Watchguard Firebox X5-W Betriebsanweisung Seite 152
- Seite / 234
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Configuring Virtual Private Networks
136 Firebox X Edge e-Series
• You must have an Internet connection.
• The ISP for each VPN device must let IPSec go across their networks.
Some ISPs do not let you create VPN tunnels on their networks unless you upgrade your Internet
service to a level that supports VPN tunnels. Speak with the ISP to make sure they let you use these
ports and protocols:
- UDP Port 500 (Internet Key Exchange or IKE)
- UDP Port 4500 (NAT traversal)
- IP Protocol 50 (Encapsulating Security Payload or ESP)
• If the other side of the VPN tunnel is a WatchGuard Firebox X and each Firebox is under
WatchGuard System Manager management, you can use the Managed VPN option. Managed
VPN is easier to configure than Manual VPN. You must get information from the administrator of
the Firebox X on the other side of the VPN to use this option.
• You must know if the IP address assigned to your Firebox X Edge external interface is static or
dynamic. To learn about IP addresses, see Chapter 2, “Installing the Firebox X Edge e-Series.”
• Your Firebox X Edge e-Series model tells you the number of VPN tunnels that you can create on
your Edge. You can purchase a model upgrade for your Edge to make more VPN tunnels, as
described in “Enabling the Model Upgrade Option” on page 44.
• If you connect two Microsoft Windows NT networks, they must be in the same Microsoft
Windows domain, or they must be trusted domains. This is a Microsoft Networking problem, and
not a limit of the Firebox X Edge e-Series.
• If you want to use the DNS and WINS servers from the network on the other side of the VPN
tunnel, you must know the IP addresses of these servers.
The Firebox X Edge can give WINS and DNS IP addresses to the computers on its trusted network if those
computers get their IP addresses from the Edge using DHCP. If you want to give the computers the IP addresses of
WINS and DNS servers on the other side of the VPN, you can type those addresses into the DHCP settings in the
trusted network setup. For information on how to configure the Edge to give DHCP addresses, see “Using DHCP on
the trusted network” on page 51.
• You must know the network address of the private (trusted) networks behind your Firebox X
Edge e-Series and of the network behind the other VPN device, and their subnet masks.
Note
The private IP addresses of the computers behind your Firebox X Edge cannot be the same as the IP
addresses of the computers on the other side of the VPN tunnel. If your trusted network uses the same
IP addresses as the office to which it will create a VPN tunnel, then your network or the other network
must change their IP address arrangement to prevent IP address conflicts.
Managed VPN
You can configure a VPN tunnel on the Firebox® X Edge e-Series with two procedures: Managed VPN
and Manual VPN. For information on creating a manual VPN tunnel, see “Manual VPN: Setting Up Man-
ual VPN Tunnels” on page 137.
The WatchGuard® Management Server (previously known as the DVCP Server) uses DVCP to keep the
VPN tunnel configuration. DVCP (Dynamic VPN Configuration Protocol) is the WatchGuard protocol that
you can use to create IPSec tunnels easily. We use the name Managed VPN because the Management
Server manages the VPN tunnel and sends the VPN configuration to your Firebox X Edge. An Edge
administrator must type only a small quantity of information into the Edge configuration pages.
You must have WatchGuard System Manager and a Firebox III, Firebox X Core, or Firebox X Peak to have
a Management Server. When your Firebox X Edge gets its VPN configuration from a Management
- WatchGuard 1
- Notice to Users 2
- WatchGuard Firebox Software 2
- End-User License Agreement 2
- User Guide iii 3
- Firmware Version: 8.0 5
- Part Number: 1776-0000 5
- Guide Version: 8.0 5
- Contents 7
- User Guide ix 9
- User Guide xi 11
- User Guide xiii 13
- User Guide xv 15
- Network Security 17
- About Networks 17
- Connecting to the Internet 18
- Protocols 18
- IP Addresses 19
- Domain Name Service (DNS) 20
- Services 20
- User Guide 5 21
- Firewalls 22
- User Guide 7 23
- 8 Firebox X Edge e-Series 24
- Installation Requirements 25
- About network addressing 26
- TCP/IP properties 27
- PPPoE settings 28
- PPPoE Setting Value 29
- Connecting the Firebox X Edge 31
- About session licenses 32
- Using the Quick Setup Wizard 34
- User Guide 19 35
- User Guide 21 37
- 1 Start your web browser 38
- Using the navigation bar 39
- Configuration Overview 40
- Network page 41
- Firebox Users page 42
- Administration page 42
- Firewall page 43
- Logging page 44
- WebBlocker page 45
- VPN page 45
- Wizards page 46
- WAN Failover Setup Wizard 47
- 32 Firebox X Edge e-Series 48
- Configuration and Management 49
- Restarting the Firebox 50
- Setting the System Time 51
- Changing the HTTP Server Port 53
- Activating Upgrade Options 58
- Upgrade options 59
- 44 Firebox X Edge e-Series 60
- User Guide 45 61
- If your ISP uses DHCP 62
- User Guide 47 63
- If your ISP uses PPPoE 64
- User Guide 49 65
- 50 Firebox X Edge e-Series 66
- User Guide 53 69
- Enabling the optional network 70
- Making Static Routes 73
- 6 Click Submit 74
- 7 Click Submit 76
- Using the Network page 77
- 62 Firebox X Edge e-Series 78
- Configuring BIDS 79
- 64 Firebox X Edge e-Series 80
- User Guide 65 81
- 66 Firebox X Edge e-Series 82
- None (disable wireless) 83
- Bridge to Trusted 83
- Bridge to Optional 83
- Setting the SSID 84
- Controlling SSID broadcasts 84
- Logging authentication events 84
- Setting the wireless mode 85
- Configuring encryption 86
- 5 Click Add 88
- Enabling guest services 89
- Setting password protection 89
- User Guide 75 91
- 76 Firebox X Edge e-Series 92
- Configuring Incoming Services 94
- 80 Firebox X Edge e-Series 96
- Configuring Outgoing Services 99
- Configuring Firewall Settings 100
- 84 Firebox X Edge e-Series 100
- User Guide 85 101
- 8 Click Add 102
- User Guide 87 103
- 88 Firebox X Edge e-Series 104
- Blocking External Sites 105
- Configuring Firewall Options 105
- Responding to ping requests 106
- Log denied spoofed traffic 107
- 5 Click Submit 108
- Managing Network Traffic 109
- Traffic Categories 110
- Configuring Traffic Control 110
- Enable traffic control 111
- Add a traffic control filter 112
- Working with Firewall NAT 113
- NAT behavior 114
- Secondary IP addresses 114
- Enable 1-to-1 NAT 115
- Add a 1-to-1 NAT entry 115
- Remove a 1-to-1 NAT entry 117
- 102 Firebox X Edge e-Series 118
- Configuring Logging 119
- Logging to a Syslog Host 121
- 106 Firebox X Edge e-Series 122
- Managing Users and Groups 123
- Active Sessions 124
- Stopping a session 124
- Local User Accounts 125
- About User Licenses 126
- About User Authentication 126
- Authenticating to the Edge 128
- MyCompany\jsmith 129
- Enabling MUVPN for a user 131
- The Administrator account 131
- 116 Firebox X Edge e-Series 132
- Adding a group 134
- User Guide 119 135
- LDAP Authentication and MUVPN 136
- Configuring WebBlocker 137
- Creating WebBlocker Profiles 139
- WebBlocker Categories 140
- User Guide 125 141
- 126 Firebox X Edge e-Series 142
- User Guide 127 143
- 128 Firebox X Edge e-Series 144
- User Guide 129 145
- 130 Firebox X Edge e-Series 146
- Blocking Additional Web Sites 148
- Bypassing WebBlocker 149
- 3 Click Add 150
- 4 Click Submit 150
- Configuring Virtual Private 151
- Networks 151
- Managed VPN 152
- What you need for Manual VPN 153
- Item Description Assigned 154
- Phase 1 settings 155
- Phase 2 settings 157
- VPN Keep Alive 158
- Viewing VPN Statistics 159
- Frequently Asked Questions 159
- 144 Firebox X Edge e-Series 160
- Configuring the MUVPN Client 161
- Disabled 162
- Preferred 162
- Get the user’s .wgx file 164
- WINS and DNS servers 165
- Windows NT setup 166
- Windows 2000 setup 167
- Windows XP setup 168
- Installing the MUVPN client 170
- Uninstalling the MUVPN client 171
- Connecting the MUVPN client 172
- The MUVPN client icon 172
- Using Log Viewer 174
- Using Connection Monitor 174
- User Guide 159 175
- Shutting down ZoneAlarm 176
- Uninstalling ZoneAlarm 176
- User Guide 161 177
- 162 Firebox X Edge e-Series 178
- “User Name.” 178
- Troubleshooting Tips 179
- 164 Firebox X Edge e-Series 180
- Package Contents 181
- Specifications 182
- Hardware Description 183
- Rear view 184
- Side panels 184
- AC Power Adapter 185
- Antenna directional gain 186
- Signal attenuation 186
- Channel data rate 186
- Legal Notifications 187
- 172 Firebox X Edge e-Series 188
- OpenLDAP 189
- 174 Firebox X Edge e-Series 190
- User Guide 175 191
- 176 Firebox X Edge e-Series 192
- User Guide 177 193
- 178 Firebox X Edge e-Series 194
- User Guide 179 195
- 180 Firebox X Edge e-Series 196
- User Guide 181 197
- 182 Firebox X Edge e-Series 198
- User Guide 183 199
- OpenNTPD 200
- GNU Public License (GPL) 201
- 186 Firebox X Edge e-Series 202
- User Guide 187 203
- 188 Firebox X Edge e-Series 204
- User Guide 189 205
- 190 Firebox X Edge e-Series 206
- Traceroute 207
- 192 Firebox X Edge e-Series 208
- User Guide 193 209
- 194 Firebox X Edge e-Series 210
- User Guide 195 211
- 196 Firebox X Edge e-Series 212
- Certifications and Notices 213
- 198 Firebox X Edge e-Series 214
- CE Notice 215
- Industry Canada 215
- CANADA RSS-210 215
- Class A Korean Notice 216
- VCCI Notice Class A ITE 216
- Taiwanese Class A Notice 216
- Taiwanese Wireless Notice 216
- Declaration of Conformity 217
- Limited Hardware Warranty 217
- 202 Firebox X Edge e-Series 218
- User Guide 203 219
- 204 Firebox X Edge e-Series 220
- Numerics 221
Verwandte Produkte und Handbücher für Vernetzung Watchguard Firebox X5-W
Vernetzung Watchguard V10.0 Betriebsanweisung
(38 Seiten)
(38 Seiten)
Vernetzung Watchguard V10.0 Betriebsanweisung
(25 Seiten)
(25 Seiten)
Vernetzung Watchguard V10 Betriebsanweisung
(14 Seiten)
(14 Seiten)
Vernetzung Watchguard V10.0 Betriebsanweisung
(322 Seiten)
(322 Seiten)
Vernetzung Watchguard V10.0 Spezifikationen
(23 Seiten)
(23 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.079 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern