WatchGuard Technologies V10.0 manual Installing the Mobile VPN with IPSec Client

Page 26

Installing the Mobile VPN with IPSec Client

> Windows Firewall > Change Settings > Exceptions) for UDP port 4500. This will enable Mobile VPN keep-alive packets from the Firebox® to reach your client and keep the VPN tunnel up.

We recommend that you check to make sure all available service packs are installed before you install the Mobile VPN client software.

WINS and DNS settings for the Mobile VPN client are obtained in the client profile you import when you set up your Mobile VPN client.

We recommend that you do not change the configuration of any Mobile VPN client setting not explicitly described in this documentation.

Installing the Mobile VPN with IPSec Client

The installation process consists of two parts: installing the client software on the remote computer and importing the end-user profile into the client. Before you start the installation, make sure you have the following installation components, which you should get from your network administrator:

The Mobile VPN installation file

An end-user profile, with a file extension of .wgx

Shared Key

A .p12 certificate file (if you are connecting to a Firebox® X Core or Peak and use certificates to authenticate)

User name and password (if you are connecting to a Firebox X Core or Peak and use Extended Authentication)

Write the shared key down and keep it in a secure location. You must use it during the final steps of the installation procedure.

To install the client:

1Copy the Mobile VPN .zip file to the remote computer and extract the contents of the file.

2Copy the end-user profile (the .wgx file) to the root directory on the remote (client or employee)

computer.

If you use certificates to authenticate, copy the .p12 file to the root directory as well.

3Run the Mobile VPN executable file by double-clicking the .exe file you extracted in step 1. This

starts the WatchGuard Mobile VPN Installation wizard.

You must restart your computer when the installation wizard completes.

24

Mobile User VPN

Page 25 Page 27
Image 26
Page 25 Page 27
Contents WatchGuardMobile VPN with IPSec Administrator Guide Address About Mobile VPN Client Configuration Files Before You BeginSelect the Enable Muvpn for this account check box Enabling Mobile VPN for a Firebox User AccountConfiguring Global Mobile VPN Client Settings Get the user’s .wgx fileDistributing the Software and Profiles Distributing the Software and ProfilesEnd-user profile Distributing the Software and Profiles Mobile User VPN Before You Begin Configuring the Firebox for Mobile VPN Select a user authentication server Configuring the Firebox for Mobile VPN Configuring the external authentication server Modifying an Existing Mobile VPN Profile Adding Users to a Firebox Mobile VPN GroupConfirm Use a certificate Phase2 Settings Defining advanced Phase 1 settings Configuring Wins and DNS Servers Allowing Internet access through Mobile VPN tunnelsLocking Down an End-User Profile On the Mobile User VPN tab, click AdvancedSeeing details on an Mobile VPN policy Configuring Policies to Filter Mobile VPN TrafficAdd individual policies Saving the Profile to a Firebox Using the Any PolicyRe-creating End-User Profiles Additional Mobile VPN Topics Making outbound IPSec connections from behind a FireboxTerminating IPSec connections Global VPN settingsAdding feature keys Seeing the number of Mobile VPN licensesMobile VPN Client Installation and Connection Installing the Mobile VPN with IPSec Client Window AutoStart No Autostart Select Configuration Profile ImportImporting the end-user profile Selecting a certificate and entering the PIN Connecting the Mobile VPN ClientUninstalling the Mobile VPN client Start All Programs WatchGuard Mobile VPN Mobile VPN Monitor Disconnecting the Mobile VPN clientControlling connection behavior Seeing Mobile VPN Log Messages Mobile User VPN client iconSecuring Your Computer with the Mobile VPN Firewall Enabling the link firewallEnabling the desktop firewall Configuration Firewall SettingsAbout the desktop firewall Defining friendly networks Creating firewall rulesGeneral tab Local tab Remote tab
Top Page Image Contents