Yoggie GATEKEEPER CARD PRO User Manual

www.yoggie.com

Legal Notice

Legal Notice

SAFETY NOTICE: TO AVOID DANGER, KEEP PRODUCT AND PACKAGE AWAY FROM
BABIES AND CHILDREN. THE PRODUCT IS NOT INTENDED FOR BABIES AND
CHILDREN.

©

Copyright 2006-2008. Yoggie Security Systems Ltd. All rights reserved.

Any and all intellectual property rights related to the Gatekeeper Card Pro product
belongs solely to Yoggie Security Systems Ltd. and its licensors, and may not be used
in any manner except as explicitly permitted by Yoggie Security Systems Ltd., in the
Terms of Use Agreement.

The technology and products described in this material are protected by registered
and/or pending patents of Yoggie Security Systems Ltd. and/or its licensors.

Yoggie™, the Yoggie logo, Yoggie.com™, Yoggie Gatekeeper™, Yoggie Pico™, Yoggie
SOHO™, Yoggie Pico Personal™, Yoggie Pico Pro™, Yoggie Firestick Pico™,
Gatekeeper Pico™, Gatekeeper Pico Pro™ Yoggie Management Server™ and
Gatekeeper Card Pro™ are trademarks or registered trademarks of Yoggie Security
Systems Ltd. All other trademarks, service marks, and logos appearing in this
material or on the product belong to their respective owners.

Q2 2008

GCUM001.3.9

ii | Gatekeeper Card Pro

Table of Contents

Table of Contents

LEGAL NOTICE ........................................................................................... II

TABLE OF CONTENTS ................................................................................ III

ABOUT THIS USER GUIDE ........................................................................... 5

INTRODUCTION .......................................................................................... 6

GATEKEEPER CARD PRO FEATURES ................................................................... 7

MODES OF OPERATION ................................................................................. 7

Corporate (Managed) Mode .............................................................. 7

Standalone Mode ............................................................................ 7

GATEKEEPER CARD PRO DRIVER AND SOFTWARE ................................................... 8

PACKAGE CONTENTS .................................................................................... 9

SYSTEM REQUIREMENTS ............................................................................... 9

GETTING STARTED .................................................................................... 10

CONNECTING GATEKEEPER CARD PRO .............................................................. 10

DRIVER INSTALLATION AND REGISTRATION ........................................................ 10

YOGGIE MANAGEMENT CONSOLE .............................................................. 15

ACCESSING THE MANAGEMENT CONSOLE VIA THE GATEKEEPER CARD PRO ICON ............. 15

MANUALLY ACCESSING THE MANAGEMENT CONSOLE ............................................. 17

CHANGING THE INTERFACE LANGUAGE ............................................................. 18

CHANGING YOUR PASSWORD ........................................................................ 18

CHANGING YOUR USER DETAILS .................................................................... 19

CHANGING MODES .................................................................................... 19

CHANGING THE PRIVACY SETTINGS ................................................................. 20

SETTING THE TIME ZONE ............................................................................ 20

MONITORING SECURITY ACTIVITY .................................................................. 21

Viewing Security Status ................................................................. 21

Viewing and Printing Reports .......................................................... 23

Viewing the Security Log ................................................................ 25

Viewing the System Log ................................................................. 27

Viewing the VPN Log ..................................................................... 27

CONFIGURING SECURITY ............................................................................. 29

CONFIGURING GATEKEEPER CARD PRO NETWORK SETTINGS .................................... 30

User Guide | iii

Table of Contents

Configuring Internal Network Settings ............................................. 30

Configuring Proxy Settings ............................................................. 31

Configuring Additional Settings ....................................................... 33

CONFIGURING VPN SETTINGS ...................................................................... 35

Enabling or Disabling a VPN Connection ........................................... 35

Configuring VPN Client Settings ...................................................... 35

Configuring a Generic VPN Connection ............................................. 36

Configuring a CheckPoint VPN Connection ........................................ 37

Configuring a Cisco VPN Connection ................................................ 38

SPAM E-MAIL PROTECTION SETTINGS .............................................................. 39

Configuring Spam Protection Settings .............................................. 41

Creating Custom E-mail Rules ........................................................ 41

Changing the Order in which E-mail Rules are Applied ........................ 43

Modifying, Activating/Deactivating, and Deleting E-mail Rules ............. 43

ADVANCED SECURITY SETTINGS .................................................................... 45

Web Filtering / Parental Content Control .......................................... 45

Configuring Firewall Settings .......................................................... 49

Size Policy ................................................................................... 57

Configuring Protocol Scanning ........................................................ 58

Configuring IDS/IPS ...................................................................... 59

SUPPORT .................................................................................................. 61

GENERATING A SUPPORT FILE ....................................................................... 61

RESET OPTIONS ....................................................................................... 62

DIAGNOSTICS ......................................................................................... 63

Running General Diagnostics .......................................................... 63

Running Network Diagnostics ......................................................... 65

Running a Virus Test ..................................................................... 67

GATEKEEPER CARD PRO ENFORCEMENT ................................................... 68

DISABLING GATEKEEPER CARD PRO ENFORCEMENT .............................................. 68

CHANGING THE ENFORCEMENT PASSWORD ........................................................ 68

UNINSTALLING GATEKEEPER CARD PRO .................................................. 70

iv | Gatekeeper Card Pro

About this User Guide

Gatekeeper Card Pro Features

About this User Guide

This User Guide provides installation and usage instruct ions for the Gatekeeper Card
Pro™.

User Guide | 5

Introduction

Gatekeeper Card Pro Features

Introduction

Gatekeeper Card Pro is an ExpressCard compatible security appliance that protects
your PC or laptop from malicious intrusion, including viruses, Trojans, spyware,
worms, and other Internet attacks, by preventing them from ever reaching your
computer. It empowers you with the freedom to connect your computer to the
Internet anywhere and enjoy the highest level of protection — the same corporate
level, hardware-based security solutions used by highly guarded security
organizations.

Gatekeeper Card Pro combines best-of-breed enterprise-class software with
proprietary patent pending developments to provide a comprehensive security
solution for known and unknown threats. These solutions include:

 Adaptive Security Policy™

 Multi-Layer Security Agent™

 Layer-8 Security Engine™

 URL Categorization and Filtering

 Anti-Spam

 Anti-Phishing

 Anti-Spyware

 Anti-Virus

 Transparent E-mail Proxies (POP3, SMTP)

 Transparent Web Proxies (HTTP; FTP)

 Intrusion Detection/Prevention

 VPN Client

 Stateful Inspection Firewall

Before any data is accepted for processing by the computer’s operating system, a
low-level driver redirects it to the Gatekeeper Card Pro unit where a full security
check is performed. Security breach attempts are identified and thwarted, and only
safe, secure data is passed back to the computer.

Gatekeeper Card Pro includes a web-based management console which provides
status information, security logs, and reports and can be used to configure device
settings, network settings and security policy.

6 | Gatekeeper Card Pro

Gatekeeper Card Pro Features

Gatekeeper Card Pro Features

Gatekeeper Card Pro offers the following features:

 Extremely small – size of a standard ExpressCard

 Hardware-based security appliance with hardened Linux OS

 Physical separation between the laptop and the outside world

 Plug and forget transparent

 Automatic updates

 All-in-one corporate grade security software

 Proprietary security software

 Real-time monitoring and comprehensive reports

Introduction

 Remote management

Modes of Operation

Corporate (Managed) Mode

In this mode, the Gatekeeper Card Pro unit is connected to a Yoggie Management
Server. The Yoggie Management Server extends the IT manager’s ability to manage
and enforce security on traveling laptops. Installed in the IT server room, the Yoggie
Management Server manages the fleet of traveling Gatekeeper Card Pro units as
follows:

 Manages and propagates corporate security policies

 Manages firmware, signature, rule-base and any other updates

 Obtains local logs and events for complete visibility

Standalone Mode

In this mode, the Gatekeeper is not connected to a Yoggie Management Server and
functions independently. In this case, security policy is set by the Gatekeeper user,
while security updates are transparently downloaded directly from Yoggie Security
Systems.

User Guide | 7

Introduction

Gatekeeper Card Pro Driver and Software

Gatekeeper Card Pro Driver and Software

The supplied Gatekeeper Card Pro CD includes the Gatekeeper Card Pro driver and
software. You install the driver and software the first time you connect the
Gatekeeper Card Pro unit to the computer as described in “Getting Started”.

The software and driver provide the following features and benefits:

 Redirection — the ability to connect a laptop to a network (Internet or oth er)

using a Wi-Fi (wireless) connection, analog modem, cellular modem, or any other
network interface, and have all traffic redirected to the Gatekeeper unit. The
Gatekeeper allows only safe and secure traffic to reach your laptop.

 Yoggie Enforcement — the ability to connect to a network is disabled if Gatekeeper

Card Pro is not connected to the laptop. If the Gatekeeper is physically
disconnected from the laptop during use, all network connections are
automatically and immediately terminated.

 Gatekeeper Card Pro icon

Right-clicking the icon provides:

 Quick access to the Gatekeeper Card Pro Management Console (see “Yoggie

Management Console”).

 The ability to temporarily disable protection (see “Disabling Gatek eeper Card

Pro Enforcement”).

 Protection status indication — the Gatekeeper Card Pro icon is green when

protection is enabled and red when protection is disabled.

 Notification balloons — balloons from the icon contain information on the

Gatekeeper status and events. Status notification tooltips can also be viewed by
placing the mouse cursor over the icon.

 Disable protection — (password required) in case of an emergency, for example, if

a Gatekeeper Card Pro unit has been lost or damaged, the network can be
accessed by disabling Gatekeeper Card Pro Enforcement (see “Disabling
Gatekeeper Card Pro Enforcement”).

— located in the Windows notification area (icon tray).

8 | Gatekeeper Card Pro

Package Contents

 Gatekeeper Card Pro

 Gatekeeper Card Pro CD

 Quick Start Guide

System Requirements

 ExpressCard slot and PC running Windows XP or Vista 32bit.

Introduction

Package Contents

User Guide | 9

Introduction

Connecting Gatekeeper Card Pro

Getting Started

Getting started consists of connection, initial setup, and registration of the
Gatekeeper Card Pro.

Connecting Gatekeeper Card Pro

To connect Gatekeeper Card Pro:

 Insert Gatekeeper Card Pro into the laptop computer ExpressCard slot.

Windows may automatically detect the Gatekeeper unit as a new hardware

device and ask to install a driver. Click Cancel to exit the driver installation
wizard.

Driver Installation and Registration

It is recommended to disable any software-based Firewall or Internet protection

suites.

1. Insert the Gatekeeper Card Pro CD.
A menu screen appears.

2. Click Install Yoggie Software & Driver and follow the on-screen instructions.
After installing the driver, your web browser opens and you are automatically

prompted for a username and password to begin the registration process.

3. Enter the default login information (case-sensitive):

User: admin
Password: yoggie

The Interface Language screen appears.

10 | Gatekeeper Card Pro

Driver Installation and Registration

4. Select your preferred language from the drop-down list and click Next.

Introduction

The End-User License Agreement (EULA) screen appears.

5. Read the EULA and click I Accept to proceed.
The registration screen appears.

User Guide | 11

Introduction

Driver Installation and Registration

6. Do one of the following:
 If your laptop will be connected to the Yoggie Management Server (YMS),

select the Corporate Mode setup option.

 If you r laptop will not be working with the Yoggie Management Server™,

select the Standalone Mode setup option.

7. Click Next.
The user information screen appears.

12 | Gatekeeper Card Pro

Driver Installation and Registration

8. Enter the following information:

 Your name

 Your email address

 A valid license key, located on the CD sticker (Standalone Mode only)

 Settings for your corporate Yoggie Management Server IP address and

password (Corporate Mode only)

9. Click Next.
The Privacy screen appears.

Introduction

10. Set your desired privacy settings (share security related information with
Gatekeeper Card Pro for improved security). Then click Next.

The password and time zone screen appears.

User Guide | 13

Introduction

Driver Installation and Registration

11. Set your new password for accessing the Management Console, and your local time
zone.

12. Click Finish to complete the registration.

The Gatekeeper Card Pro icon

appears in the Windows notification area, and

Gatekeeper Card Pro is now protecting your laptop.

Take Gatekeeper Card Pro for a test drive

Download EICAR’s virus demo file from:
http://www.eicar.org/anti_virus_test_file.htm

Gatekeeper Card Pro downloads any required updates. During first time use,

this process can take up to fifteen minutes, and you will not be able to use
Gatekeeper Card Pro during this time. You can view the update progress via the
Web-based Yoggie Management Console.

14 | Gatekeeper Card Pro

Yoggie Management Console

Accessing the Management Console via the Gatekeeper Card Pro Icon

Yoggie Management Console

The Yoggie Management Console (Management Console) provides access to the
Gatekeeper Card Pro management features through your Web browser. You can
monitor security activity, view and print security reports and logs, view and configure
security, system and user settings, view and print non-security event system logs,
and more.

The Management Console can be accessed in the following ways:

 Gatekeeper Card Pro icon

installed (see “Getting Started”).

 Web browser—if for some reason the Gatekeeper Card Pro icon is not available

you can manually access the Management Console through a standard Web
browser.

—if the Gatekeeper Card Pro driver/software is

Accessing the Management Console via the
Gatekeeper Card Pro Icon

The Gatekeeper Card Pro Management Console can be accessed via the Gatekeeper
Card Pro icon.

To access the Management Console via the Gatekeeper Card Pro icon:

1. In the Windows notification area, right-click the Gatekeeper Card Pro icon

2. Select Open Management Console from the displayed pop-up menu.

You can also double-click on the Gatekeeper Card Pro icon to open the

Management Console.

.

The Login dialog box opens.

3. Enter the following information:

 Username — admin

User Guide | 15

Yoggie Management Console

Accessing the Management Console via the Gatekeeper Card Pro Icon

 Password — enter your Gatekeeper Card Pro password (the default password

is yoggie).

4. Click OK.
The Management Console opens.

Navigation pane

Display pane

16 | Gatekeeper Card Pro

Yoggie Management Console

Manually Accessing the Management Console

Manually Accessing the Management Console

If, for some reason, the Gatekeeper Card Pro icon is not available, you can manually
access the Management Console through a standard Web browser.

The Management Console can be manually accessed by entering the Gatekeeper Card
Pro Management Console URL into the address field of your Web.

To manually access the Management Console:

1. Open a Web browser and enter the following Gatekeeper Card Pro Management
Console URL into the address field of the browser:

https://yoggie.yoggie.com:8443

The Login dialog box opens.

2. Enter the following information:

 Username — admin

 Password — enter your Gatekeeper Card Pro password (the default password

is yoggie).

3. Click OK. The Management Console opens.

User Guide | 17

Yoggie Management Console

Changing the Interface Language

Changing the Interface Language

You can change the language of the user interface (labels and dialogs) in your
Gatekeeper Card Pro Management Console at any time.

To change your Management Console interface language:

1. Click Settings in the Navigation pane of the Management Console.
The Security tab appears in the Display pane.

2. Click the System tab.
The Yoggie Details page appears in the Display pane.

3. Click Language.
The Language Settings page appears.

4. Select the language you wish to use from the list.

5. Click Apply.
The selected interface language will be used and the main Yoggie Details page

appears.

Changing Your Password

You can change your Gatekeeper Card Pro Management Console password at any
time.

To change your Gatekeeper Card Pro Management Console password:

1. Click Settings in the Navigation pane of the Management Console.
The Security tab appears in the Display pane.

2. Click the System tab.
The Yoggie Details page appears in the Display pane.

3. Click Change Password.
The Password Settings page appears.

4. Enter the following information:

 Current Password — enter your current password

 New Passwo rd — enter the new password

 Confirm Password — enter the new password again

18 | Gatekeeper Card Pro

Yoggie Management Console

Changing Your User Details

5. Click Apply.
Your password is changed and the main Yoggie Details page appears.

Changing Your User Details

Gatekeeper Card Pro user details consist of your username and e-mail address. These
can be changed at any time.

To change your Gatekeeper Card Pro user details:

1. Click Settings in the Navigation pane of the Management Console.
The Security tab appears in the Display pane.

2. Click the System tab.
The Yoggie Details page appears in the Display pane.

3. Under Yoggie Details, click Modify.

4. Enter your new username in the Name field, as required.

5. Enter your new email address in the E-mail Address field, as required.

6. Click Apply.
Your user details are changed and the Yoggie Details page appears.

Changing Modes

Gatekeeper Card Pro can be used as a standalone Gatekeeper (standalone mode) or
as part of a fleet of Gatekeeper devices, managed by a Yoggie Management Server
(YMS). The mode is set during registration but can be modified at any time.

To change your Gatekeeper Card Pro mode:

1. Click Settings in the Navigation pane of the Management Console.
The Security tab appears in the Display pane.

2. Click the System tab.
The Yoggie Details page appears in the Display pane.

3. Under Yoggie Details, click Modify.

4. Select your desired mode:

 Standalone Mode — enter the provided license number in the License field.

 Corporate Mode — enter the Yoggie Management Server IP address in the

Server Address field and the password in the Password field.

User Guide | 19

Yoggie Management Console

Changing the Privacy Settings

5. Click Apply.
Your mode is changed and the Yoggie Details page appears.

Changing the Privacy Settings

Gatekeeper Card Pro collects only security related information in order to improve the
quality of the products and service. It is highly recommended that you use the default
privacy settings. Yoggie will never share any private inf ormation with a third-party or
make any other use of this information.

To change the privacy settings:

1. Click Settings in the Navigation pane of the Management Console.
The Security tab appears in the Display pane.

2. Click the System tab.
The Yoggie Details page appears in the Display pane.

3. Click Privacy.
The Privacy Settings page appears.

4. Choose if you want to register your name and email with Yoggie.

5. Select your privacy setting from the drop-down list. You may choose one of the
following options:

 Share security logs with Yoggie – share all the security events collected by the

Gatekeeper Card Pro logs with Yoggie Security Systems.

 Hide specific spam and URL information – do not share security events that

contain the source and destination of spam emails or destination URL. Share
all other security events collected by the Gatekeeper Card Pro logs with
Yoggie Security Systems.

 Do not share any security events – do not share any security events collected

by the Gatekeeper Card Pro logs with Yoggie Security Systems.

6. Click Apply.
The Yoggie Details page appears.

Setting the Time Zone

The current date and time are displayed in the main Settings page of the Management
Console. This information is updated via the Yoggie server according to the time zone
set in the Management Console. To change the time, set a new time zone — the time
and date are instantly updated and displayed.

20 | Gatekeeper Card Pro

Yoggie Management Console

Monitoring Security Activity

To set the Time Zone:

1. Click Settings in the Navigation pane of the Management Console.
The Security tab appears in the Display pane.

2. Click the System tab.
The Yoggie Details page appears in the Display pane.

3. Under Time Zone, click Modify.
The Time Zone Settings page appears.

4. Select your location from the Time Zone drop-down list.

5. Click Apply.
The selected time zone is displayed, and the current date and time are updated.

The Yoggie Details page appears.

Monitoring Security Activity

The Management Console provides several options for monitoring security activity.
You can view the following:

 Current security status

 Security activity charts (including 3D charts)

 Security and system logs

You can also view and print security activity reports.

Viewing Security Status

The Status page of the Management Console enables you to view your current risk
level (a rating based on current activity) and security events. The Status page
contains a risk level gauge, as well as event counters that indicate the number of
security breach attempts thwarted by your Gatekeeper Card Pro during the last 15
minutes during which the Gatekeeper was connected and working.

The Status page does not show the Gatekeeper Card Pro security level, but the

intensity of security breach attempts. Gatekeeper Card Pro protects your laptop
at all risk levels.

To view security status:

 Click Status in the Navigation pane of the Management Console.

User Guide | 21