WatchGuard Technologies Firebox X manual Software encryption levels, Base, Uses 40-bit encryption

Page 11

Installing WatchGuard System Manager

Selecting where to install server software

During installation, you can select to install the management station and three WatchGuard System Man- ager Server components on the same computer. Or you can use the same installation procedure to install the server components on other computers. To decide, you must examine the capacity of your manage- ment station and select the installation method that best matches your needs.

If you install the Management Server, Log Server, or WebBlocker Server on a computer with an active desktop firewall other than Windows Firewall, you must open the ports necessary for the servers to con- nect through the firewall. Windows Firewall users do not have to change their desktop firewall configura- tion. See “Installing WatchGuard Servers on computers with desktop firewalls” on page 8 for more information.

Setting up the management station

The management station runs the System Manager software. This software shows the traffic through the firewall. System Manager also shows connection and tunnel status. The WatchGuard Log Server records information it receives from the Firebox. You can get access to this data using tools on the management station.

Select one computer on your network as the management station and install the management software:

1Insert the WatchGuard System Manager CD-ROM in the CD drive of your computer. If the installation wizard does not appear automatically, double-click install.exe in the root directory of the CD.

2Click Connect to LiveSecurity on the WatchGuard System Manager Installation screen. This starts your Web browser and connects your computer to the WatchGuard Web site.

If you do not have an Internet connection, install the software from the CD-ROM. If you use this procedure, you cannot get support, strong encryption, or VPN functions until you enable the LiveSecurity Service.

3Use the instructions on the screen to start your LiveSecurity Service subscription.

4Download the WatchGuard System Manager software. The speed of your Internet connection controls the time to download the software.

Make sure that you write down the name and the path of the file when you save it to your hard drive.

5When the download is complete, open the file and use the instructions on the screens to help you through the installation.

The Setup program includes a screen in which you select the components of the software or the upgrades to install. A different license is necessary when you install some software components.

Note

If your management station is already operating with a Windows toolbar, some users can find it necessary to stop and restart the toolbar before you can see the new toolbar components installed for the WatchGuard Management System.

6At the end of the installation wizard, a check box appears that you can select to start the Quick Setup Wizard. Make sure you install the cables to your Firebox before you start the Quick Setup Wizard.

Software encryption levels

The management station software is available in two encryption levels.

Base

Uses 40-bit encryption

Strong

Uses 128-bit 3DES encryption

A minimum of 56-bit encryption is necessary for the IPSec standard. To use virtual private networking with IPSec you must download the strong encryption software.

User Guide

5

Page 10 Page 12
Image 11
Page 10 Page 12
Contents WatchGuardSystem Manager User Guide Address Contents Copy the online help system to more computers Setting Up Logging and NotificationImporting Certificates Microsoft Internet Explorer 5.5 LogViewer SettingsApache Software License, Version 2.0, January Log Server Getting StartedAbout WatchGuard System Manager WatchGuard Management ServerAbout Hardware and Appliance Software Installing WatchGuard System ManagerNetwork addresses License KeysOptional interfaces 1Network IP Addresses Without the FireboxExternal interface Trusted interfaceStrong Software encryption levelsBase Uses 40-bit encryptionPutting the Firebox into operation on your network Setting Up Your Management ServerAdmin password Master passwordInstallation Topics After Your InstallationRouted configuration WFS appliance software configuration modesDrop-in configuration Dynamic IP support on the external interface Adding secondary networks to your configurationTo add a secondary networks, do one of these procedures Use the Quick Setup Wizard during installationAbout slash notation Entering IP addressesInstalling the Firebox cables Installation Topics Easy software updates Service and SupportLiveSecurity Service Solutions Threat responses, alerts, and expert adviceLiveSecurity Service Broadcasts New from WatchGuard LiveSecurity Service Self Help ToolsBasic FAQs Online Training Advanced FAQsKnown Issues Interactive Support ForumOnline Help Using the WatchGuard Users ForumWatchGuard Users Forum WatchGuard Users GroupSoftware requirements Product DocumentationTechnical Support Copy the online help system to more computersHours Web Site Service TimeWe try to supply a solution in a maximum time of four hours Type of ServiceTraining and Certification From the Windows Desktop Monitoring Your NetworkStarting WatchGuard System Manager About the WatchGuard System Manager WindowLog Connecting to a FireboxDisconnecting from a Firebox DeviceSeeing Information about Devices Connecting to a ServerType the password for the Management Server Disconnecting from a ServerBranch Office VPN Tunnels Firebox StatusCertificates No exclamation point Seeing Information on Log ServersMobile user VPN tunnels Pptp user VPN tunnelsMonitoring VPNs Firebox Manager About the WatchGuard ToolbarStarting Security Applications Policy ManagerHistorical Reports Quick Setup WizardHostWatch Log ViewerLog Server collects logs from each WatchGuard Firebox Setting Up Logging and NotificationSetting Up the Log Server Configuration Guide for your version of appliance software WatchGuard Log Server Configuration dialog box appearsType the new log encryption key two times Click OK Setting Global Logging and Notification PreferencesClick Save Changes or Close Click Save Changes Setting Global Logging and Notification Preferences Traffic log messages Traffic Alarm Event DiagnosticReviewing and Working with Log Files Types of Log MessagesStarting LogViewer Alarm log messagesDiagnostic log messages Log File Names and LocationsBrowse to find the log file and click Open LogViewer Settings Click to set the format of the logs to the default colors Changing LogViewer settings with WFS appliance softwareSelect Edit Find Using LogViewerPaste the data into any text editor Click Browse to find the files to put together Click Merge Click File Merge log filesUsing LogViewer Using LogViewer Creating and Editing Reports Generating Reports of Network ActivitySelect the filter From Historical Reports, click AddType the report name Change the report definition Specifying a Report Time IntervalType the Firebox IP address or host name. Click Add Specifying Report Sections Type the number of items to put in the table Setting Report PropertiesTo consolidate report sections Exporting Reports Complete the Filter tabs Using Report FiltersChange the filter properties When finished, click OKRunning Reports Report Sections and Consolidated SectionsReport Sections and Consolidated Sections Session Summary Proxied Traffic Consolidated sections Report Sections and Consolidated Sections PKI in a WatchGuard VPN Managing Certificates Certificate AuthorityPublic Key Cryptography and Digital Certificates Certificate Authority CA Certificate Managing the Certificate AuthorityFrom the menu, select the correct Find and Manage Certificates Management Server CA CertificateGenerate a New Certificate GWvpn gateway nameDestroy RevokeReinstate Puts back a certificate that was revoked beforeImporting Certificates Managing the Firebox X Edge Firebox SohoNetscape Netscape CommunicatorSystem Status Troubleshooting ideasAdministration Managing the Firebox X Edge or Soho DeviceLogging Removing CertificatesSystem security and remote management FirewallSelect File Soho Management Clean up on PC Removing Certificates WatchGuard Firebox Software End-User License Agreement Appendix a Copyright and LicensingWatchGuard System Manager Copyright and Trademarks OpenSSL License LicensesOriginal SSLeay License Apache Software License, Version 2.0, January Licenses Pcre License GNU Lesser General Public License Licenses Licenses Licenses GNU General Public License Licenses Licenses Licenses Sleepycat License Licenses General File Locations Appendix B WatchGuard File LocationsQuick Setup Wizard Default File LocationsPolicy Manager for Fireware Appliance Software Firebox System Manager for Fireware Appliance SoftwareHostWatch for Fireware Appliance Software Policy Manager for WFS Appliance Software WatchGuard System ManagerLogViewer Firebox System Manager for WFS Appliance SoftwareHostWatch for WFS Appliance Software Flash Disk Management for WFS Appliance SoftwareLog Server User Interface Management ServerWebBlocker Server Historical Reports Log Server for Fireware Appliance SoftwareLog Server for WFS Appliance Software Management Server User Interface Management Server Setup WizardLog Merge WatchGuard Certificate Authority Default File Locations Index Muvpn Wctp 100
Top Page Image Contents