Setting Up the Firewall | Enterasys Networks ANG-1100 manual

Chapter 3

Configuring the ANG-1100 with Aurorean Web Config

Release and click OK. Then click Renew All and click OK.

-For Windows NT/2000 systems, type ipconfig /release and press ENTER. Then type ipconfig /renew and press ENTER.

-For Macintosh systems, check the TCP-IP control panel.

3If you chose the DHCP option or changed the DNS or WINS default entries, a window appears detailing the reconfiguration changes and prompting you to reboot the ANG-1100. Click Reboot Now.

NOTE

If you press the Reset button after configuring your ANG-1100, you will lose your entire configuration. Any settings you supplied must then be re-entered. We strongly recommend that you do not use the Reset button unless you want the configuration to return to factory defaults.

Setting Up the Firewall

Firewall security is established in a one-way, outbound configuration by default on the ANG-1100’s External interface. A strong combination of firewall and NAT security is achieved to allow users out from their ANGs but disallow any others in from the Internet. The firewall also provides the following optional choices to control management of the ANG-1100 via HTTP and/or Telnet:

!Enable/disable HTTP/Telnet from the Trusted network

!Enable/disable HTTP/Telnet over the VPN tunnels

!Enable/disable HTTP/Telnet in the clear from the Internet

Enabling any of these options allows ANG-1100 management via the Web or Telnet. We recommend that you accept the factory default settings which allow Web and Telnet management access on the Trusted LAN connection but disable these permissions on the Internet and VPN Gateway connections.

WARNING

DO NOT LEAVE ALL THREE CONNECTIONS DISABLED. If you do so, you will be UNABLE TO CONFIGURE THE ANG-1100 without resetting the system and returning to the factory default configuration.

28	Aurorean Network Gateway-1100 User’s Guide

Image 40

Enterasys Networks ANG-1100 manual Setting Up the Firewall

Contents

ANG-1100 User’s Guide Aurorean Virtual Network Aurorean Network Gateway-1100 User’s Guide Iii Important Safety Instructions Table of Contents Configuring the ANG-1100 with Aurorean Web Table of Contents United States Government Restricted Rights Page Contents of the Guide About This Guide Conventions Used in This Guide Related Publications About This Guide Related PublicationsPage Overview System Description ANG-1102/1105 Topology System Description Installation Unpacking the ANG-1102/1105 Location Planning AccessoriesUnpacking the ANG-1102/1105 Chapter Connecting Cables Connecting CablesEthernet Connections ANG-3000/7000 Do one of the following as shown in FigureAurorean Network Reset TER NAL Serial Connection Connecting Power to the ANG-1102/1105 Connecting Power to the ANG-1102/1105 Chapter Connecting the Power Cable to the Power Supply Connecting Power to the ANG-1102/1105 LED behavior Checking ANG-1102/1105 ConnectionsChecking ANG-1102/1105 Connections Chapter Configuring the ANG-1100 with Aurorean Web Config Before You Begin Configuring the ANG-1100 with Aurorean Web Config Logging into Web Config To log into Web Config, perform the steps belowLogin window appears as shown in Figure VPN Status window appears as shown in Figure Setting Your Password Click the Set Password menu optionSet Password window appears as shown in Figure Set Password Viewing VPN Status VPN Status Click the VPN Setup menu option Setting Up the VPNVPN Setup window appears as shown in Figure Aurorean Network Gateway VPN Setup Assigned VPN Connections Select one of the following Connection modes Click Apply Click the Internet Setup menu option Setting Up the Internet ConnectionInternet Setup window appears as shown in Figure Internet Setup Window Do one of the following Internet Setup Configuring the ANG-1100 with Aurorean Web Config Click the Firmware Upgrade menu option Firmware Upgrade window appears as shown in FigureFirmware Update window appears as shown in Figure Firmware Update Second Firmware Update Window Aurorean Network Gateway Firmware Update Image Date and Build Information Setting Up the LAN Click the LAN Setup menu optionLAN Setup window appears as shown in Figure LAN Setup Configuring the ANG-1100 with Aurorean Web Config Setting Up the Firewall Begin Firewall Setup by performing the following steps Click the Firewall Setup menu optionFirewall Setup window appears as shown in Figure Firewall Setup Setting Your Password Set Password Window Click the Device Status menu option Checking Device StatusDevice Status window appears as shown in Figure Device Status Window Network Devices Route TableInterrupts System Log Advanced Utilities window appears as shown in Figure Using Advanced UtilitiesAdvanced Utilities Using the Configuration Editor Click the Configuration Edit menu option Configuration Edit window appears as shown in Figure Configuring the ANG-1100 with Aurorean Web Config Configuring IP Port Forwarding Switch Arg Definition Follow the steps below to configure IP port forwardingUsage Example Page Aurorean Web Config GlossaryAurorean Network Gateway Aurorean Policy Server Ethernet Firewall Internet Service Provider ISP Generic Routing Encapsulation GREIP Address IP Security Protocol IPSec LEDs Network Address Translation NAT Network AdministratorMac Address Point of Presence POP Point-to-Point Protocol PPPPoint-to-Point Tunneling Protocol Pptp PPPoE Tunneling RoutersVirtual Private Network VPN This appendix details the specifications of the ANG-1100 SpecificationsCategory Parameters Specifications Vcci Page Pin Assignments Pin Signal Ethernet Port Pin Assignments DB-9 Serial Port Pin AssignmentsPage Program License Agreement Support Enterasys Networks, Inc. Program License Agreement License Other RestrictionsApplicable Law Export Requirements United States Government Restricted Rights Exclusion of WarrantyUnited States Government Restricted Rights Technical Support No Liability for Consequential DamagesSupport from Enterasys Networks Returning Products for Repair Technical SupportPage Index VPN LED Index LAN POP Index