WatchGuard Technologies V10.0 manual Enabling Mobile VPN for a Firebox User Account

Page 4

Enabling Mobile VPN for a Firebox User Account

The Firebox X Edge creates a .wgx file for a user when a Firebox user’s account is configured for Mobile VPN, as described in this chapter.

If you want to lock the profiles for mobile users by making them read-only, see “Configuring Global Mobile VPN Client Settings” on page 3.

Enabling Mobile VPN for a Firebox User Account

1To connect to the Edge System Status page, type https:// in the browser address bar, and the IP

address of the Firebox® X Edge trusted interface.

The default URL is: https://192.168.111.1

2To add a new Firebox user, select Firebox Users > New User.

You can also edit the properties of an existing user. Go to the main Firebox User page and find the name of the user account you want to edit.

3On the Settings tab, type an Account Name for the user. Type the password for the user. This is

different from the shared secret you type in step 7 below.

The Full Name and Description fields are optional.

4Select the Allow access to VPN check box.

5Click the MUVPN tab.

6Select the Enable MUVPN for this account check box.

7Type a shared key in the related field.

The .wgx file is encrypted with this shared key. Do not give the shared key to any user that is not authorized to use this Firebox user account.

8Type the virtual IP address in the related field.

The virtual IP address must be an address on the Firebox X Edge trusted or optional network that is not used and is not included within any range of DHCP addresses assigned by the Edge. This address is used by the remote computer to connect to the Firebox X Edge.

9Change the Authentication Algorithm or Encryption Algorithm settings if want to. You can find more information about these settings in the Firebox X Edge User Guide.

2

Mobile User VPN

Page 3 Page 5
Image 4
Page 3 Page 5
Contents WatchGuardMobile VPN with IPSec Administrator Guide Address About Mobile VPN Client Configuration Files Before You BeginSelect the Enable Muvpn for this account check box Enabling Mobile VPN for a Firebox User AccountConfiguring Global Mobile VPN Client Settings Get the user’s .wgx fileDistributing the Software and Profiles Distributing the Software and ProfilesEnd-user profile Distributing the Software and Profiles Mobile User VPN Before You Begin Configuring the Firebox for Mobile VPN Select a user authentication server Configuring the Firebox for Mobile VPN Configuring the external authentication server Modifying an Existing Mobile VPN Profile Adding Users to a Firebox Mobile VPN GroupConfirm Use a certificate Phase2 Settings Defining advanced Phase 1 settings Configuring Wins and DNS Servers Allowing Internet access through Mobile VPN tunnelsLocking Down an End-User Profile On the Mobile User VPN tab, click AdvancedAdd individual policies Configuring Policies to Filter Mobile VPN TrafficSeeing details on an Mobile VPN policy Re-creating End-User Profiles Using the Any PolicySaving the Profile to a Firebox Additional Mobile VPN Topics Making outbound IPSec connections from behind a FireboxGlobal VPN settings Adding feature keysTerminating IPSec connections Seeing the number of Mobile VPN licensesMobile VPN Client Installation and Connection Installing the Mobile VPN with IPSec Client Importing the end-user profile Select Configuration Profile ImportWindow AutoStart No Autostart Uninstalling the Mobile VPN client Connecting the Mobile VPN ClientSelecting a certificate and entering the PIN Controlling connection behavior Disconnecting the Mobile VPN clientStart All Programs WatchGuard Mobile VPN Mobile VPN Monitor Seeing Mobile VPN Log Messages Mobile User VPN client iconSecuring Your Computer with the Mobile VPN Firewall Enabling the link firewallAbout the desktop firewall Configuration Firewall SettingsEnabling the desktop firewall Defining friendly networks Creating firewall rulesGeneral tab Local tab Remote tab
Top Page Image Contents