Guia De Referênciaíndice analíticoContents5CHAPTER 1 Internet Protocol Reference13Internet Protocol Header13IP header number list14Internet Protocol Options18Transfer Protocols19UDP19TCP20ICMP20Other protocols20Standard Ports and Random Ports21CHAPTER 2 MIME Content Types23CHAPTER 3 Services and Ports39Ports Used by WatchGuard Products40Ports used by Microsoft Products41Well-Known Services List42CHAPTER 4 Types of Services51Packet Filter Services51Any51AOL52archie52auth (ident)53Citrix ICA (WinFrame)54Clarent-gateway54Clarent-command55CU-SeeMe56DHCP-Server/Client56DNS57Filtered-HTTP57Filtered-SMTP58finger58Gopher59HTTPS59IMAP59LDAP60Lotus Notes60NNTP61NTP62Outgoing Services62pcAnywhere62ping63POP2 and POP363PPTP64RADIUS64RIP65SMB (Windows Networking)65SNMP67SNMP-Trap67SQL*Net67Sybase SQL-Server68ssh68syslog69TACACS70TACACS+70telnet71TFTP71Timbuktu72Time72traceroute72WAIS73WatchGuard73WatchGuard Encrypted Connections74WatchGuard Logging74WGAgent74whois75Proxied Services75DCE-RPC75FTP76H32377HTTP77Proxied-HTTP78RTSP79SMTP79CHAPTER 5 Common Log Messages81CHAPTER 6 Resources93Publishers93Books94Non-Fiction94Fiction95White Papers & Requests for Comments95Mailing Lists96Web Sites96Newsgroups98CHAPTER 7 Out-of-Band Initialization Strings99PPP Initialization Strings99Modem Initialization Strings105CHAPTER 8 Firebox Read-Only System Area109Read-Only System Area109Enhanced System Mode110Initializing a Firebox using TCP/IP110Initializing a Firebox Using a Serial Cable111Booting from the system area112Working with a Firebox booted from the read-only system area112Troubleshooting113Initializing a Firebox Using a Modem114Initializing using Remote Provisioning114Managing Flash Disk Memory116Making a backup of the current configuration116Restoring a backup configuration117CHAPTER 9 Glossary119CHAPTER 10 Field Definitions165System Manager165Connect to Firebox dialog box165Enter Read/Write Passphrase dialog box166Polling dialog box166Syslog Color dialog box166Flash Disk Management Tool167Enter Encryption Key dialog box167Flash Disk Management Tool dialog box167Log Utility168Copy or Merge Logs dialog box168LogViewer169Find Keyphrase dialog box169Preferences dialog box170Search Fields dialog box170Policy Manager1721-to-1 Mapping dialog box172Add Address dialog box172Add Dynamic NAT dialog box173Add Exception dialog box173Add External IP dialog box174Add Firebox Group dialog box174Add IP Address dialog box174Add Member dialog box175Add Port dialog box175Add Route dialog box176Add Service dialog box176Add Static NAT dialog box176Advanced DVCP Policy Configuration dialog box177Advanced Dynamic NAT dialog box177Advanced Export File Preferences dialog box178Advanced Mobile User VPN Policy Configuration dialog box178Aliases dialog box180Authentication Servers dialog box180Basic DVCP Server Configuration dialog box184Blocked Ports dialog box184Blocked Sites dialog box185Blocked Sites Exceptions dialog box186Certificate Authority Configuration186Configure Gateways dialog box187Configure IPSec Tunnels dialog box187Configure Tunnels dialog box188Configure Tunnel dialog box188Connect to Firebox dialog box189Default Gateway dialog box189Default Packet Handling dialog box189DHCP Server dialog box191DHCP Subnet Properties dialog box192DVCP Client Setup dialog box193DVCP Client Wizard194DVCP Server Properties dialog box195DVCP Server Properties dialog box196Dynamic NAT dialog box197Edit Routing Policy dialog box198Enter Firebox Access Passphrases dialog box199Enter Tunnel Name dialog box199Filter Authentication dialog box200Firebox Flash Disk dialog box201Firebox Name dialog box202FTP Proxy dialog box202Generate Key dialog box203High Availability dialog box203Host Alias dialog box204HTTP Proxy dialog box204Incoming dialog box212Incoming SMTP Proxy dialog box213IPSec Configuration dialog box216IPSec Logging dialog box218Logging and Notification dialog box218Logging Setup dialog box219Manual Security dialog box220Mobile User Client - Select New Passphrase dialog box220Mobile User VPN Wizard221Mobile User VPN dialog box224NAT Setup dialog box224Network Configuration dialog box226New MIME Type dialog box231New Service dialog box231Outgoing SMTP Proxy dialog box232PPTP Logging dialog box234Remote Gateway dialog box234Remote User Setup dialog box235Select Firebox Time Zone dialog box237Select Gateway dialog box237Select MIME Type dialog box237Services dialog box237Service Properties dialog box238Set Policy Ordering dialog box240Setup Firebox User dialog box240Setup New User dialog box241Setup Routes dialog box241Slash Notation dialog box242SpamScreen dialog box242WatchGuard Find dialog box243WatchGuard VPN dialog box243Firebox Monitors245Add Displayed Service dialog box245Remove Site dialog box245View Properties dialog box245Historical Reports246Add Report Filter dialog box246Historical Reports dialog box248Report Properties dialog box249HostWatch252Filter Properties dialog box252Properties dialog box254WatchGuard Security Event Processor255Set Log Encryption Key dialog box258Index259Tamanho: 1 MBPáginas: 264Language: EnglishAbrir o manual
Manual Do Equipamentoíndice analíticoFirebox®X Edge™ e-Series Hardware Guide1Copyright and Patent Information2Notice to Users2Limited Hardware Warranty2Declaration of Conformity5FCC Certification6CE Notice6Industry Canada6VCCI Notice Class A ITE7RoHS Statement7WEEE Statement8Licensing8GNU General Public License (GPL)9Hardware Guide17Package Contents17Specifications19Hardware Description20Front panel20Rear view22Side panels22AC power adapter23Restore Factory Default Settings24About the Firebox X Edge e-Series Wireless25Antenna directional gain25Signal attenuation26Channel data rate26Tamanho: 400 KBPáginas: 26Language: EnglishAbrir o manual
Manual Do Equipamentoíndice analíticoTable of Contents3Limited Hardware Warranty5FCC Certification8CE Notice9Industry Canada9Taiwanese Notice10VCCI Notice Class A ITE10Installing the Firebox III11Hardware requirements11Locating a Firebox within a network12Connecting a Firebox12Running the QuickSetup Wizard15Post-installation steps16Hardware Description16Firebox III front view (all models except Model 700)17Firebox III front view (Model 700)18Firebox III rear view (all models except Model 700)20Firebox III rear view (Model 700)21Physical specifications (All models except Model 700)23Physical specifications (Model 700)23Cross-over cabling23Firebox System Area24Read-only system area25Enhanced System Mode25Managing flash disk memory25Index29Tamanho: 1 MBPáginas: 30Language: EnglishAbrir o manual
Guia Do Utilizadoríndice analíticoContents13CHAPTER 1 Introduction23Welcome to WatchGuard®23WatchGuard Firebox System Components24WatchGuard Firebox24Firebox System Manager24WatchGuard security applications25WatchGuard LiveSecurity® Service25Minimum Requirements25Software requirements25Web browser requirements26Hardware requirements26WatchGuard Options27VPN Manager27High Availability28Mobile User VPN28SpamScreen28BOVPN Upgrade29Obtaining WatchGuard Options29About this Guide29CHAPTER 2 Service and Support31Benefits of LiveSecurity® Service31LiveSecurity® Broadcasts32Activating the LiveSecurity® Service34LiveSecurity® Self Help Tools35WatchGuard Users Forum36WatchGuard Users Group37Online Help37Starting WatchGuard Online Help38Searching for topics38Copying the Help system to additional platforms39Online Help system requirements39Context-sensitive Help39Product Documentation40Assisted Support40LiveSecurity® Program40LiveSecurity® Gold Program41Firebox Installation Services42VPN Installation Services42Training and Certification42CHAPTER 3 Getting Started45Gathering Network Information46Selecting a Firewall Configuration Mode50Routed configuration51Drop-in configuration52Choosing a Firebox configuration54Adding secondary networks to your configuration55Dynamic IP support on the external interface57Setting Up the Management Station58Software encryption levels59Cabling the Firebox60Using a serial cable60Using TCP/IP62Running the QuickSetup Wizard62Testing the connection64Entering IP addresses65Deploying the Firebox into Your Network66What’s Next66Customizing your security policy66What to expect from LiveSecurity® Service67CHAPTER 4 Firebox Basics69What is a Firebox?69Opening a Configuration File71Opening a configuration from the Firebox72Opening a configuration from a local hard disk72Saving a Configuration File73Saving a configuration to the Firebox73Saving a configuration to the management station’s local drive75Resetting Firebox Passphrases75Setting the Firebox Model76Setting the Time Zone77Setting a Firebox Friendly Name77CHAPTER 5 Using Policy Manager to Configure Your Network79Starting a New Configuration File80Setting the Firebox Configuration Mode80Setting IP Addresses of Firebox Interfaces80Setting addresses in drop-in mode81Setting addresses in routed mode82Setting DHCP or PPPoE Support on the External Interface82Configuring DHCP or PPPoE support83Enabling static PPPoE84Configuring Drop-in Mode84Defining External IP Aliases85Adding Secondary Networks86Entering WINS and DNS Server Addresses87Configuring Out-of-Band Management88Defining a Firebox as a DHCP Server88Adding a new subnet89Modifying an existing subnet90Removing a subnet90Adding Basic Services to Policy Manager91Configuring Routes92Defining a network route92Defining a host route93CHAPTER 6 Managing and Monitoring the Firebox95Starting System Manager and Connecting to a Firebox95Viewing Basic Firebox Status96Viewing basic indicators97Firebox and VPN tunnel status98Monitoring Firebox Traffic102Setting the maximum number of log entries103Displaying entries in color103Copying messages to another application104Copying or analyzing deny messages104Performing Basic Tasks with System Manager104Running the QuickSetup Wizard105Flushing the ARP cache105Connecting to a Firebox106Changing the polling rate106Getting Help on the Web106Launching Firebox Applications107Viewing Bandwidth Usage109Viewing Number of Connections by Service110Viewing Details on Firebox Activity110Authentication list117Blocked Site list118HostWatch119HostWatch display120Connecting HostWatch to a Firebox120Replaying a log file in HostWatch121Controlling the HostWatch display121Modifying HostWatch view properties122CHAPTER 7 Configuring Network Address Translation123Dynamic NAT124Using Simple Dynamic NAT125Enabling simple dynamic NAT125Adding simple dynamic NAT entries126Reordering simple dynamic NAT entries127Specifying simple dynamic NAT exceptions127Using Service-Based Dynamic NAT128Enabling service-based dynamic NAT129Configuring service-based dynamic NAT129Configuring a Service for Incoming Static NAT130Adding external IP addresses130Setting static NAT for a service130Using 1-to-1 NAT132Proxies and NAT134CHAPTER 8 Configuring Filtered Services135Selecting Services for your Security Policy Objectives136Incoming service guidelines136Outgoing service guidelines137Adding and Configuring Services138Configurable parameters for services139Adding a service139Creating a new service142Deleting a service145Defining Service Properties146Accessing a service’s Properties dialog box147Adding service properties147Adding addresses or users to service properties148Working with wg_icons149Customizing logging and notification150Service Precedence152CHAPTER 9 Configuring Proxied Services157Protocol Anomaly Detection158Customizing Logging and Notification for Proxies159Configuring an SMTP Proxy Service159Configuring the Incoming SMTP Proxy160Enabling protocol anomaly detection for SMTP167Configuring the Outgoing SMTP Proxy169Configuring an FTP Proxy Service171Enabling protocol anomaly detection for FTP172Selecting an HTTP Service173Adding a proxy service for HTTP174Configuring a caching proxy server176Configuring the DNS Proxy Service177Adding the DNS Proxy Service178Enabling protocol anomaly detection for DNS179DNS file descriptor limit180CHAPTER 10 Creating Aliases and Implementing Authentication183Using Aliases184Adding an alias185How User Authentication Works187Authentication Server Types188Defining Firebox Users and Groups for Authentication189Configuring Windows NT Server Authentication192Configuring RADIUS Server Authentication193Configuring CRYPTOCard Server Authentication195Configuring SecurID Authentication197CHAPTER 11 Intrusion Detection and Prevention199Default Packet Handling200Blocking spoofing attacks200Blocking port space and address space attacks202Stopping IP options attacks202Stopping SYN Flood attacks203Changing SYN flood settings204Detecting Man-in-the-Middle Attacks205Blocking Sites206Blocking a site permanently207Creating exceptions to the Blocked Sites list209Changing the auto-block duration209Logging and notification for blocked sites210Blocking Ports210Avoiding problems with legitimate users213Blocking a port permanently213Auto-blocking sites that try to use blocked ports214Setting logging and notification for blocked ports214Blocking Sites Temporarily with Service Settings214Configuring a service to temporarily block sites215Viewing the Blocked Sites list215Integrating Intrusion Detection215Using the fbidsmate command-line utility217CHAPTER 12 Setting Up Logging and Notification221Developing Logging and Notification Policies222Logging policy222Notification policy223Failover Logging224WatchGuard Logging Architecture225Designating Log Hosts for a Firebox225Adding a log host226Enabling Syslog logging227Changing the log encryption key227Removing a log host228Reordering log hosts228Synchronizing log hosts228Setting up the WatchGuard Security Event Processor229Running the WSEP application on Windows NT, Windows 2000, or Windows XP229Viewing the WSEP application232Starting and stopping the WSEP232Setting the log encryption key233Setting Global Logging and Notification Preferences233Log file size and rollover frequency234Setting the interval for log rollover234Scheduling log reports235Controlling notification236Setting a Firebox friendly name for log files236Customizing Logging and Notification by Service or Option237Setting Launch Interval and Repeat Count239Setting logging and notification for a service240Setting logging and notification for default packet-handling options240Setting logging and notification for blocked sites and ports241CHAPTER 13 Reviewing and Working with Log Files243Log File Names and Locations244Viewing Files with LogViewer244Starting LogViewer and opening a log file244Setting LogViewer preferences245Searching for specific entries245Copying and exporting LogViewer data246Displaying and Hiding Fields247Working with Log Files250Consolidating logs from multiple locations251Copying log files251Forcing the rollover of log files252Saving log files to a new location252Setting log encryption keys253Sending logs to a log host at another location253CHAPTER 14 Generating Reports of Network Activity257Creating and Editing Reports258Starting a new report258Editing an existing report260Deleting a report260Viewing the reports list260Specifying a Report Time Span260Specifying Report Sections261Consolidating Report Sections261Setting Report Properties262Exporting Reports263Exporting reports to HTML format263Exporting a report to WebTrends for Firewalls and VPNs264Exporting a report to a text file265Using Report Filters265Creating a new report filter266Editing a report filter266Deleting a report filter267Applying a report filter267Scheduling and Running Reports267Scheduling a report267Manually running a report268Report Sections and Consolidated Sections268Report sections268Consolidated sections272CHAPTER 15 Controlling Web Site Access275Getting Started with WebBlocker275Installing the WebBlocker server276Downloading the database using WebBlocker Utility276Configuring the WatchGuard service icon277Add an HTTP service277Configuring the WebBlocker Service278Activating WebBlocker278Allowing WebBlocker server bypass279Configuring the WebBlocker message279Scheduling operational and non-operational hours280Setting privileges281Creating WebBlocker exceptions282Managing the WebBlocker Server284Installing Multiple WebBlocker Servers284Automating WebBlocker Database Downloads284Installing Scheduled Tasks285CHAPTER 16 Connecting with Out- of-Band Management287Connecting a Firebox with OOB Management287Enabling the Management Station288Preparing a Windows NT management station for OOB288Preparing a Windows 2000 management station for OOB288Preparing a Windows XP management station for OOB290Configuring the Firebox for OOB291Establishing an OOB Connection291APPENDIX A Troubleshooting Firebox Connectivity293Method 1: Ethernet Dongle Method294Method 2: The Flash Disk Management Utility296Method 3: Using the Reset Button - Firebox Models 500, 700, 1000, 2500, 4500298Method 4: Serial Dongle (Firebox II only)299Index301Tamanho: 3 MBPáginas: 314Language: EnglishAbrir o manual
Guia De Configuração RápidaTamanho: 2 MBPáginas: 37Languages: English, Deutsch, Español, 日本語 (にほんご)Abrir o manual
Guia De Configuração RápidaTamanho: 3 MBPáginas: 37Languages: English, Deutsch, Español, 日本語 (にほんご)Abrir o manual