WatchGuard Technologies SOHO User Manual
W atchGuard
®
SOHO User Guide
SOHO and SOHO|tc 2.3
WatchGuard SOHO and SOHO | tc
Registration and identifi cation informat ion
Please use this area to enter your SOHO information.
SOHO Serial Number:
LiveSecurity User ID:
Password:
The SOHO serial number is located on the bottom of the SOHO.
You create a LiveSecurity user ID and pass word when you register
your WatchGuard SOHO or SOHO|tc. To register, after you install
your SOHO, open your browser to 192.168.111.1/login.htm and
click Click here to register your SOHO.
Please keep this information in a secure place.
Copyright and patent information
Copyright © 1999-2001 WatchGuard Technologies, Inc. All rights reserved.
WatchGuard and LiveSecurity are either registered trademarks or trademarks of WatchGuard
T echnologies, Inc. in the United States and other countries. Firebox is a trademark of WatchGuard
T echnologies, Inc.
All other trademarks and trade names are the property of their respective owners.
Cyber Patrol is a registered trademark of Learning Company Properties, Inc.
DocVer: B-2.3-Us er-2
ii
WatchGuard® SOHO End-User License Agreement
IMPORTANT - READ CAREFULLY BEFORE ACCESSING WATCHGUARD SOFTWARE
This WatchGuard SOHO End-User License Agreement (“EULA”) is a legal agreement between
you (either an individual or a singl e en tit y) and WatchG uard Technologies, Inc.
(“WATCHGUARD”) for the WATCHGUARD SOHO software product you have purchased, which
includes computer software and any separately installed components, and any updates or
modifications thereto, and whic h m ay include associated media, printed materials, and on-l in e or
electronic documentation (the “SOFTWARE PRODUCT”). WATCHGUARD is willing to license
the SOFTWARE PRODUCT to you only on the condition that you accept all of the terms contained
in this EULA. Please read this EULA carefully. By installing or using the SOFTWARE
PRODUCT, you agree to be bound by the terms of this EULA. If you do not agree to the terms of
this EULA, WATCHGUARD will not li cense the SOFTWARE PRODUCT to yo u, and you will not
have any rights in the SOFT WAR E PRODUCT. In that case, promptly return the SOF T WAR E
PRODUCT, along with proof of payment, to the authorized dealer fro m whom you obtained the
SOFTWARE PRODU CT for a full r e fund of the price you paid.
1. OWNERSHIP AND LICENSE. The SOFTWARE PRODUCT is protected by copyright laws
and international copyright treaties, as well as other intellectual property laws and treaties. This
is a license agreement and NOT an agreement for sale. All title and copyrights in and to the
SOFTWARE PRODUCT (including but not limited to any images, photographs, animations, video,
audio, music, text, and applets incorporated into the SOFTWARE PRODUCT), the accompanying
printed materials, and any copies of the SOFTWARE PRODUCT are owned by WATCHGUARD or
its suppliers. Your rights to use the SOFTWARE PRODUCT are as specified in this EULA, and
WATCHGUARD retains all rights not expressly granted to you in this EULA. Nothing in this
EULA constitutes a waive r of our rig hts unde r U.S. co py righ t law or any oth er law or tr eat y.
2. PERMITTED USES. You are granted the following rights to the SOFTWARE PRODUCT:
(A) Yo u may install and use the SOFTWARE PRODUCT on any computer with an associated
connection to the SOHO hardware product (the “Hardware”); (B) You may install and use the
SOFTWARE PRODUCT on more tha n one computer at once without licensing an additional c opy
of the SOFTWA RE PRO DUC T f or each a ddi tio na l comp ute r o n wh ic h yo u wan t to us e i t, pro vi ded
each computer on which you in s tall the SOFTWARE PRODUCT has an as sociated connection to
the Hardware; and (C) You may make a single copy of the SOFTWARE PRODUCT for backup or
archival purposes only.
3. PROHIBITED USES. You may not, without express written permission from
WATCHGUARD: (A) Reverse engineer , disassemble or decompile the SOFTWARE PRODUCT; (B)
Use, copy, modify, mer ge or transfer copies of the SOFTWARE PRODUCT or pr inted material s
except as provided in this EULA; (C) Use any backup or archi val copy of the SOFTWARE
PRODUCT (or allow someone else to use such a copy) for any purpose other than to replace the
original copy in t he event it is destroye d or becomes defective; ( D ) Sublicense, lend, le a s e or re n t
the SOFTWARE PRODUCT; or (E) Transfer this license to another party unless (i) the transfer is
permanent, (ii) the third part y rec ip ient agre es to th e terms of this EULA, and (iii) you do not
retain any copies of the SO FTWARE PRODUCT.
User Guide 2.3 iii
4. LIMITED WARRANTY. WA TCHGU ARD makes the following limited warranties for
a period of ninety (90) days fr om the date you obt ained the SOFTWARE PRODUCT from
WATCHGUARD or an authorized dealer; (A) Media. The disks and documentation will be free
from defects in materials and work m anship und er normal use. If the disks or documentation fail
to conform to this warranty, you may, as your sole and exclusive remedy , obtain a replacement free
of charge if you return the defective disk or documentation to WATCHGUARD or the authorized
dealer from whom you obtained the SOFTWARE PRODUCT with a dated proof of purchase; and
(B) SOFTWARE PRODUCT. The SOFTWARE PRODUCT will materially conform to the
documentation that accompanies it. If the SOFTWARE PRODUCT fails to operate in accordance
with this war r anty, you may, as your sole and exclusive remedy, return all of the SOFTWARE
PRODUCT and the documentation to the authorized dealer from whom you obtained it, along with
a dated proof of purchase, specif yi ng the probl e ms, and yo ur authorized dealer will provide you
with a new version of the SOFTWARE PRODUCT or a full refund at its election.
DISCLAIMER AND RELEASE. THE WARRANTIES, O BLIGATIONS AND LIABILITI E S O F
WATCHGUARD, AND YOUR REMEDIES, SET FORTH IN PARAGRAPHS 4, 4(A) AND 4(B)
ABOVE ARE EXCLUSIVE AND IN SUBST I TUTI O N FO R, AND YOU HEREBY WAIVE,
DISCLAIM AND RELEASE ANY AND ALL OTHER WARRANTIES, OBLIGATIONS AND
LIABILITIES OF WATCHGUARD AND ITS LICENSORS AND ALL OTHER RIGHTS, CLAIMS
AND REMEDIES YOU MAY HAVE AGAINST WATCHGUARD OR ITS LICENSOR S ,
EXPRESS OR IMPLIED, ARISING BY LAW OR OTHERWISE, WITH RESPECT TO ANY
NONCONFORMANCE OR DEFECT IN THE SOFTWARE PRODUCT (INCLUDING, BUT NOT
LIMITED TO, ANY IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS FOR A
PARTICULAR PURPOSE, ANY IMPLIED WARRANTY ARISING FROM COURSE OF
PERFORMANCE , C OU R S E OF DE ALING, OR USAGE OF TRADE, ANY WARRA NTY O F
NONINFRINGEMENT, ANY WARRANTY THAT THIS SOFTWARE PRODUCT WILL MEET
YOUR REQUIREMENTS, ANY WARRANTY OF UNINTERRUPTED OR ERROR-FREE
OPERATION, ANY OBLIGATION, LIABILITY, RIGHT, CLAIM OR REMEDY IN TORT,
WHETHER OR NOT ARISING FROM THE NEGLIGENCE (WHETHER ACTIVE, PASSIVE OR
IMPUTED) OR FAULT OF WATCHGUARD OR ITS LICENSO RS AND ANY OBLIGATION,
LIABILITY, RIGHT, CLAIM OR REMEDY FOR LOSS OR DAMAGE TO, OR CAUSED BY OR
CONTRIBUTED TO BY, THE SOFTWARE PRODUCT).
LIMITATION OF LIABILITY. WATCHGUARD’S liability AND THE LIABILITY OF ITS
LICENSORS (whether in contract, tort, or otherwise; and notwithstanding any fault, negligence,
strict liability or product liability) with regard to THE SOFTWARE Product will in no event
exceed the purchase price paid by you for such Product. THIS SHALL BE TRUE EVEN IN THE
EVENT OF THE FAILURE OF AN AGREED REMEDY. IN NO EVENT WILL WATCHGUARD
OR ITS LICENSORS BE LIABLE TO YOU OR ANY THIRD PARTY, WHETHER ARISING IN
CONTRACT (INCLUDING WARRANTY), TORT (INCLUDING ACTIVE, PASSIVE OR
IMPUTED NEGLIGE N C E AN D S T RICT LIABILITY AND FAULT), FOR ANY INDIRECT,
SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES (INCLUDING WITHOUT
LIMITATION LOSS OF BUSINESS PROFITS, BUSINESS INTERRU PT I ON , OR LOSS O F
BUSINESS INFORMATION) ARISING OUT OF OR IN CONNECTION WITH THIS
WARRANTY OR THE USE OF OR INABILITY TO USE THE SOFTWARE PRODUCT, EVEN IF
WATCHGUARD AND ITS LICENSORS HAVE BEEN ADVISED OF THE POSSIBILITY OF
iv
SUCH DAMAGES. THI S SHALL BE TRUE EVEN IN THE EVENT OF THE FAILURE OF AN
AGREED REMEDY.
5. UNITED STATES GOVERNMENT REST RIC T ED RI G H TS . The enclosed SOFTWARE
PRODUCT and documentation are provided with Restricted Rights. Use, duplication or disclosure
by the U.S Government or any age ncy or instrumentality thereof is subject to rest rictions as set
forth in DFARS 227.7202-3 (Commercial Computer Software) and DFARS 252.227-7015(b)
(Technical Data-Commercial Items) -- Res tricted Rights Clause at FAR 52.227-19, as applicable.
Manufacturer is WatchGuard Technologies, Incorporated, 505 Fifth Avenue, South, Suite 500,
Seattle, WA 98104.
6. EXPORT CONTROL S . You agree not to directly or in directly transfer th e S OFTWARE
PRODUCT or documenta t io n to any cou ntry to which such transfer would be prohi bit ed by the
U.S. Export Administration Act and the regulations issued thereunder.
7. TERMINATION. This license and your right to use the SOFTWAR PRODUCT will
automatically terminate if you fail to comply with any provisions of this EULA, destroy all copies
of the SOFTWARE PRODUCT in your possession, or voluntarily retur n the SOFTWARE
PRODUCT to WATCHGUARD. Upon termination you will destroy all copies of the SOFTWARE
PRODUCT and documentation remaining in your control or possession.
8. MISCELLANEOUS PROVISIONS. This EULA will be governed by and construed in
accordance with the substantive laws of Washington excluding the 1980 United National
Convention on Contracts for the International Sale of Goods, as amended. This is the entire EULA
between us relating to the contents of this package, and supersedes any prior purchase order,
communications, advertising or representations concerning the contents of this package AND BY
USING THE SOFTWA RE P RO D UCT YOU AGREE TO THESE TERMS. No change or
modification of this EULA will be valid unless it is in writing, and is signed by WATCHGUARD.
9. CANADIAN TRANS ACTIONS. If you obtained th is SOFTWARE PRODUCT in Canada,
you agree to the following: The partie s hereto hav e expre ssly requi red that the prese nt EU LA be
drawn up in the English language. / Les parties aux pre s ent es ont expre sseme nt exige que la
presente conventions et ses Annex es soient redigee s en la lang ue an gla ise .
User Guide 2.3 v
WatchGuard® Limited Hardware Warranty
This WatchGuard Limited Hardware Warr an ty (the "Warranty") applies to the enclosed
WatchGuard hardware product (the "Hardware Product"). By using the HARDWARE Product,
you agree to the terms hereof. If you do not agree to these terms, please return this package,
along with proof of purchase, to the authorized dealer from whom you purchased the Hardware
Product for a full refund. THIS WARRANTY DOES NOT APPLY TO THE WATCHGUARD
SOFTWARE REQUIRED FOR OPERATION AND USE OF THE HARDWARE PRODU CT.
PLEASE REFER TO THE ENCLOSED WATCHGUARD END-USER LICENSE AGREEMENT
(THE “EULA”) FOR THE SOFTWARE WARRANTY AND OTHER TERMS AND CONDITIONS
ASSOCIATED WITH USE OF THE SOFTWARE. IF YOU DO NOT AGREE TO THE TERMS OF
THE EULA, PLEASE RETURN THIS PACKAGE IN ACCORDANCE WITH THIS
PARAGRAPH.
NOW, THEREFORE, WatchGua rd Technologies and you ag ree as follows:
1. Limited Warranty. WatchGuard Technologies warrants that upon delivery and for one (1)
year thereafter (as the same may be extended pursuant to Section 2 below, the "Warranty Period"):
(a) the Hardware Product will be free from material defects in materials and workmanship, and
(b) the Hardware Product, when properly installed and used for its intended purpose and in its
intended operating environment, will perform substantially in accordance with WatchGuard
Technologies applicabl e spe cific ati on s . This wa rranty does not apply to any Hardware Product
that has been: (i) altered, repaired or modified by any party other than WatchGuard Technologies;
or (ii) damaged or destroyed by accidents, power spikes or similar events or by any intentional,
reckless or negligent acts or omissions of any party. You may have additional warranties with
respect to the Hardware Product from the manufacturers of Hardware Product components.
However, you agree not to look to WatchGuard Technologies for, and hereby release WatchGuard
Technologies from any liability for, performance of, enforcement of, or damages or other relief on
account of, any such warranties or any breach thereof.
2. Remedies. If any Hardware Product does not comply with WatchGuard Technologies
warranties set forth in Section 1 abo ve , WatchGuard Technologies will, at its option, either
(a) repair the Hardware Product, or (b) replace the Hardware Product; provided, that you will be
responsible for returning the Hardware Product to the place of purchase and for all costs of
shipping and handling. As to any Hardware Produc t repa ire d or repl ac ed by WatchG uard
Technologies, the Warranty Period will end one (1) ye ar after delivery of the repaired or
replacement Hardware Product. Any Hardware Product, component, part or other item replaced
by WatchGuard Technologies becomes the property of WatchGuard Technologies. WatchGuard
Technologies shall not be responsible for return of or damage to any sof tware, firm w are,
information or data contained in, stored on, or integrat ed with any returned Hard ware Prod ucts.
3. Disclaimer and R elease. THE WARRANTIES, OBLIGATIONS AND LIABILITIES OF
WATCHGUARD TECHNOLOGIES, AND YOUR REMEDIES, SET FORTH IN PARAGRAPHS 1
AND 2 ABOVE ARE EXCLUSIVE AND IN SUBSTITUTION FOR, AND YOU HEREBY WAIVE,
DISCLAIM AND RELEASE ANY AND ALL OTHER WARRANTIES, OBLIGATIONS AND
LIABILITIES OF WATCHGUARD TECHNOLOGIES AND ALL OTHER RIGHTS, CLAIMS AND
REMEDIES YOU MAY HAVE AGAINST WATCHGUARD TECHNOLOGIES, EXPRESS OR
IMPLIED, ARISING BY LAW OR OTHERWISE, WITH RESPECT TO ANY
vi
NONCONFORMANCE OR DEFECT IN THE HARDWARE PRODUCT (INCL UDING, BUT NOT
LIMITED TO, ANY IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS FOR A
PARTICULAR PURPOSE, ANY IMPLIED WARRANTY ARISING FROM COURSE OF
PERFORMANCE , C OU R S E OF DE ALING, OR USAGE OF TRADE, ANY WARRA NTY O F
NONINFRINGEMENT, ANY WARRANTY OF UNINTERRUPTED OR ERROR-FREE
OPERATION, ANY OBLIGATION, LIABILITY, RIGHT, CLAIM OR REMEDY IN TORT,
WHETHER OR NOT ARISING FROM THE NEGLIGENCE (WHETHER ACTIVE, PASSIVE OR
IMPUTED) OR FAULT OF WATCHGUARD TECHNOLOGIES AND AN Y OBLIGATION,
LIABILITY, RIGHT, CLAIM OR REMEDY FOR LOSS OR DAMAGE TO, OR CAUSED BY OR
CONTRIBUTED TO BY, THE HARDWARE PRODUC T).
4. Limitation of Liability. WATCHGUARD TECHNOLOGIES’ liability (WHETHER
ARISING IN CONTRACT (INCLUDING WARRANTY), TORT (INCLUDING ACTIVE, PASSIVE
OR IMPUTED NEGLIGENCE AND STRICT LIABILITY AND FAULT) OR OTHER THEORY)
with regard t o an y HAR DWAR E Pr oduc t wi ll in no even t exce ed th e pu rcha se pri ce pa id by yo u fo r
such HARDWARE Product. THIS SHALL BE TRUE EVEN IN THE EVENT OF THE FAILURE
OF AN AGREED REMEDY. IN NO EVENT WILL WATCHGUARD TECHNOLOG I ES BE
LIABLE TO YOU OR ANY THIRD PARTY, WHETHER ARISING IN CONTRACT (INCLUDING
WARRANTY), TORT (INCLUDING ACTIVE, PASSIVE OR IMPUTED NEGLI GENCE AND
STRICT LIABILITY AND FAULT) OR OTHER THEORY, FOR COST OF COVER OR FOR A NY
INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES (INCLUDI N G
WITHOUT LIMITATION LOSS OF BUSINESS PROFITS, BUSINESS INTERRUPTION, OR
LOSS OF BUSINESS INFORMATION OR DATA) ARISING OUT OF OR IN CONNECTION
WITH THIS WARRANTY OR THE USE OF OR INABILITY TO USE THE HARDWDARE
PRODUCT, EVEN IF WATCHGUARD TECHNOLOGI ES HAS BEEN ADVISED OF THE
POSSIBIL ITY OF SUCH DAMAGES. THI S SHALL BE TR UE EVEN IN T H E EVENT OF THE
FAILURE OF AN AGREED REMEDY.
5. Miscellaneous Provisions. This Warranty will be governed by the laws of the state of
Washington, without reference to its choi ce o f law rules. The prov isions of the 1980 United
Nations Convention on Contracts for the International Sale of Goods, as amended, shall not apply.
If any provision of this Warranty is found to be invalid or unenforceable, then the remainder shall
have full force and effect and the invalid provision shall be modified or partially enforced to the
maximum extent perm it ted by law to effectuate the purpose of this Warranty. This is the entire
agreement between WatchGuard T echnologies and you relating to the contents of this package, and
supersedes any prior purchase order, communications, advertising or represe ntations concerning
the contents of this package AND BY USING THE HARDWARE PRODUCT YOU AGREE TO
THESE TERMS. No change or modification of this Agreement will be valid unless it is in writing,
and is signed by WatchGuard Technologies.
User Guide 2.3 vii
Welcome
Congratulations on purchasing the ideal solution for providing
secure access to the Internet–the Wa tchG uard SOHO or
WatchGuard SOHO|tc. Your new security device will give you
peace of mind when connecting to the Internet using a high-speed
cable or DSL modem, a leased line, or ISDN.
This User Guide applies to both the SOHO and SOHO|tc. The
only difference between these two devices is the ability to create
and use a Virtual Private Network (VPN). VPN can be added to
the SOHO, while the SOHO|tc already has installed VPN
capabilities.
In this guide, the name SOHO is used to refer to both the SOHO
and SOHO|tc. The most current installation and user information
is available on the Internet at:
http://bisd.watchguard.com/soho/install
Technical support is also available at:
(877) 232-3531 U.S.; End-user support
(206) 521-8375 U.S.; Authorized Reseller support
(360) 482-1083 International support
Redeeming SOHO upgrade certificates
Once you have purchased an upgrade certificate, go to the
following Web site:
http://bisd.watchguard.com/soho/upgrade
On this Web page, enter the SOHO serial number, upgrade
certificate serial number, and an upgrade key from the certificate.
Click Upgrade and reboot your SOHO. You do not need to have
registered the unit and created a login prior to redeeming the
certificate.
viii
Using this guide
This manual assumes that you are familiar with your computer’s
operating system. If you have questions about navigating in your
computer’s environment, please refer to your system user manual.
The following conventions are used throughout this guide.
Convention Indication
Bold
Bold type Denotes menu commands, dialog box options,
BoldBold
CAUTION Denotes a warning or precautionary information.
NOTE Denotes important information, a helpful tip, or
Web page options, Web page names. For
example: “On the System Information page,
select Disabled.”
additional instructions.
User Guide 2.3 ix
x
Table of Contents
CHAPTER 1 Installation ....................................................1
Before you begin ......................................................1
Performing manual installation ............ ..... ................2
Physically connecting your SOHO ............................6
CHAPTER 2 Setting Up Your SOHO Network .............11
How does a firewall work? ......................................11
Configuring your public network ............................12
Configuring your private network ...........................20
Changing the SOHO system name and password .22
Default factory settings . ..... .... ..... ..... .......................24
Troubleshooting installation and network
configuration .......................................................25
User Guide 2.3 xi
CHAPTER 3 Configuring Services for a SOHO ............33
How does information travel on the internet? ........33
Allowing incoming services .....................................35
Blocking outgoing services .....................................40
CHAPTER 4 Configuring Virtual Private Networking ..43
Why create a virtual private network? .....................43
What you will need .................................................44
Special considerations ............................................47
Frequently asked questions ....................................48
CHAPTER 5 Additional SOHO Features ......................51
SOCKS for SOHO .............................................. .....51
SOHO logging ........................................................54
Rebooting a WatchGuard SOHO ............................55
CHAPTER 6 WatchGuard SOHO WebBlocker .............57
How WebBlocker works ..........................................57
Purchasing and enabling SOHO WebBlocker .........59
Configuring the SOHO WebBlocker .......................59
WebBlocker categories ...........................................60
Searching for blocked sites .....................................64
Index 65
xii
CHAPTER 1 Installation
Before you begin
Pre-installation checklist
Before installing your new WatchG uard SOHO please ensure that
you have:
• A 10BaseT Ethernet I/O network card installed in your
computer.
• A cable or DSL modem with a 10BaseT port.
• Two Ethernet network cables with RJ45 connectors. These
must not be “crossover cables” (which are usually red or
orange). One cable is furnished with your unit. A second
cable may have been supplied with your modem. If not, you
will need to purchase a second Ethernet, RJ45 cable. Make
sure that both cables are long enough to comfortably connect
the modem to the SOHO and the SOHO to the computer in
your individual office environment.
User Guide 2.3 1
Performing manual installation
• An operational Internet connection.
Setup of your SOHO requires access to the Internet. If your
connection does not work, please contact your Internet
service provider (ISP). When your connection has been
established, you may proceed with installation and setup.
• If you have eit her a cable or DSL modem, consult the manual
that came with your service, or call the ISP to find out
whether your particular modem supports DHCP or PPPoE.
You will need this information later in the installation
process.
• If you are using PPPoE to connect to your local Internet
service provider, the WatchGuard SOHO must be running
firmware version 2.0 or later.
• An installed Web browser–either Netscape Navigator 4.5
(or higher) or Internet Explorer 4.0 (or higher).
• SOHO serial number.
Performing manual installation
Before you begin the installation process, connect to the Internet.
You need to determine your current TCP/IP settings and disable
your HTTP proxy.
Determine your current TCP/IP settings
For your reference, record the your computer’s current TCP/IP
settings in the chart provided at the end of this section. Different
operating systems will supply differen t information. To locate your
settings:
2
Performing manual installation
Microsoft Windows NT or 2000
1Click Start => Programs => Command Prompt.
2 At the C:\ prompt, enter ipconfig/all. Press Enter.
3 Enter your curren t TCP/IP settings in the c hart provi ded
below.
4Click
Cancel.
Microsoft Windows 95 or 98 or ME
1ClickStart => Run.
2 At the C:\ prompt, enter
winipcfg. Click OK.
3 Select the “Etherenet Adapter.”
Enter your current TCP/IP settings in the chart provided below.
4Click Cancel.
Macintosh
1Click Apple menu => Control Panels => TCP/IP.
2 Enter your curren t TCP/IP settings in the c hart provi ded
below.
3Close the window.
Other operating systems (Unix, Linux)
1 Consult your operating system guide to locate the TCP/IP
screen.
2 Enter settings in the chart provided below.
3 Exit the TCP/IP configuration screen.
User Guide 2.3 3
Performing manual installation
TCP/IP Setting Value
IP Address
Subnet Mask
Default Gateway
DHCP Enabled Yes No
Primary WINS Server
Secondary WINS
Server
DNS Server(s) Primary
Secondary
. . .
. . .
. . .
. . .
. . .
. . .
. . .
NOTE
If you are connecting more than one computer to the private network
behind the SOHO, obtain the configuration TCP/IP information for each
computer.
Disable your browser’s HTTP proxy
T o confi gure a WatchGuard SOHO after it is installed, you must be
able to access the special configuration pages that reside on the
SOHO. If the HTTP proxy in your browser is enabled, you can not
access these pages, and you can not complete the configuration
process.
With the HTTP proxy enabled, the browser automatically points
itself to Web pages located on the Internet, and you cannot direct
4
Performing manual installation
the browser to Web pages located in other places. Disabling the
HTTP will not prevent you from accessing your favorite W eb sites,
but it will allow you to access the special configuration pages that
reside only on the SOHO.
To disable the HTTP proxy in three commonly used browsers, see
the instructions below. If your browser is not listed, see your
browser Help menus to learn how to disable the HTTP proxy.
Netscape 4.5 or 4.7
1 Open Netscape.
2Click
Edit => Preferences.
The Preference dialog box appears.
3Click the + before Advanced to expand the heading.
4Click
5 Select
6Verify that the
Proxies.
Direct Connection to the Internet.
Automatic Proxy Configuration checkbox is
enabled.
7Click
OK to save the settings.
Internet Explorer 4.0
1 Open Internet Explorer.
2Click
View => Internet Options.
3 Select the Connections tab.
4 Disable the checkbox
5 Enable the checkbox
network
User Guide 2.3 5
.
Access the Internet using a proxy server.
Connect to the Internet using a local area
Physically connecting your SOHO
6Click Configure at the bottom on the Internet Options screen.
7 Record the URL box information here:
8Click OK to save settings.
Internet Explorer 5.0
1 Open Internet Explorer.
2Click
Tools => Internet Options.
The Internet Options screen displays.
3Click the Advanced tab.
4 Scroll down the page to
HTTP 1.1 Settings.
5 Clear all checkboxes.
6Click
OK to save the settings.
Physically connecting your SOHO
Your WatchGuard SOHO can be used to protect a single computer
or a multi-computer network. It can also function as a hub to
connect a variety of other devices.
Cabling the SOHO for one to four devices
The SOHO has four local p orts. Each can be used to connect a
variety of devices. These may include computers, printers,
scanners, or other network peripherals. Your SOHO may replace
an existing hub if you have no more than four devices to connect.
6
Physically connecting your SOHO
1 Complete the “Pre-installation checklist” on page 1.
2 Turn off your computer.
3 Unplug the power from your cable or DSL modem.
4 Unplug the Ethernet cable that is connected from your ca ble or
DSL modem to your computer. Connect it from your modem
to the WAN port on the SOHO.
This creates a connection between the SOHO and the modem.
5 Plug the Ethernet cable supplied with your SOHO into any one
of the numbered (1-4) ports on the SOHO. Plug the other end
into the E thernet ca rd installed in your computer.
This creates a connection between your modem and computer, with the
SOHO in between. If you have additional computers, use additional
Ethernet cables to connect them to the other numbered ports on the
SOHO.
User Guide 2.3 7
Physically connecting your SOHO
6 Turn on the power to your cable or DSL modem. Wait until the
lights stop flashing, indicating that the modem is ready.
7 Attach the power cord to the SOHO and plug it into an outlet.
8 Restart your computer.
9 For information on the factory default configuration options,
see “Default factory settings” on page24. For specialized
configurations, see “Configuring your public network” on
page 12, as well as, “Configuring your private network” on
page 20.
Cabling the SOHO for more than four computers
While there are only four, local ports (numbered 1-4) on the back of
the SOHO, you can connect many more devices to your SOHO
using network hubs.
8
Physically connecting your SOHO
The SOHO and SOHO|tc ship with a “10-seat” license. In other
words, the SOHO allows up to ten computers on a network behind
the SOHO to access the Internet. More than ten computers can
exist on the network and communicate with each other, but only
the first ten which attemtp to access the Internet will be allowed
out. If you would like to upgrade your SOHO to a fifty-seat user
license, please visit:
http://www.watchguard.com/sales/buyonline.asp.
1 Complete the “Pre-installation checklist” on page 1.
2 You will need these additional items:
- One or more Ethernet hubs.
- An Ethernet cable (with RJ-45 connectors) for each
computer to connect the modem to the SOHO.
- A crossover cable to connect each hub to the SOHO.
3 Turn off your computer and unplug the power from the cable
or DSL modem.
4 Unplug the Ethernet cable that is connected from your ca ble or
DSL modem to your computer, and instead connect it from
your modem to the WAN port on the SOHO.
This creates a connection between the SOHO and the modem.
5 Plug a crossover cable into any of the numbered (1-4) ports on
the SOHO. Plug the other end into an Ethernet hub.
You can use a straight cable but this would then need to be connected into
uplink
the
port of the hub.
6 Using Ethernet cables, connect the hub output to the Ethernet
card installed in each of your computers.
If you have more computers to connect, connect another SOHO output to
another Ethernet hub, and then connect additional Ethernet cables
between the second Ethernet hub and the RJ-45 connections on the backs
of those computers.
7 Turn on the power to your cable or DSL modem. Wait until the
lights stop flashing, indicating that the modem is ready.
User Guide 2.3 9
Physically connecting your SOHO
8 Attach the power cord to the SOHO and plug it into an outlet.
9 Restart your computer.
10
CHAPTER 2 Setting Up Your
SOHO Network
How does a firewall work?
Fundamentally, a firewall is a way of differentiating between, as
well as protecting, “us” from “them”. On the public side of your
SOHO firewall is the entire Internet. The Internet has many
resources that you want to be able to reach, such as the Web, email, and conferencing. It also presents dangers to the priv acy and
security of your computers. On the private side of your SOHO
firewall are all the devices you want to protect fr om these dangers.
Using rules we will discuss in Chapter 3: “Configuring Services for
a SOHO” on page 33, the WatchGuard SOHO evaluates all traffic
between the public network (Internet) and the private network
(your computers) and blocks any suspicious activity. In order for
this to work as described, you must first configure both the public
and private network to work together and to talk to one another as
well as the rest of the world.
User Guide 2.3 11
Configuring your public network
NOTE
The configuration instructions in this chapter assume that you are using
Windows 95/98/ME. If this is not the case, see your operating system
help or user guide to locate the equivalent options and commands.
Configuring your public network
When you configure the public network, you establish how the
SOHO communicates with your Internet service provider (ISP).
This configuration is very much dependent on how your ISP
distributes network addresses–using DHCP or PPPoE.
Network addressing
Each networked computer in the entire world must have an IP
address to identify itself to other computers. The most common
method to distribute IP addresses is to use Dynamic Host
Configuration Protocol (DHCP). When you connect your computer
to the network, a DHCP server at your ISP automatically assigns it
a network IP address. This eliminates the ISP from having to
manually assign and manage IP addresses.
IP address assignments can be either dynamic or static. With
dynamic, your ISP assigns your computer a new address every
time you connect. When you power down, you release the address,
and it is reassigned. An IP address that is st atic , on the ot her hand,
belongs to your computer at all times whether or not you are
currently using it. No other computer anywhere on the network
shares the same address.
A third way of assigning addresses is called PPPoE (Point-to-Point
Protocol over Ethernet). PPPoE combines some of the advantages
12
Loading...