WatchGuard Technologies V10.0 manual Configuring Wins and DNS Servers

Page 19

Configuring WINS and DNS Servers

2From the Type drop-down list, select ESP or AH as the proposal method. Only ESP is supported at this time.

3From the Authentication drop-down list, select SHA1 or MD5 for the authentication method.

4From the Encryption drop-down list, select the encryption method.

The options are None, DES, 3DES, and AES 128, 192, or 256 bit, which appear in the list from the most simple and least secure to most complex and most secure.

5To make the gateway endpoints generate and exchange new keys after a quantity of time or amount of traffic passes, select the Force Key Expiration check box. In the fields below, enter a quantity of time and a number of bytes after which the key expires.

If Force Key Expiration is disabled, or if it is enabled and both the time and kBytes are set to zero, the Firebox tries to use the key expiration time set for the peer. If this is also disabled or zero, the Firebox uses a key expiration time of 8 hours.

You can set the time up to one year.

6Click OK.

Allowing Internet access through Mobile VPN tunnels

You can give remote users access to the Internet through a Mobile VPN tunnel when you use the MUVPN wizard and select the Yes, force all Internet traffic to flow through the tunnel radio button on the “Direct the flow of Internet traffic” screen.

This option adds Any-External as an allowed resource, which means that traffic destined to go out any external interface is allowed.

Configuring WINS and DNS Servers

RUVPN and Mobile VPN clients rely on shared Windows Internet Name Server (WINS) and Domain Name System (DNS) server addresses. DNS translates host names into IP addresses. WINS resolves NetBIOS names to IP addresses. These servers must be accessible from the Firebox® trusted interface.

Make sure you use only an internal DNS server. Do not use external DNS servers.

1From Policy Manager, select Network > Configuration. Click the WINS/DNS tab.

The information for the WINS and DNS servers appears.

2Type a domain name for the DNS server.

3In the DNS Servers and WINS Servers text boxes, type the addresses for the WINS and DNS servers.

Administrator Guide

17

Image 19
Contents WatchGuardMobile VPN with IPSec Administrator Guide Address Before You Begin About Mobile VPN Client Configuration FilesEnabling Mobile VPN for a Firebox User Account Select the Enable Muvpn for this account check boxGet the user’s .wgx file Configuring Global Mobile VPN Client SettingsDistributing the Software and Profiles Distributing the Software and ProfilesEnd-user profile Distributing the Software and Profiles Mobile User VPN Before You Begin Configuring the Firebox for Mobile VPN Select a user authentication server Configuring the Firebox for Mobile VPN Configuring the external authentication server Adding Users to a Firebox Mobile VPN Group Modifying an Existing Mobile VPN ProfileConfirm Use a certificate Phase2 Settings Defining advanced Phase 1 settings Allowing Internet access through Mobile VPN tunnels Configuring Wins and DNS ServersOn the Mobile User VPN tab, click Advanced Locking Down an End-User ProfileAdd individual policies Configuring Policies to Filter Mobile VPN TrafficSeeing details on an Mobile VPN policy Re-creating End-User Profiles Using the Any PolicySaving the Profile to a Firebox Making outbound IPSec connections from behind a Firebox Additional Mobile VPN TopicsSeeing the number of Mobile VPN licenses Global VPN settingsAdding feature keys Terminating IPSec connectionsMobile VPN Client Installation and Connection Installing the Mobile VPN with IPSec Client Importing the end-user profile Select Configuration Profile ImportWindow AutoStart No Autostart Uninstalling the Mobile VPN client Connecting the Mobile VPN ClientSelecting a certificate and entering the PIN Controlling connection behavior Disconnecting the Mobile VPN clientStart All Programs WatchGuard Mobile VPN Mobile VPN Monitor Mobile User VPN client icon Seeing Mobile VPN Log MessagesEnabling the link firewall Securing Your Computer with the Mobile VPN FirewallAbout the desktop firewall Configuration Firewall SettingsEnabling the desktop firewall Creating firewall rules Defining friendly networksGeneral tab Local tab Remote tab