WatchGuard Technologies SOHO 6.1 manual Configure OPT Port Upgrades

Page 63

Configure OPT Port Upgrades

The SOHO 6 uses two methods to determine if the external port connection is down:

•The link to the nearest router

•A ping to a specified location.

The SOHO pings the default gateway or other location designated by the administrator. If there is no response, fail-over takes place.

When this feature is activated, these actions automatically occur:

•If the external port (EXT) connection fails, the optional port (OPT) connection is initiated and used

•If the optional port (OPT) connection fails the external port (EXT) connection is opened and used

•If both connections fail the SOHO 6 repeatedly tries both external and optional ports until a connection is made

There is no automatic return to the external port (EXT) if this port comes back online unless you use PPPoE to assign IP addresses. Once the fail-over has switched to the optional port (OPT), the administrator has to change the configuration back to the external port (EXT) when it comes back online.

If you use PPPoE, you can set an inactivity timeout, which disables any inactive TCP connections until traffic resumes. For information on setting up PPPoE, see “Configure the SOHO 6 External Network for PPPoE” on page 34. If your external port (EXT) connection fails, the optional port (OPT) connection is initiated and used. The optional port (OPT) stays connected until the TCP connection is not active (timeout). When traffic resumes, the SOHO attempts to connect with the external port (EXT) first. If this connection is active, the external port (EXT) becomes the active port again. If the external port (EXT) is still unavailable, the SOHO attempts to connect with the optional port (OPT).

User Guide

45

Image 63

Contents WatchGuard Firebox Soho User Guide Following conventions are used in this guide Using this GuideIndustry Canada Certifications and NoticesFCC Certification CE NoticeVcci Notice Class a ITE Declaration of Conformity Watchguard Soho Software END-USER License Agreement User Guide Vii Viii WatchGuard Firebox Soho Copyright, Trademark, and Patent Information WatchGuard Firebox Soho User Guide Xii WatchGuard Firebox Soho Contents Configure the Network Interfaces Configure the Firewall Settings VPN-Virtual Private Networking Index 117 Xviii WatchGuard Firebox Soho Welcome IntroductionPackage Contents How Does a Firewall Work? How Does Information Travel on the Internet? IP addressesProtocol Network Address Translation ServicesHow Does the Soho 6 Process Information? Port numbersEthernet ports Soho 6 Hardware DescriptionSoho 6 front and rear views Faster ProcessorMode StatusLink 100OPT port Numbered ports Reset buttonPower input WAN portIntroduction WatchGuard Firebox Soho Installation Microsoft Windows 2000 and Windows XP Review and record your current TCP/IP settingsClick Start = Programs = Accessories = Command Prompt Before You BeginOther operating systems Unix, Linux Microsoft Windows NTMicrosoft Windows 95 or 98 or ME MacintoshExit the TCP/IP configuration screen Disable the Http proxy setting of your Web browserClick Edit = Preferences NetscapeClick Tools = Internet Options Enable your computer for DhcpClick Start = Settings = Control Panel Internet Explorer 5.0, 5.5,Click Properties Physically connect the Soho Cabling the Soho 6 for one to four appliances Cabling the Soho 6 for more than four computers Physically connect the Soho Soho 6 is now connected to the Internet and your hub Soho 6 Home Page-System Status Soho 6 BasicsSoho 6 Basics Default Factory Settings External NetworkTrusted Network System Security Reset a Soho 6 to factory defaultFirewall Settings Upgrade OptionsBase model Soho Register your Soho 6 and Activate the LiveSecurity ServiceReboot the Soho Reboot the Soho Soho 6 Basics WatchGuard Firebox Soho Configure Network Interfaces Configure Your External NetworkNetwork addressing Configure the Soho 6 External Network for dynamic addressing Configure the Soho 6 External Network for static addressing Manual ConfigurationNetwork = External Configure the Soho 6 External Network for PPPoE Click Automatically restore lost connections Configure Dhcp Server and Dhcp Relay Configure the Trusted NetworkTrusted Network Configuration page appears Configure additional computers on the Trusted Network Network = Trusted Configure the Trusted Network with static addressesConfigure Static Routes Click Add Network = Network Statistics View Network StatisticsConfigure the Dynamic DNS Service Select the Enable Dynamic DNS client checkboxNetwork = DynamicDNS Configure Dual ISP Port Configure OPT Port UpgradesConfigure OPT Port Upgrades Network = Dual ISP Configure VPNforce Port Network = Optional Configure OPT Port Upgrades Configure the Network Interfaces WatchGuard Firebox Soho Administrative Options System management System SecurityAdministration = System Security Soho Remote Management Set up VPN Manager AccessSelect Enable VPN Manager Access Administration = VPN Manager AccessAdministration = Update Update Your FirmwareRedeem your Soho 6 Upgrade Options Administration = Upgrade Upgrade optionsSeat Licenses IPSec Virtual Private Networking VPN LiveSecurity Service Subscription RenewalsDual ISP Port VPNforce PortAdministration = View Configuration File View the Configuration FileFirewall Settings Configure Firewall SettingsConfigure Incoming and Outgoing Services Pre-configured ServicesFirewall = Incoming or Outgoing Create a Custom Service Custom Service page refreshes Firewall = Custom ServiceBlock External Sites Blocked Sites page appears Firewall = Firewall Options Firewall OptionsSocks implementation for the Soho Denying FTP access to the Trusted Network interfaceSelect Do not allow FTP access to Trusted Network Ping requests received on the External NetworkConfiguring your Socks application Disabling Socks on the Soho Logging all allowed outbound trafficEnable override MAC address for the External Network Select Log All Allowed Outbound AccessSelect Enable override MAC address for the External Network Select Enable pass through address Create an Unrestricted Pass ThroughFirewall = Pass Through Create an Unrestricted Pass Through Configure the Firewall Settings WatchGuard Firebox Soho Configure Logging From the navigation bar on the left side, select Logging View Soho 6 Log MessagesTo have your log messages synchronize with your computer Select Enable WatchGuard Security Event Processor Logging Set up Logging to a Syslog Host Select Enable syslog outputLogging = Syslog Logging Select Include local time in syslog message Set the System TimeSelect a time zone from the drop list Select Adjust for daylight savings timeConfigure Logging WatchGuard Firebox Soho VPN-Virtual Private Networking Why Create a Virtual Private Network?What You Need IP Address Table example Enable the VPN Upgrade How do I get a static external IP address? Frequently Asked QuestionsWhy do I need a static external address? Special ConsiderationsHow do I troubleshoot the connection? Why is ping not working?How do I obtain a VPN upgrade license key? How do I enable a VPN Tunnel?VPN = Manual VPN Set Up Multiple SOHO-SOHO VPN TunnelsEnter the Name, IPSec Gateway Address, and Shared Key for Soho 6 you want to set up a VPN tunnelSet Up Multiple SOHO-SOHO VPN Tunnels Forward Secrecy Muvpn Clients Configure Split TunnelingStatistics View the VPN StatisticsHow WebBlocker Works Soho 6 WebBlockerWeb site not in the WebBlocker database Web site in the WebBlocker databaseWatchGuard WebBlocker database unavailable Groups Purchase and Activate Soho 6 WebBlockerWebBlocker users and groups Bypass the Soho 6 WebBlockerConfigure the Soho 6 WebBlocker WebBlocker = SettingsActivate WebBlocker Create WebBlocker Groups and Users Select Enable WebBlockingClick New to create a group name and profile Click Submit To the right of the Users field, click New WebBlocker Categories Alcohol/tobaccoIllegal Gambling Intolerance Militant/extremistDrug Culture Satanic/cultSports and Leisure Gross DepictionsViolence/profanity Search EnginesSexual Acts Full NudityPartial/artistic Nudity Troubleshooting Tips Support ResourcesGeneral How do I restart my Soho 6? How do I register my Soho 6 with the LiveSecurity Service?What is a Soho 6 Feature Key? Cant get a certain Soho 6 feature to work with a DSL modemHow does the seat limitation on the Soho 6 work? 110 Select Enable Dhcp Server and then click Submit ConfigurationWhere are the Soho 6 settings stored? How do I set up Dhcp on the trusted network of the Soho 6?Disable Enable Dhcp Server and then click Submit How do I set up and disable Webblocker?How do I change to a static, trusted IP address? Firewall = Incoming VPN Management How do I set up VPN to a Soho 6s? How do I set up my Soho 6 for VPN Manager Access?Contact Technical support Online Documentation and In-Depth FAQsNumerics IndexWAN Socks Redeeming 57 types Upgrade page 58 upgrading Processor WebBlocker 122

Related manuals

Manual 8 pages 29.02 Kb