WatchGuard Technologies WatchGuard SOHO and SOHO | tc manual VPN Management

Page 41

Troubleshooting installation and network configuration

3Click Add a Service and then click the service you want to add. For UDP, you will need to select UDP on the Forward drop list and enter the range of port numbers in the port fields. For all other services, enter the IP address of the computer that needs the incoming service.

4Click Submit.

VPN MANAGEMENT

Before setting up a VPN, you must have the following:

•Two properly configured and working SOHOs or one SOHO and one Firebox with the latest version of firmware. Each SOHO must have the VPN feature key enabled.

•The static public IP address, the network address, and the subnet masks of both SOHOs. (The base private IP address of each SOHO must be static and unique.)

•The DNS and WINS server IP address, if used.

•The shared key (passphrase) for the tunnel.

•The same encryption method on each end of the tunnel (DES or 3DES).

•The same authentication method on each end (MD-5 or SHA- 1).

How do I set up VPN between two SOHOs?

For detailed information on how to configure a VPN tunnel between two SOHO devices, download the SOHO to SOHO IPSec VPN Tunnel configuration instructions:

1Using your Web browser, go to: http://www.watchguard.com/support

2Click Interoperability on the left of the page.

User Guide 2.3

29

Image 41

Contents WatchGuard Soho User Guide Copyright and patent information Registration and identification informationUser Guide Iii WatchGuard Soho End-User License AgreementPage User Guide WatchGuard Limited Hardware Warranty User Guide Vii Welcome Redeeming Soho upgrade certificatesFollowing conventions are used throughout this guide Using this guidePage Table of Contents Additional Soho Features Before you begin InstallationPre-installation checklist Determine your current TCP/IP settings Performing manual installationMicrosoft Windows 95 or 98 or ME Microsoft Windows NT orMacintosh Other operating systems Unix, LinuxDisable your browser’s Http proxy Internet Explorer Netscape 4.5 orCabling the Soho for one to four devices Physically connecting your SohoThis creates a connection between the Soho and the modem Cabling the Soho for more than four computers This creates a connection between the Soho and the modem Physically connecting your Soho How does a firewall work? Setting Up Your Soho NetworkNetwork addressing Configuring your public networkDouble-click the Network icon Configuring your public network Configuring the Soho public network for dynamic addressing Select the Obtain an IP address automatically option. Click Configuring the Soho public network for static addressingOn your computer Click Public Network On the SohoConfiguring Soho public network for PPPoE Click Automatically restore lost connections Release and renew the IP configurationConfiguring your private network Configure additional computers to the private network Select System Password Changing the Soho system name and passwordSelect System Administration Default factory settings Default factory settings Virtual Private Networking IPSec VPN is not installed Troubleshooting installation and network configurationWhere are the Soho settings stored? What do the on and Mode lights signify on the SOHO?How do I register my SOHO? How do I change to a Dhcp private IP address?How do I change to a static private IP address? How do I allow any incoming service?How do I allow incoming IP protocols? How do I set up and disable Web blocking?Click Services and then click Allowed Incoming Services VPN Management How do I set up VPN between two SOHOs?How do I reset the Soho to factory defaults? How do I reboot my SOHO?How do I set up my Soho for remote configuration? How do I install a Soho using a Macintosh? Set a password on my unit, but I forgot it. Can you help?How does the seat limitation on the Soho work? How do I get to the Soho Knowledge Base?Cant get a certain Soho feature to work with a DSL modem What is a Soho feature key?How do I register for Live Security? How can I see the MAC address of my SOHO?IP addresses Configuring Services for a SohoHow does information travel on the internet? WatchGuard Soho services ServicesProtocol Port numberNetwork address translation Allowing incoming servicesClick Add a Service Adding a pre-configured incoming serviceSelect Allowed Incoming Services Adding an incoming TCP or UDP service Creating a custom incoming serviceClick Allowed Incoming Services. Click Add a Service Click Add Other TCP or UDP ServiceClick Add Other Service Adding an incoming service with another type of protocolAdding the Any service Click Allowed Incoming Services Removing an incoming serviceClick Add Any Service Click Remove a Service Blocking outgoing servicesBlocking a TCP or UDP service Click Block TCP or UDP Service Select Blocked Outgoing ServicesClick Blocked Outgoing Services Blocking an alternative protocolClick Remove Blocked Service Removing a blocked outgoing serviceWhy create a virtual private network? Configuring Virtual Private NetworkingOne WatchGuard Soho with VPN and an IPSec-compliant Device What you will needIP Address Table example Obtaining a VPN Feature Key About Feature KeysEnabling the VPN Feature Key Step-by-step instructions for configuring a Soho VPN tunnelSpecial considerations Why do I need a static public address? Frequently asked questionsHow do I get a static public IP address? How do I connect three or four offices together?OK, ping is not working How do I obtain a VPN Feature Key?How do I enable a VPN Tunnel? Frequently asked questions Socks for Soho Additional Soho FeaturesSoho Socks implementation Configuring your Socks application on the SohoDisabling Socks on the Soho Select Service OptionsSoho logging Setting a remote log hostViewing Soho log messages Click System InformationSelect Remote Logging Rebooting a WatchGuard SohoClick System Administration Rebooting a WatchGuard Soho How WebBlocker works WatchGuard Soho WebBlockerWeb site in WebBlocker database Web site not in WebBlocker databaseWatchGuard WebBlocker database unavailable Bypassing the Soho WebBlockerSelect Web Blocking Configuring the Soho WebBlockerPurchasing and enabling Soho WebBlocker WebBlocker categories Enter the full access passwordAlcohol/Tobacco Satanic/Cult Search Engines Click Check if the URL is on the CyberNOT List Searching for blocked sitesIndex Primary IP address 44 secondary IP address TCP UDP