WatchGuard Technologies WatchGuard SOHO and SOHO | tc manual Adding the Any service

Page 50

Allowing incoming services

9Click Submit.

The configuration change is saved to the SOHO, and the Show Incoming Rules page appears.

Adding an incoming service with another type of protocol

In addition to TCP and UDP, there are several other types of Internet protocols. To allow incoming service to these protocols, you must define both the protocol type and the internal destination. You cannot specify a port number. To allow an incoming service:

1Using your Web browser, go to http://192.168.111.1.

2Select Services.

The Services menu appears.

3Click Allowed Incoming Services. Click Add a Service.

The Add New Incoming Services menu appears.

4Click Add Other Service.

The New Protocol Forward configuration page appears.

5Enter the protocol name used to forward packets.

WatchGuard uses ICSA standards for protocol names.

6Enter the private network IP address of the computer hosting this service.

7Enter a name for the service.

8Click Submit.

The configuration change is saved to the SOHO, and the Show Incoming Rules page appears.

Adding the Any service

In addition to specific protocols and ports, you can elect to send unidentified packets to a single server on your private network. This enables you to open a hole in your firewall for services you would be unable to define using the standard service menus.

38

Image 50

Contents WatchGuard Soho User Guide Registration and identification information Copyright and patent informationWatchGuard Soho End-User License Agreement User Guide IiiPage User Guide WatchGuard Limited Hardware Warranty User Guide Vii Redeeming Soho upgrade certificates WelcomeUsing this guide Following conventions are used throughout this guidePage Table of Contents Additional Soho Features Before you begin InstallationPre-installation checklist Performing manual installation Determine your current TCP/IP settingsMacintosh Microsoft Windows NT orMicrosoft Windows 95 or 98 or ME Other operating systems Unix, LinuxDisable your browser’s Http proxy Netscape 4.5 or Internet ExplorerPhysically connecting your Soho Cabling the Soho for one to four devicesThis creates a connection between the Soho and the modem Cabling the Soho for more than four computers This creates a connection between the Soho and the modem Physically connecting your Soho Setting Up Your Soho Network How does a firewall work?Configuring your public network Network addressingDouble-click the Network icon Configuring your public network Configuring the Soho public network for dynamic addressing Select the Obtain an IP address automatically option. Click Configuring the Soho public network for static addressingOn your computer On the Soho Click Public NetworkConfiguring Soho public network for PPPoE Release and renew the IP configuration Click Automatically restore lost connectionsConfiguring your private network Configure additional computers to the private network Select System Password Changing the Soho system name and passwordSelect System Administration Default factory settings Default factory settings Troubleshooting installation and network configuration Virtual Private Networking IPSec VPN is not installedHow do I register my SOHO? What do the on and Mode lights signify on the SOHO?Where are the Soho settings stored? How do I change to a Dhcp private IP address?How do I allow any incoming service? How do I change to a static private IP address?How do I allow incoming IP protocols? How do I set up and disable Web blocking?Click Services and then click Allowed Incoming Services How do I set up VPN between two SOHOs? VPN ManagementHow do I reset the Soho to factory defaults? How do I reboot my SOHO?How do I set up my Soho for remote configuration? How does the seat limitation on the Soho work? Set a password on my unit, but I forgot it. Can you help?How do I install a Soho using a Macintosh? How do I get to the Soho Knowledge Base?How do I register for Live Security? What is a Soho feature key?Cant get a certain Soho feature to work with a DSL modem How can I see the MAC address of my SOHO?IP addresses Configuring Services for a SohoHow does information travel on the internet? Protocol ServicesWatchGuard Soho services Port numberAllowing incoming services Network address translationClick Add a Service Adding a pre-configured incoming serviceSelect Allowed Incoming Services Click Allowed Incoming Services. Click Add a Service Creating a custom incoming serviceAdding an incoming TCP or UDP service Click Add Other TCP or UDP ServiceClick Add Other Service Adding an incoming service with another type of protocolAdding the Any service Click Allowed Incoming Services Removing an incoming serviceClick Add Any Service Click Remove a Service Blocking outgoing servicesBlocking a TCP or UDP service Click Blocked Outgoing Services Select Blocked Outgoing ServicesClick Block TCP or UDP Service Blocking an alternative protocolRemoving a blocked outgoing service Click Remove Blocked ServiceConfiguring Virtual Private Networking Why create a virtual private network?What you will need One WatchGuard Soho with VPN and an IPSec-compliant DeviceIP Address Table example Enabling the VPN Feature Key About Feature KeysObtaining a VPN Feature Key Step-by-step instructions for configuring a Soho VPN tunnelSpecial considerations How do I get a static public IP address? Frequently asked questionsWhy do I need a static public address? How do I connect three or four offices together?OK, ping is not working How do I obtain a VPN Feature Key?How do I enable a VPN Tunnel? Frequently asked questions Additional Soho Features Socks for SohoConfiguring your Socks application on the Soho Soho Socks implementationSelect Service Options Disabling Socks on the SohoViewing Soho log messages Setting a remote log hostSoho logging Click System InformationSelect Remote Logging Rebooting a WatchGuard SohoClick System Administration Rebooting a WatchGuard Soho WatchGuard Soho WebBlocker How WebBlocker worksWatchGuard WebBlocker database unavailable Web site not in WebBlocker databaseWeb site in WebBlocker database Bypassing the Soho WebBlockerSelect Web Blocking Configuring the Soho WebBlockerPurchasing and enabling Soho WebBlocker Enter the full access password WebBlocker categoriesAlcohol/Tobacco Satanic/Cult Search Engines Searching for blocked sites Click Check if the URL is on the CyberNOT ListIndex Primary IP address 44 secondary IP address TCP UDP