Manuals / WatchGuard Technologies / Computer Equipment / Network Card

WatchGuard Technologies SOHO manual Denying FTP access to the Trusted Network interface

Models: SOHO

1 118

Download 118 pages 46.32 Kb

Page 71

Firewall Options

Denying FTP access to the Trusted Network interface

You can configure the SOHO to deny FTP access to Trusted interface.

1Enable the checkbox labeled Do not allow FTP access to Trusted Network.

2Click the Submit button.

CAUTION

When performing an update of the system firmware, this option must be disabled or the procedure will fail an the unit becomes unrecoverable and must be reset to the factory defaults. If this inadvertently occurs, please see “Resetting a SOHO to the Factory Defaults” on page 23.

SOCKS implementation for the SOHO

SOCKS is a network proxy filter that works with SOCKS-aware applications. A typical SOCKS-dependent application requires that several sockets be opened and made available to the Internet. When a SOCKS-aware application (ICQ is SOCKS-aware) registers with the SOCKS server, SOCKS is able to manage the need of the application to have many ports open.

To use an application with SOCKS, the application must be configured with the SOCKS server information.

Setting up your SOCKS application for use with the SOHO requires no reconfiguration of the SOHO appliance itself. Your SOHO acts as the SOCKS proxy. You must, however, configure your application to be compliant with the SOHO implementation of SOCKS version 5.

The SOHO SOCKS feature has the following characteristics and limitations:

User Guide 5.0

71

Image 71

WatchGuard Technologies SOHO manual Denying FTP access to the Trusted Network interface, Socks implementation for the Soho

Contents

WatchGuard Soho User Guide Page Following conventions are used throughout this guide Using this guideIndustry Canada Certifications and NoticesFCC Certification CE NoticeTaiwanese Notice Vcci Notice Class a ITE Declaration of Conformity WatchGuard End-User License Agreement Page User Guide WatchGuard Limited Hardware Warranty User Guide Copyright and Patent Information Table of Contents Your Administrative Options Configuring Virtual Private Networking Page Welcome IntroductionHow does a firewall work? Registration and Identification InformationHow does a firewall work? Port number How does information travel on the internet?IP Addresses ProtocolNetwork Address Translation NAT ServicesHow does the Soho process this information? Soho Home Page-System Status Default Factory SettingsFirewall Settings Resetting a Soho to the Factory DefaultsBase Model Soho Rebooting a WatchGuard SohoRebooting a WatchGuard Soho Rebooting a WatchGuard Soho Before you begin Pre-installation checklistInstallation Process Macintosh Determine your current TCP/IP settingsMicrosoft Windows NT or Microsoft Windows 95 or 98 or MEExit the TCP/IP configuration screen Disable your browser’s Http proxyNetscape 6/6.1 NetscapeCabling the Soho for one to four devices Physically connecting your SohoInternet Explorer 5.0/5.5 Installation Process Cabling the Soho for more than four computers This creates a connection between the Soho and the modem Installation Process Network addressing Configuring Your External NetworkDouble-click the Network icon TCP/IP Properties dialog box appears Configuring the Soho External network for dynamic addressing On your computer Configuring the Soho External network for static addressingExternal On the SohoConfiguring the Soho external network for PPPoE From the Configuration Mode drop list, select PPPoE Client Click Automatically restore lost connections Release and renew the IP configuration Routes Configuring Your Trusted NetworkConfigure the Trusted network with static addresses Configure additional computers to the trusted network Configuring Static Routes View the Network Statistics Network Statistics View the Network Statistics System Security Your Administrative OptionsSetting a System Administrator Name and System Passphrase = System Security = VPN Manager Access Setting up VPN Manager AccessClick the Submit button = Update Update Your Configuration from a Non- Windows PlatformRedeeming your Soho upgrade certificates = Upgrade Seat Licenses Upgrade certificates= View Configuration File View the Configuration FileView the Configuration File Configuring Incoming and Outgoing Services Firewall settingsIncoming or Outgoing Pre-configured ServicesCreating a Custom Service IP Protocols Custom ServiceTCP and UDP Ports Blocking External Sites Blocked Sites Firewall Options Firewall OptionsPing requests received on the External Network Socks implementation for the Soho Denying FTP access to the Trusted Network interfaceConfigure your Socks application Disabling Socks on the Soho Logging all allowed outbound trafficDMZ Creating a virtual DMZCreating a virtual DMZ Creating a virtual DMZ Viewing Soho log messages What is Logging?Wsep Logging Setting a WatchGuard Security Event Processor log hostOur example Syslog Logging Setting a Syslog HostSystem Time Setting the System TimeIf you have decided to use the WatchGuard Time Server Setting the System Time Setting the System Time How WebBlocker works WatchGuard Soho WebBlockerWebBlocker Users and Groups Web site not in WebBlocker databaseWeb site in WebBlocker database WatchGuard WebBlocker database unavailableBypassing the Soho WebBlocker Purchasing and enabling Soho WebBlockerSettings Configuring the Soho WebBlockerEnable WebBlocker Enter the Inactivity Timeout in minutes Groups Create WebBlocker Groups and UsersTo the right of the Users field, click the New button Click the Submit button Alcohol/Tobacco WebBlocker categoriesDrug Culture Search Engines Click Check if the URL is on the CyberNOT List Searching for blocked sitesWhy create a virtual private network? Configuring Virtual Private NetworkingWhat you will need IP Address Table example Special considerations Step-by-step instructions for configuring a Soho VPN tunnelObtaining the VPN upgrade Enabling the VPN upgradeHow do I get a static external IP address? Frequently asked questionsWhy do I need a static external address? How do I troubleshoot the connection? OK, why is ping not working?How do I obtain a VPN upgrade certificate? How do I connect three or four offices together?View the VPN Statistics How do I enable a VPN Tunnel?Muvpn Clients View the VPN Statistics 104 General TroubleshootingHow do I reboot my SOHO? How do I register my SOHO? What do the on and Mode lights signify on the SOHO?How does the seat limitation on the Soho work? Set a password on my unit, but I forgot it. Can you help?What is a Soho feature key? Cant get a certain Soho feature to work with a DSL modemHow do I install a Soho using a Macintosh? How do I change to a Dhcp trusted IP address? ConfigurationWhere are the Soho settings stored? How can I see the MAC address of my SOHO?How do I change to a static trusted IP address? How do I set up and disable Webblocker?Incoming WebBlockerVPN Management How do I set up VPN between two SOHOs? How do I set up my Soho for VPN Manager Access?Special Notices Online Documenting and In-Depth FAQsContacting Technical support Database WebBlocker Default gateway 98 DNS service 116 User Guide 117 Socks