Securing Your Computer with the Mobile VPN Firewall

4From the Stateful Inspection drop-down list, select when connected or always.

If you select when connected, the link firewall operates only when the VPN tunnel is active for this profile.

If you select always, the link firewall is always active, whether the VPN tunnel is active or not.

5Click OK.

About the desktop firewall

When you enable a rule in your firewalls, you must specify what type of network the rule applies to. In the Mobile VPN client, there are three different types of networks:

VPN networks

Networks defined for the client in the client profile they import.

Unknown networks

Any network not specified in the firewall.

Friendly networks

Any network specified in the firewall as a known network.

Enabling the desktop firewall

To enable the full-featured desktop firewall:

1From the WatchGuard Mobile VPN Connection Monitor, select

Configuration > Firewall Settings.

The firewall is disabled by default.

2When you enable the firewall, you must choose between two firewall modes:

-Basic Locked Settings - When you enable this mode, the firewall denies all connections to or from your computer unless you have created a rule to specifically allow the connection.

-Basic Open Settings - When you enable this mode, the firewall allows all connections unless you have created a rule to specifically deny the connection.

30

Mobile User VPN

Page 32
Image 32
WatchGuard Technologies V10.0 About the desktop firewall, Enabling the desktop firewall, Configuration Firewall Settings