WatchGuard Firebox System 4.6 User Guide

13.07.2015 Views
introduction 37Routes 97network configuration 37RUVPN 147activating remote user PPTP 136adding a domain name for NT 144adding members to built-in user groups 134adding new domain for NT workstation 144adding remote access users 134configuration checklist 133configure remote host for remote user PPTP 145configuring a Firebox for IPSec 137configuring debugging options 140configuring shared servers for 134distributing software and config files 139entering license keys 138entering WINS and DNS addresses 40installing client for Microsoft Networks 143installing dial-up adapter #2 143preparing Windows 95/98 platform 142preparing Windows NT platform 143rules for PPTP addresses 137saving configuration to Firebox 139setting up for Windows 2000 144starting remote user PPTP 146system requirements 142with IPSec 133, 141with PPTP 133, 141RUVPN with IPSecadding a user 138end-user configuration file 138license 137modifying existing user 139RUVPN with PPTPadding users 134configuring services 135designating a server 40entering IP addresses 136setting up remote host 136SSavingconfiguration file 23configuration file to Firebox 24configuration to local hard drive 24SchedulingHistorical Reports 114in WebBlocker 61Searchingfor entries in LogViewer 104online help 15online help index 15Secondary network 38adding 38Sectionsconsolidated 111in reports 110Securitydisposition 128fundamentals 1Security attacksaddress space probes 43port space probes 43spoofing 43Security policychangin IPSec order 129creating with IPSec 128default packet handling 43opening configuration file 23Security Suitefeatures 2Security toolsopening 31Security Triangle display 22, 28Selectingcontent types 53MIME headers 53Serviceactivating LiveSecurity 8configure WatchGuard icon 60configuring for Static NAT 66customizing 76filtered HTTP 55HTTP 60logging 76proxied-HTTP 55, 60proxy 60Service-based NAT 63configuring 65enabling 65using 65Servicesadding addresses 50adding existing 47configuring 19configuring for authentication 51configuring for BOVPN 129configuring incoming to allow VPN 132configuring SMTP proxy for 52creating new 48debugging network 93deleting 51HTTP 48incoming properties 49IP 48modifying 51one direction filter 49outgoing properties 50precedence 56properties, defining 49RUVPN with PPTP 135TCP based 48UDP based 48Services Arena 47ServiceWatch 94SettingFirebox interfaces 35LogViewer preferences 103Setting up LiveSecurity 35Shared serversconfiguring for RUVPN 134Simple NAT 63using default 65Sitesblocked 19SMTP 94, 99configuring proxy service 52incoming proxy 52masquerading options 54outgoing proxy 54SMTP proxy reportsSMTP detail 116SMTP summary 116Softwarerequirements,LiveSecurity 3system requirements for RUVPN 142158

Software Update 7SOHOediting tunnel properties 123rebooting 124removing tunnel 124SpamScreen 18Security Parameter Indexsee alsoSPI (Security Parameter Index) 126Spoofing 43, 95, 124Star networkDVCP 122StartingControl Center 27LogViewer 103WatchGuard Online Help 15Static NATadding external IP addresses 66configuring a service 66configuring a service for 66described 63setting on a service 66StatusFirebox 28StatusReportactive FTP connections 95active TCP connections 95ARP table 98authentication host information 96authentication list 98blocked sites list 95, 98interfaces 97load average 96log and notification hosts 95logging options 96memory 96network configuration 95packet counts 95processes status 96routes 97spoofing 95uptime and version information 94version information 94Supportgetting technical via Internet 12telephone support 12WatchGuard technical support 5Windows 2000 4Support Flash 8SynchronizingEvent Processors 72System Areabooting from 26TTCP 48Technical Support 5, 11accessing frequently asked questions 11by telephone 12frequently asked questions 11Internet 12known issues 12telephone support 12Telephone Technical Support 12telnet 99Text fileexporting reports to 113Threat Response 7Time filters 111Time spanssetting in reports 111Time zone 25Timeout disconnects 81Topic search 15Traffic Monitorlimiting messages 30Traffice volume indicator 28TrainingFirebox System Basics 13instructor-led 14interactive training system 13Transparent proxies 52TrendMicro 8Trusted interface 35Trusted Networkdefinition 22Tunnel 126creation using DVCP Wizard 122editing to SOHO 123removing SOHO 124with dynamic security 127Tunnelscreated to dropped-in devices 128monitoring BOVPN 28tunnelsviewing status on Control Center 28UUDP 48Unconnected network addresses 44Uptime 94URL database 59User authentication, see also AuthenticationUsersadding for remote access 134Users group 14Usinghost aliases 85Using simple dynamic NAT 64VViewingblocked sites list 46hosts on HostWatch 100log files 103Viewschanging in Policy Manager 32Virus Alert 8VPN 1, 121allow globally 130allow selectively 130branch office 119changing remote network entries 131configuring 130configuring incoming services to allow 132configuring key negotiation type 125DVCP 122editing IPSec gateway 125User Guide 159

Page 1 and 2: WatchGuard ®Firebox SystemUser Gu

Page 3 and 4: condition that you accept all of th

Page 5: Declaration of ConformityWatchGuard

Page 8 and 9: Resetting Firebox passphrases .....

Page 10 and 11: CHAPTER 15 Reviewing and Working wi

Page 12 and 13: WatchGuard Firebox System component

Page 14 and 15: Minimum requirementsHardware requir

Page 17 and 18: CHAPTER 1LiveSecurity ServiceNo Int

Page 19 and 20: LiveSecurity broadcasts• The Lice

Page 21 and 22: CHAPTER 2Technical SupportDevelopin

Page 23 and 24: TrainingAfter you enter your LiveSe

Page 25 and 26: Online Help• On any platform, bro

Page 27 and 28: CHAPTER 3WatchGuard OptionsThe Watc

Page 29 and 30: PART IIIConfiguring a SecurityPolic

Page 31 and 32: CHAPTER 4Firebox BasicsThis chapter

Page 33 and 34: Opening a configuration fileOpening

Page 35 and 36: Setting the time zone• Use a comb

Page 37 and 38: CHAPTER 5Using the WatchGuardContro

Page 39 and 40: Control Center componentsThe first

Page 41 and 42: Policy ManagerManipulating the Traf

Page 43 and 44: Historical ReportsHistorical Report

Page 45 and 46: CHAPTER 6Configuring a NetworkConfi

Page 47 and 48: Setting up a routed network• All

Page 49 and 50: Defining a host routeDefining a hos

Page 51 and 52: Defining a Firebox as a DHCP server

Page 53 and 54: CHAPTER 7Blocking Sites and PortsMa

Page 55 and 56: Blocking a port permanently3 In the

Page 57 and 58: CHAPTER 8Configuring ServicesThe Se

Page 59 and 60: Defining service properties8 In the

Page 61 and 62: Modifying a serviceThe following ex

Page 63 and 64: Setting up proxy servicesSelecting

Page 65 and 66: Setting up proxy servicesand transm

Page 67 and 68: Service precedencecheck. In the lat

Page 69 and 70: CHAPTER 9Controlling Web TrafficWeb

Page 71 and 72: Configuring the WebBlocker serviceP

Page 73 and 74: CHAPTER 10Setting Up NetworkAddress

Page 75 and 76: Using service-based NATUsing servic

Page 77 and 78: Configuring a service for incoming

Page 79 and 80: CHAPTER 11Setting Up Logging andNot

Page 81 and 82: Designating Event Processors for a

Page 83 and 84: Setting up the LiveSecurity Event P

Page 85 and 86: Setting global logging and notifica

Page 87 and 88: Customizing logging and notificatio

Page 89 and 90: CHAPTER 12Connect with Out-of-Band

Page 91 and 92: Configuring the Firebox for OOB5 En

Page 93: PART IVAdministering a SecurityPoli

Page 96 and 97: Using host aliasesAdding a host ali

Page 98 and 99: Configuring Firebox authenticationC

Page 100 and 101: Configuring CRYPTOCard server authe

Page 102 and 103: Using authentication to define remo

Page 104 and 105: Firebox MonitorsSetting Firebox Mon

Page 106 and 107: Firebox MonitorsLogging optionsLogg

Page 108 and 109: HostWatchARP tableA snapshot of the

Page 110 and 111: HostWatch6 To change playback prope

Page 112 and 113: HostWatch102

Page 114 and 115: Viewing files with LogViewer2 Confi

Page 116 and 117: Working with log filesIP header len

Page 118 and 119: Working with log files108

Page 120 and 121: Specifying report sectionsCreating

Page 122 and 123: Exporting reports6 Enter the number

Page 124 and 125: Scheduling and running reportsDelet

Page 126 and 127: Report sections and consolidated se

Page 128 and 129: Report sections and consolidated se

Page 130 and 131: 120

Page 132 and 133: Using DVCP to connect to devices•

Page 134 and 135: Branch office VPN with IPSecFrom Po

Page 136 and 137: Branch office VPN with IPSecdescrib

Page 138 and 139: Branch office VPN with IPSecbe acce

Page 140 and 141: Configuring WatchGuard VPNConfiguri

Page 142 and 143: Configuring WatchGuard VPN• Watch

Page 144 and 145: Configuring shared servers for RUVP

Page 146 and 147: Configuring the Firebox for Remote

Page 148 and 149: Configuring the Firebox for Mobile

Page 150 and 151: Configuring debugging optionsA prom

Page 152 and 153: Preparing the client computers• P

Page 154 and 155: Preparing the client computers10 Cl

Page 156 and 157: Using Remote User PPTPInstalling a

Page 158 and 159: Configuring debugging options148

Page 160 and 161: CChangingan interface IP address 39

Page 162 and 163: monitors 2, 32, 93BandwidthMeter 94

Page 164 and 165: for blocked sites 44global preferen

Page 166 and 167: pull-down menus 32services arena 32

Page 170: manager 17mobile user 18multiple-bo

firebox

watchguard

dialog

configuration

properties

server

processor

logging

authentication

livesecurity

WatchGuard Firebox System 4.6 User Guide

WatchGuard Firebox System 4.6 User Guide ... View more WatchGuard Firebox System 4.6 User Guide

Delete template?

Save as template ?

WatchGuard Firebox System 4.6 User Guide WatchGuard Firebox System 4.6 User Guide