beautypg.com
Manuals
Brands
Watchguard Manuals
Gateway
SSL 500
Watchguard SSL 500 Manuals
Manuals and User Guides for Watchguard SSL 500. We have
4
Watchguard SSL 500 manuals available for free PDF download: User Manual, Hardware Manual, Setup Manual, Quick Reference Manual
Watchguard SSL 500 User Manual (198 pages)
VPN Gateway
Brand:
Watchguard
| Category:
Gateway
| Size: 2.12 MB
Table of Contents
Table of Contents
3
CHAPTER 1 Getting Started with Firebox SSL VPN Gateway
11
Audience
11
Operating System Requirements
11
Document Conventions
12
Livesecurity Service Solutions
12
Livesecurity Service Broadcasts
13
Activating Livesecurity Service
14
Livesecurity Service Self Help Tools
14
Watchguard Users Forum
15
Online Help
16
Product Documentation
16
Technical Support
16
Livesecurity Service Technical Support
16
Livesecurity Gold
17
Firebox Installation Service
17
VPN Installation Service
17
Training and Certification
17
CHAPTER 2 Introduction to Firebox SSL VPN Gateway
19
Overview
19
New Features
21
Authentication and One-Time Passwords
21
New Versions of the Secure Access Client
21
Configurable Symmetric Encryption Ciphers
21
Automatic Detection of Proxy Server Settings
21
Secure Access Client Connections
22
Automatic Port Redirection
22
Disable Desktop Sharing
22
Additional Control over Secure Access Client Connections
22
Disable Kiosk Mode
22
Specify Multiple Ports and Port Ranges for Network Resources
22
Voice over IP Softphone Support
22
Editable HOSTS File
22
NTLM Authentication and Authorization Support
23
Added Challenge-Response to RADIUS User Authentication
23
Safeword Premieraccess Changed to Support Standards-Based RADIUS Token User Authentication
23
Updated Serial Console Menu
23
Features
23
Administration Tool
23
Firebox SSL VPN Gateway Settings
24
Feature Summary
26
The User Experience
26
Deployment and Administration
27
Planning Your Deployment
28
Deploying the Firebox SSL VPN Gateway in the Network DMZ
28
Deploying the Firebox SSL VPN Gateway in a Secure Network
28
Planning for Security with the Firebox SSL VPN Gateway
29
Configuring Secure Certificate Management
29
Authentication Support
29
Deploying Additional Appliances for Load Balancing and Failover
30
Installing the Firebox SSL VPN Gateway for the First Time
30
Getting Ready to Install the Firebox SSL VPN Gateway
30
Setting up the Firebox SSL VPN Gateway Hardware
31
Configuring TCP/IP Settings for the Firebox SSL VPN Gateway
31
Redirecting Connections on Port 80 to a Secure Port
34
Using the Firebox SSL VPN Gateway
34
The Firebox SSL VPN Gateway Operates as Follows
34
Starting the Secure Access Client
35
Enabling Single Sign-On Operation for the Secure Access Client
35
Establishing the Secure Tunnel
36
Tunneling Destination Private Address Traffic over SSL or TLS
36
Operation through Firewalls and Proxies
36
Terminating the Secure Tunnel and Returning Packets to the Client
37
Using Kiosk Mode
38
Connecting to a Server Load Balancer
38
CHAPTER 3 Configuring Basic Settings
41
Firebox SSL VPN Gateway Administration Desktop
42
To Open the Administration Portal and Administrative Desktop
42
Using the Administration Portal
42
Downloads Tab
42
Admin Users Tab
43
Logging Tab
43
Maintenance Tab
43
Using the Serial Console
43
To Open the Serial Console
44
Using the Administration Tool
44
To Download and Install the Administration Tool
44
Publishing Settings to Multiple Firebox SSL VPN Gateways
45
To Publish Firebox SSL VPN Gateway Settings
45
Product Activation and Licensing
45
Upgrading the Tunnel and Tunnel Upgrade License
45
Upgrading the Livesecurity Renewal and Tunnel Renewal License
46
Managing Licenses
46
To Manage Licenses on the Firebox SSL VPN Gateway
46
To Install a License File
47
Information about Your Licenses
47
Testing Your License Installation
47
Blocking External Access to the Administration Portal
48
To Block External Access to the Administration Portal
48
Using Portal Pages
48
Using the Default Portal Page
48
Downloading and Working with Portal Page Templates
49
To Download the Portal Page Templates to Your Local Computer
50
To Work with the Templates for Windows and Linux Users
50
Using the Activex Control
50
Installing Custom Portal Files on the Firebox SSL VPN Gateway
50
Enabling Portal Page Authentication
51
To Enable Portal Page Authentication
51
Linking to Clients from Your Web Site
51
To Include Links to the Firebox SSL Secure Access Client and Kiosk Mode on Your Web Site
51
Multiple Log on Options Using the Portal Page
52
Pre-Authentication Policy Portal Page
52
Double-Source Authentication Portal Page
53
Connecting Using a Web Address
53
Connecting Using Secure Access Client
53
Saving and Restoring the Configuration
54
To Save the Firebox SSL VPN Gateway Configuration
54
To Restore a Saved Configuration
54
Upgrading the Firebox SSL VPN Gateway Software
54
To Upgrade the Firebox SSL VPN Gateway
54
Restarting the Firebox SSL VPN Gateway
55
To Restart the Firebox SSL VPN Gateway
55
Shutting down the Firebox SSL VPN Gateway
55
To Shut down the Firebox SSL VPN Gateway
55
Firebox SSL VPN Gateway System Date and Time
55
To Change the System Date and Time
56
Network Time Protocol
56
Allowing ICMP Traffic
56
To Enable ICMP Traffic
56
CHAPTER 4 Configuring Firebox SSL VPN Gateway Network Connections
57
Configuring Network Information
57
General Networking
58
Name Service Providers
60
To Enable Split DNS
60
To Edit the HOSTS File
60
Dynamic and Static Routing
61
Configuring Network Routing
61
Configuring Dynamic Routing
62
Enabling RIP Authentication for Dynamic Routing
62
Changing from Dynamic Routing to Static Routing
63
Configuring a Static Route
63
Static Route Example
64
Configuring Firebox SSL VPN Gateway Failover
65
To Specify Firebox SSL VPN Gateway Failover
65
Configuring Internal Failover
65
Controlling Network Access
66
Configuring Network Access
66
Specifying Accessible Networks
67
Enabling Split Tunneling
67
To Enable Split Tunneling
68
Configuring User Groups
68
Denying Access to Groups Without an ACL
68
To Deny Access to User Groups Without an ACL
69
Improving Voice over IP Connections
69
Enabling Improving Voice over IP Connections
69
To Improve Latency for UDP Traffic
70
CHAPTER 5 Configuring Authentication and Authorization
71
Configuring Authentication and Authorization
71
Configuring Authentication Without Authorization
73
The Default Realm
73
Using a Local User List for Authentication
73
Configuring Local Users
74
Adding Users to Multiple Groups
74
Changing Password for Users
74
Using LDAP Authorization with Local Authentication
75
Changing the Authentication Type of the Default Realm
75
Configuring the Default Realm
75
Creating Additional Realms
76
Removing Realms
77
Using Safeword for Authentication
77
Configuring Secure Computing Safeword Authentication
77
Configuring Safeword Settings on the Access Gateway
77
To Disable Firebox SSL VPN Gateway Authentication
78
Safeword Premieraccess Authorization
78
Using Safeword for Citrix or Safeword Remoteaccess for Authentication
78
To Configure the IAS RADIUS Realm
79
Using RADIUS Servers for Authentication and Authorization
79
To Configure Microsoft Internet Authentication Service for Windows 2000 Server
80
To Specify RADIUS Server Authentication
82
To Configure RADIUS Authorization
82
Choosing RADIUS Authentication Protocols
82
Using LDAP Servers for Authentication and Authorization
83
LDAP Authentication
83
To Configure LDAP Authentication
84
LDAP Authorization
85
Group Memberships from Group Objects Working Evaluations
86
Group Memberships from Group Objects Non-Working Evaluations
86
LDAP Authorization Group Attribute Fields
86
To Configure LDAP Authentication
86
To Configure LDAP Authorization
87
Using Certificates for Secure LDAP Connections
88
Determining Attributes in Your LDAP Directory
88
Using RSA Securid for Authentication
89
To Generate a Sdconf.rec File for the Firebox SSL VPN Gateway
90
Enable RSA Securid Authentication for the Firebox SSL VPN Gateway
91
Configuring RSA Settings for a Cluster
92
Resetting the Node Secret
92
Configuring Gemalto Protiva Authentication
92
Configuring NTLM Authentication and Authorization
93
Configuring NTLM Authorization
94
Configuring Authentication to Use One-Time Passwords
94
Configuring Double-Source Authentication
95
To Create and Configure a Double-Source Authentication Realm
95
Changing Password Labels
96
CHAPTER 6 Adding and Configuring Local Users and User Groups
97
Adding Local Users
97
To Create a User on the Firebox SSL VPN Gateway
97
To Delete a User from the Firebox SSL VPN Gateway
98
User Group Overview
98
Creating User Groups
99
To Create a Local User Group
99
To Remove a User Group
99
Configuring Properties for a User Group
100
Default Group Properties
100
Forcing Users to Log on Again
100
Configuring Secure Access Client for Single Sign-On
101
Enabling Domain Logon Scripts
101
Enabling Session Time-Out
102
Configuring Web Session Time-Outs
103
Disabling Desktop Sharing
103
Setting Application Options
103
Enabling Split DNS
104
Enabling IP Pooling
104
Choosing a Portal Page for a Group
105
Client Certificate Criteria Configuration
105
Global Policies
106
Configuring Resources for a User Group
106
Adding Users to Multiple Groups
108
Allowing and Denying Network Resources and Application Policies
108
Defining Network Resources
109
Allowing and Denying Network Resources and Application Policies
110
Application Policies
111
Configuring File Share Resources
112
Configuring Kiosk Mode
113
End Point Resources and Policies
114
Configuring an End Point Policy for a Group
115
Setting the Priority of Groups
116
Configuring Pre-Authentication Policies
117
CHAPTER 7 Creating and Installing Secure Certificates
119
Generating a Secure Certificate for the Firebox SSL VPN Gateway
119
Digital Certificates and Firebox SSL VPN Gateway Operation
120
Overview of the Certificate Signing Request
120
Password-Protected Private Keys
120
Creating a Certificate Signing Request
121
Installing a Certificate and Private Key from a Windows Computer
122
Installing Root Certificates on the Firebox SSL VPN Gateway
122
Installing Multiple Root Certificates
123
Creating Root Certificates Using a Command Prompt
123
Resetting the Certificate to the Default Setting
123
Client Certificates
124
To Require Client Certificates
124
Installing Root Certificates
125
Obtaining a Root Certificate from a Certificateauthority
125
Installing Root Certificates on a Client Device
125
Selecting an Encryption Type for Client Connections
125
Requiring Certificates from Internal Connections
126
To Require Server Certificates for Internal Client Connections
126
Wildcard Certificates
126
CHAPTER 8 Working with Client Connections
127
System Requirements
127
Operating Systems
127
Web Browsers
127
Using the Access Portal
128
To Connect Using the Default Portal Page
128
Connecting from a Private Computer
129
Tunneling Private Network Traffic over Secure Connections
130
Operation through Firewalls and Proxies
131
Terminating the Secure Tunnel and Returning Packets to the Client
131
Activex Helper
132
Using the Secure Access Client Window
132
Configuring Proxy Servers for the Secure Access Client
135
Configuring Secure Access Client to Work with Non-Administrative Users
136
Connecting from a Public Computer
136
Connections Using Kiosk Mode
136
Creating a Kiosk Mode Resource
137
Working with File Share Resources
138
Client Applications
139
To Enable Client Applications
139
Firefox Web Browser
140
Remote Desktop Client
140
SSH Client
140
Telnet 3270 Emulator Client
141
VNC Client
141
Gaim Instant Messenging
141
Supporting Secure Access Client
142
Managing Client Connections
143
Connection Handling
143
Closing a Connection to a Resource
144
Disabling and Enabling a User
144
Configuring Authentication Requirements after Network Interruption
144
APPENDIX A Firebox SSL VPN Gateway Monitoring and Troubleshooting
147
Viewing and Downloading System Message Logs
147
To View and Filter the System Log
147
Forwarding System Messages to a Syslog Server
148
To Forward Firebox SSL VPN Gateway System Messages to a Syslog Server
148
Viewing the W3C-Formatted Request Log
148
Enabling and Viewing SNMP Logs
149
To Enable Logging of SNMP Messages
149
Multi Router Traffic Grapher Example
149
Viewing System Statistics
150
Monitoring Firebox SSL VPN Gateway Operations
150
To Open the Firebox SSL VPN Gateway Administration Desktop
151
Recovering from a Failure of the Firebox SSL VPN Gateway
151
Reinstalling V 4.9 Application Software
152
Backing up Your Configuration Settings
152
Upgrading to SSL V 5.0
152
Upgrading to SSL V 5.5
152
Launching the V 5.5 Administration Tool
153
Troubleshooting
153
Troubleshooting the Web Interface
153
Other Issues
154
APPENDIX B Using Firewalls with Firebox SSL VPN Gateway
159
Blackice PC Protection
160
Mcafee Personal Firewall Plus
160
Norton Personal Firewall
161
Sygate Personal Firewall (Free and Pro Versions)
161
Tiny Personal Firewall
161
Zonealarm Pro
162
APPENDIX C Installing Windows Certificates
163
To Install Cygwin
163
Unencrypting the Private Key
164
To Unencrypt the Private Key
164
Converting to a PEM-Formatted Certificate
165
To Convert the Certificate from PKCS7 to PEM Format
165
Combining the Private Key with the Signed Certificate
165
To Combine the Private Key with the Signed Certificate
166
Generating Trusted Certificates for Multiple Levels
166
To Generate Trusted Certificates for Multiple Levels
166
APPENDIX D Examples of Configuring Network Access
169
Scenario 1: Configuring LDAP Authentication and Authorization
170
Preparing for the LDAP Authentication and Authorization Configuration
170
Configuring the Firebox SSL VPN Gateway to Support Access to the Internal Network Resources
173
Scenario 2: Creating Guest Accounts Using the Local Users List
179
Creating a Guest User Authentication Realm
180
Creating Local Users
181
Creating and Assigning a Network Resource to the Default User Group
181
Scenario 3: Configuring Local Authorization for Local Users
182
APPENDIX E Legal and Copyright Information
183
Watchguard SSL 500 Hardware Manual (31 pages)
Watchguard SSL 1000 Gateway: Hardware Guide
Brand:
Watchguard
| Category:
Gateway
| Size: 1.51 MB
Table of Contents
Notice to Users
2
Limited Hardware Warranty
2
Declaration of Conformity
16
FCC Certification
17
Industry Canada
17
VCCI Notice Class a ITE
18
People's Republic of China Electronic Industry Standard
19
Rohs Statement
19
WEEE Statement
20
Hardware Guide
21
Package Contents
22
Hardware Specifications
22
Interface Specifications
23
Environmental Requirements
23
Hardware Description
24
Front View
24
Rear View
26
Watchguard SSL 500 Setup Manual (6 pages)
VPN Gateway
Brand:
Watchguard
| Category:
Gateway
| Size: 0.49 MB
Watchguard SSL 500 Quick Reference Manual (2 pages)
Brand:
Watchguard
| Category:
Network Router
| Size: 0.16 MB
Related Products
Watchguard SSL 1000
Watchguard SSL 560
Watchguard SOHO SOHO and SOHO | tc
Watchguard SOHO
Watchguard Firebox SOHO 6.1
Watchguard Firebox SOHO 6 Wireless
Watchguard SOHO tc
Watchguard SOHO 2.3
Watchguard SL4AE24
Watchguard Firebox 1000
Watchguard Categories
Firewall
Wireless Access Point
Security System
Gateway
Network Router
More Watchguard Manuals