WatchGuard Firebox System 4.6 User Guide
WatchGuard Firebox System 4.6 User Guide
WatchGuard Firebox System 4.6 User Guide
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
CHAPTER 13Creating Aliases andImplementingAuthenticationAliases are shortcuts used to identify groups of hosts, networks, or users with onename. The use of aliases simplifies user authentication and service configuration.<strong>User</strong> authentication provides access control for outgoing connections. Authenticationdynamically maps an individual username to a workstation IP address, allowing thetracking of connections based on name rather than static IP address.For more information on aliases or authentication, see the Network Security Handbook.Using host aliasesHost aliases provide a simple way to remember host IP addresses, host ranges,groups, usernames, and network IP addresses. They function in a similar fashion to e-mail distribution lists–combining addresses and names into easily recognizablegroups. Use aliases to quickly build service filter rules or configure authentication.Aliases cannot, however, be used to configure the network itself.<strong>WatchGuard</strong> automatically adds four host aliases to the basic configuration:fireboxtrustedoptionalexternalAddresses assigned to the three <strong>Firebox</strong> interfacesAny host or network routed through the physical Trusted interfaceAny host or network routed through the physical Optional interfaceAny host or network routed through the physical External interface; inmost cases, the InternetA host alias takes precedence over a Windows NT or RADIUS group withthe same name.VPN Manager <strong>Guide</strong> 85