WatchGuard Firebox System 4.6 User Guide
WatchGuard Firebox System 4.6 User Guide WatchGuard Firebox System 4.6 User Guide
Working with the Control CenterTraffic MonitorThe Traffic Monitor shows, in real time, the traffic through the Firebox.Working with the Control CenterThe basic tasks you perform with the Control Center are connecting to a Firebox,changing the interval at which the Firebox is queried for status information, andopening other Firebox System applications. You can also move and work with theTraffic Monitor display to best suit your needs.Connecting to a FireboxWhen launched, the Control Center automatically prompts you to connect to the lastFirebox with which it established a connection. However, you may need to establish aconnection with another Firebox. From the Control Center:1 Click the WatchGuard Control Center button (shown at right), whichis located on the upper-left corner of Control Center. Select Connect.The Connect to Firebox dialog box appears.2 Use the Firebox drop list to select a Firebox.You can also type the Firebox name or IP address.3 Enter the Firebox monitoring (read-only) passphrase.4 Click OK.The Control Center connects to the Firebox and displays its real-time status.Changing the polling rateYou can change the interval of time (in seconds) at which the Control Center polls theFirebox and updates the Front Panel and Firebox and Tunnel Status displays.Consider, however, the trade-off between polling frequency and demand on theFirebox. The shorter the interval, the more accurate the display, but also the moredemand made of the Firebox. From the Control Center:1 Click the WatchGuard Control Center button. Click Settings.2 Type or use the scroll control to change the polling rate. Click OK.Setting the maximum number of log messagesYou can change the maximum number of status Syslog messages that are stored andviewable in Traffic Monitor. After the maximum is reached, the earliest logs areremoved as more come in. A high value in this field places a large demand on yoursystem if you have a slow processor or a limited amount of RAM. Log Viewer is amuch more appropriate tool for tracking logs; Traffic Monitor just provides a realtimeview of what the Firebox activity.1 Click the WatchGuard Control Center button. Click Settings.2 Type or use the scroll control to change the Max Log Entries field. Click OK.The value entered represents the number of logs in thousands. If you enter 0 in this field, themaximum number of logs (100,000) is permitted.30
Policy ManagerManipulating the Traffic MonitorYou can move and manipulate the Traffic Monitor on the Desktop independent of therest of the Control Center:Tear OffPoint to the Traffic Monitor title bar. Drag the Traffic Monitor to a new location onthe Desktop. To reattach the Traffic Monitor to the Control Center, drag the TrafficMonitor to the immediate vicinity of the Control Center display. The TrafficMonitor window automatically snaps back onto the Control Center.ExpandPoint to an edge of the Traffic Monitor window. Drag the edge outward to expandthe window or inward to shrink it.ScrollUse the scroll control of the Traffic Monitor window to scroll chronologically upand down through log records. While scrolling, the Traffic Monitor temporarilyceases to jump to the most recent records. Page down to the bottom of the TrafficMonitor window to restart the rolling display.Copy and PasteUse Click/Ctrl-Click or Click/Shift-Click to select multiple records. Right-click theselected records, and select Copy. Paste the selected records into anotherapplication such as e-mail, word processing, or a spreadsheet.Opening WatchGuard Firebox System toolsTo open a WatchGuard Firebox System application such as Policy Manager orHostWatch, either click the application button on the QuickGuide or click theWatchGuard Control Center button, select Tools, and then select the tool name.Policy ManagerUse the WatchGuard Policy Manager tool to design, configure, andmanage the network security policy. Within Policy Manager, you canconfigure networks and services, set up virtual private networking,regulate incoming and outgoing access, and control logging andnotification. To open Policy Manager, click the Policy Manager button(pictured at left) on the Control Center QuickGuide. Policy Manager opens anddisplays the Services Arena.The Policy Manager display includes:Pull-down menusMenus that provide access to most configuration and administration tasks.ToolbarA row of buttons immediately below the pull-down menus. Each buttoncorresponds to a frequently performed Policy Manager task. Position the mouseover the button to view a tooltip and explanatory status bar text.User Guide 31
- Page 1 and 2: WatchGuard ®Firebox SystemUser Gu
- Page 3 and 4: condition that you accept all of th
- Page 5: Declaration of ConformityWatchGuard
- Page 8 and 9: Resetting Firebox passphrases .....
- Page 10 and 11: CHAPTER 15 Reviewing and Working wi
- Page 12 and 13: WatchGuard Firebox System component
- Page 14 and 15: Minimum requirementsHardware requir
- Page 17 and 18: CHAPTER 1LiveSecurity ServiceNo Int
- Page 19 and 20: LiveSecurity broadcasts• The Lice
- Page 21 and 22: CHAPTER 2Technical SupportDevelopin
- Page 23 and 24: TrainingAfter you enter your LiveSe
- Page 25 and 26: Online Help• On any platform, bro
- Page 27 and 28: CHAPTER 3WatchGuard OptionsThe Watc
- Page 29 and 30: PART IIIConfiguring a SecurityPolic
- Page 31 and 32: CHAPTER 4Firebox BasicsThis chapter
- Page 33 and 34: Opening a configuration fileOpening
- Page 35 and 36: Setting the time zone• Use a comb
- Page 37 and 38: CHAPTER 5Using the WatchGuardContro
- Page 39: Control Center componentsThe first
- Page 43 and 44: Historical ReportsHistorical Report
- Page 45 and 46: CHAPTER 6Configuring a NetworkConfi
- Page 47 and 48: Setting up a routed network• All
- Page 49 and 50: Defining a host routeDefining a hos
- Page 51 and 52: Defining a Firebox as a DHCP server
- Page 53 and 54: CHAPTER 7Blocking Sites and PortsMa
- Page 55 and 56: Blocking a port permanently3 In the
- Page 57 and 58: CHAPTER 8Configuring ServicesThe Se
- Page 59 and 60: Defining service properties8 In the
- Page 61 and 62: Modifying a serviceThe following ex
- Page 63 and 64: Setting up proxy servicesSelecting
- Page 65 and 66: Setting up proxy servicesand transm
- Page 67 and 68: Service precedencecheck. In the lat
- Page 69 and 70: CHAPTER 9Controlling Web TrafficWeb
- Page 71 and 72: Configuring the WebBlocker serviceP
- Page 73 and 74: CHAPTER 10Setting Up NetworkAddress
- Page 75 and 76: Using service-based NATUsing servic
- Page 77 and 78: Configuring a service for incoming
- Page 79 and 80: CHAPTER 11Setting Up Logging andNot
- Page 81 and 82: Designating Event Processors for a
- Page 83 and 84: Setting up the LiveSecurity Event P
- Page 85 and 86: Setting global logging and notifica
- Page 87 and 88: Customizing logging and notificatio
- Page 89 and 90: CHAPTER 12Connect with Out-of-Band
Working with the Control CenterTraffic MonitorThe Traffic Monitor shows, in real time, the traffic through the <strong>Firebox</strong>.Working with the Control CenterThe basic tasks you perform with the Control Center are connecting to a <strong>Firebox</strong>,changing the interval at which the <strong>Firebox</strong> is queried for status information, andopening other <strong>Firebox</strong> <strong>System</strong> applications. You can also move and work with theTraffic Monitor display to best suit your needs.Connecting to a <strong>Firebox</strong>When launched, the Control Center automatically prompts you to connect to the last<strong>Firebox</strong> with which it established a connection. However, you may need to establish aconnection with another <strong>Firebox</strong>. From the Control Center:1 Click the <strong>WatchGuard</strong> Control Center button (shown at right), whichis located on the upper-left corner of Control Center. Select Connect.The Connect to <strong>Firebox</strong> dialog box appears.2 Use the <strong>Firebox</strong> drop list to select a <strong>Firebox</strong>.You can also type the <strong>Firebox</strong> name or IP address.3 Enter the <strong>Firebox</strong> monitoring (read-only) passphrase.4 Click OK.The Control Center connects to the <strong>Firebox</strong> and displays its real-time status.Changing the polling rateYou can change the interval of time (in seconds) at which the Control Center polls the<strong>Firebox</strong> and updates the Front Panel and <strong>Firebox</strong> and Tunnel Status displays.Consider, however, the trade-off between polling frequency and demand on the<strong>Firebox</strong>. The shorter the interval, the more accurate the display, but also the moredemand made of the <strong>Firebox</strong>. From the Control Center:1 Click the <strong>WatchGuard</strong> Control Center button. Click Settings.2 Type or use the scroll control to change the polling rate. Click OK.Setting the maximum number of log messagesYou can change the maximum number of status Syslog messages that are stored andviewable in Traffic Monitor. After the maximum is reached, the earliest logs areremoved as more come in. A high value in this field places a large demand on yoursystem if you have a slow processor or a limited amount of RAM. Log Viewer is amuch more appropriate tool for tracking logs; Traffic Monitor just provides a realtimeview of what the <strong>Firebox</strong> activity.1 Click the <strong>WatchGuard</strong> Control Center button. Click Settings.2 Type or use the scroll control to change the Max Log Entries field. Click OK.The value entered represents the number of logs in thousands. If you enter 0 in this field, themaximum number of logs (100,000) is permitted.30
Change language