonline documentation 4Windows 2000 support 4New from WatchGuard 8NIC 22Notificationblocked ports 45blocked sites 44blocked sites and ports 78controlling 76customizing 76default packet handling 78e-mail 77for blocked sites 44global preferences 75listing hosts 95pager 77setting for a service 77setting up 20Notification and Log hosts 95OOnline documentation 4Online Help 14contents search 15full text search 15searching for topics 15using index search 15Online helpstarting 15OOB, see also, Out-of-BandOpeningconfiguration file 23configuration file from Firebox 23log file in LogViewer 103Optional features 5Optional interface 35Optional Networkdefinition 22Optional networkand FTP 22Web server 22Optionsconfiguring debugging 147High Availability 17Mobile User VPN 18purchasing 18SpamScreen 18VPN Manager 17WatchGuard SOHO 18Out-of-Band 79configure 80configuring Firebox 81configuring PPP 81connecting a Firebox 79connecting with 81enabling 79install modem 80preparing an NT management station 80preparing Windows 95/98 managementstation 80timeout disconnects 81PPacket Counts 95Packet Filtered Reportshost summary 115Service summary 115session summary 116Packet filtering 47Packet handling 43default 43Pass Phraseresetting for Firebox 24tips for creating 24Permanently blocked ports 45destination ports 45logging 45notification 45reasons for blocking 45removing from list 45Permanently blocked sites 44changing auto block duration 44logging and notification 44removing from list 44Policycreating for IPSec 128Policy Manager 2adding existing service 47adding incoming properties 49adding outgoing service policies 50advanced view,changing 32creating new service 48deleting a service 51described 31description 31opening 31opening a configuration file 23User Guide 155
- Page 114 and 115: Viewing files with LogViewer2 Confi
- Page 116 and 117: Working with log filesIP header len
- Page 118 and 119: Working with log files108
- Page 120 and 121: Specifying report sectionsCreating
- Page 122 and 123: Exporting reports6 Enter the number
- Page 124 and 125: Scheduling and running reportsDelet
- Page 126 and 127: Report sections and consolidated se
- Page 128 and 129: Report sections and consolidated se
- Page 130 and 131: 120
- Page 132 and 133: Using DVCP to connect to devices•
- Page 134 and 135: Branch office VPN with IPSecFrom Po
- Page 136 and 137: Branch office VPN with IPSecdescrib
- Page 138 and 139: Branch office VPN with IPSecbe acce
- Page 140 and 141: Configuring WatchGuard VPNConfiguri
- Page 142 and 143: Configuring WatchGuard VPN• Watch
- Page 144 and 145: Configuring shared servers for RUVP
- Page 146 and 147: Configuring the Firebox for Remote
- Page 148 and 149: Configuring the Firebox for Mobile
- Page 150 and 151: Configuring debugging optionsA prom
- Page 152 and 153: Preparing the client computers• P
- Page 154 and 155: Preparing the client computers10 Cl
- Page 156 and 157: Using Remote User PPTPInstalling a
- Page 158 and 159: Configuring debugging options148
- Page 160 and 161: CChangingan interface IP address 39
- Page 162 and 163: monitors 2, 32, 93BandwidthMeter 94
- Page 166 and 167: pull-down menus 32services arena 32
- Page 168 and 169: introduction 37Routes 97network con
- Page 170: manager 17mobile user 18multiple-bo
NavigatingControl Center 27Netscape Communicator 3Networkbroadcast 2changing range of client 124configuration 95configuring 35configuring OOB 81interfaces 97LiveSecurity Broadcast 5, 7routed described 37secondary 38services debugging 93setting the default gateway 39star with DVCP 122Network address translation 63Network address translation. See also DynamicNAT.Network address translation. See also Static NATNetwork addresses, unconnected 44Network configuration 19Network Configuration worksheet 36Network interfaces<strong>Firebox</strong> 35Network routes 37Networksconfiguration worksheet 36defining a host route 39drop-in configuration 36external interface 35optional interface 35secondary 38trusted interface 35New featuresonline documentation 4Windows 2000 support 4New from <strong>WatchGuard</strong> 8NIC 22Notificationblocked ports 45blocked sites 44blocked sites and ports 78controlling 76customizing 76default packet handling 78e-mail 77for blocked sites 44global preferences 75listing hosts 95pager 77setting for a service 77setting up 20Notification and Log hosts 95OOnline documentation 4Online Help 14contents search 15full text search 15searching for topics 15using index search 15Online helpstarting 15OOB, see also, Out-of-BandOpeningconfiguration file 23configuration file from <strong>Firebox</strong> 23log file in LogViewer 103Optional features 5Optional interface 35Optional Networkdefinition 22Optional networkand FTP 22Web server 22Optionsconfiguring debugging 147High Availability 17Mobile <strong>User</strong> VPN 18purchasing 18SpamScreen 18VPN Manager 17<strong>WatchGuard</strong> SOHO 18Out-of-Band 79configure 80configuring <strong>Firebox</strong> 81configuring PPP 81connecting a <strong>Firebox</strong> 79connecting with 81enabling 79install modem 80preparing an NT management station 80preparing Windows 95/98 managementstation 80timeout disconnects 81PPacket Counts 95Packet Filtered Reportshost summary 115Service summary 115session summary 116Packet filtering 47Packet handling 43default 43Pass Phraseresetting for <strong>Firebox</strong> 24tips for creating 24Permanently blocked ports 45destination ports 45logging 45notification 45reasons for blocking 45removing from list 45Permanently blocked sites 44changing auto block duration 44logging and notification 44removing from list 44Policycreating for IPSec 128Policy Manager 2adding existing service 47adding incoming properties 49adding outgoing service policies 50advanced view,changing 32creating new service 48deleting a service 51described 31description 31opening 31opening a configuration file 23<strong>User</strong> <strong>Guide</strong> 155