Manuale d’uso / di manutenzione del prodotto 1000 del fabbricante WatchGuard Technologies
Vai alla pagina of 30
Fir ebox III H a rd w a re G u i d e Firebox 500, Fir ebox 700, Firebo x 1000, Firebox 2500, Fir ebox 4500.
ii Hardwar e Guide Copyright and Patent Information Copyright© 1998 - 2003 WatchGuard T echnologies, Inc. All rights reser ved. AppLock, AppLock/Web, Designing peace of mind, Firebox, Firebox 1000, F.
Hardwar e Guide iii Contents Limited Har dwar e W arranty ................. ................ .............. ............ 1 FCC Certification ............. ................................ ................. .............. 4 CE Notice .............. ...
iv Hardwar e Guide Firebox System Ar ea ......... ................. ................ .............. ............ 20 Read-only system area ................. ................ ................. .............. 21 Enhanced System Mode ............... .....
Hardwar e Guide 1 H a rdw a re G u i d e The W atchGuard Firebox III is a sp ecially designed and optimized security appliance. Solid-state archit ecture removes th e risk of hard-drive failure and disk cr ashes.
2 Hardwar e Guide and used for its intended pu rpose and in its intended operating environment, will per for m substantially in accordance with WatchGuard applicable specifications.
Limited Har dware W arranty Hardwar e Guide 3 4. Limitation of Liabi lity . WA TCHGUARD TECHNOLOGIES’ LIABILITY (WHETHER ARISING IN CONTRACT (INCL UDING WARRANTY), TOR T (INCL UDING ACTIVE, P ASSIVE.
4 Hardwar e Guide FCC Certification This device has been tested and found to comply with limits for a Class A digital device, pursuant to P art 15 of the FCC Rules. Operation is subject to the following two conditions: • This device may not cause harmful interfer ence.
CE Notice Hardwar e Guide 5 • This device must accept any interference receive d, including interference that may cause undesired oper ation. CE Notice The CE symbol on your W atchGuar d T echnologi.
6 Hardwar e Guide Ta i w a n e s e N o t i c e VCCI Notice Class A ITE.
Installing the Fir ebox III Hardwar e Guide 7 Installing the Fir ebox III Easily installed into your network, th e r ack-mountable Firebo x plugs in at the Internet connection of your office s to implement security policies and protection.
8 Hardwar e Guide Locating a Fir ebox within a network One of the first steps in installing a F irebox is determining where to place it within the network. Nearly always, a Fir ebox is placed directly behind the Internet router , as pictured below . This is the most effective location for the Firebox to oper ate correctly and protect your network.
Installing the Fir ebox III Hardwar e Guide 9 Y ou can connect to and initialize a new Firebox in sever al ways: • Using TCP/IP . This is the quickest way to configure a Fir ebox in most situations. • Using a serial cable. Use this method if you want to isolate the Firebox during configuration.
10 Hardwar e Guide 3 Install the power cord from the Fi rebox A C recep tacle to a power source. 4 When prompted t o do so durin g the Quick Setup wizard (des cribed in “Running the QuickS etup W izard” on page 11), select Use Serial Cable to Assign IP Address as the configur ation access method.
Installing the Fir ebox III Hardwar e Guide 11 • The Management Station is running F irebox System 4.6 or later , which has IP connectivity to the network on which the F irebox is connected. • The network address and the netmask of the net behind the router ar e known.
12 Hardwar e Guide file and saves it to the primary area of the Firebox flash disk. The F irebox loads the primary configuration file when it boots. The QuickSetup wizard also writes a basic configuration file called wizard.cfg to the Management Station hard disk.
Hardwar e Description Hardwar e Guide 13 Firebox III fr ont vi ew (all models except Model 500 and 700) Indicators for the F irebox III Model 10 00, Model 2500, and Model 4500 are on a central back-lit indicator panel. The following photogr aph shows the entire fr ont view .
14 Hardwar e Guide Sys A Indicates that the Fire box is running from its primary user- defined configuration. Sys B Indicates that the Fire box is ru nning from the read-on ly factory default system area. Po w e r Indicates that the Firebox is curr ently powered up.
Hardwar e Description Hardwar e Guide 15 The following photo graph shows a close-u p of the indicator panel. Fr om the left, the indicators are as described below . Disarm Red light indicates the F irebox detected an err or , shut down its interfaces, and will not forward any pack ets.
16 Hardwar e Guide Sys B Indicates that the Fire box is ru nning from the read-on ly factory default system area. Po w e r Indicates that the Firebox is curr ently powered up.
Hardwar e Description Hardwar e Guide 17 PCI Expansion Slot Reserved for future use. F actor y Default This button is active only during the boot process. T o boot the Firebox to SYS B, press this bu tton and hold it down for 20-6 0 seconds (or until you see the Sys B light come on).
18 Hardwar e Guide A C Receptacle Accepts the detachable A C power cord supplied with the Fir ebox. Po w e r S w i t c h T ur ns the Firebo x on or off.
Hardwar e Description Hardwar e Guide 19 (NICs) are auto-sens ing and adapt to wire speed automatically. The speed indicator lights when there is a good physical connection to the Firebox. When the card runs at 10 Mbit, the speed indicator is yellow .
20 Hardwar e Guide Cross-over cabling T o connect a Firebox to a hub or switch, use a standard, str aight-through cable. However , if you plan to connect a F irebox directly to a router , either purchase or build a cross-over cable for RJ-45 (Cat5) wire.
Firebox System Area Hardwar e Guide 21 • Reset Fireb ox passphrases when you do not know or have forgotten them Fireboxes shipped before LiveS ecuri ty System 4.1 shipped with the original, standard functionality called the read-only system area. Fireboxes shipped with LiveSecurity Sy stem 4.
22 Hardwar e Guide • Primary (SysA)– Contains the Firebox software image used in normal operation and the enhanced read-only system area. • Backup– Contains the Fir ebox software image.
Firebox System Area Hardwar e Guide 23 Note that this procedur e is possible only when a backup image is on the backup area of the Firebox’s flash di sk. Ther e is no backup image on the Firebox until you copy one there. 1 Click the Control Center Main Me nu button (shown at right), which is located on the upper-left corner of Control Center .
24 Hardwar e Guide.
Hardwar e Guide 25 Index A AC receptacle 16 Armed light 13, 15 B backup area 22 backup image 22 C cabling cross-over 20 using serial cable 9 using TCP/IP 9 certification, FCC 4 configuration file and .
26 Hardwar e Guide traffic 14 installation 7 L lights Armed 13, 15 Disarm 13, 15 Po w e r 14, 16 Sys A 14, 15 Sys B 14, 16 limited hardware war ranty 1 load indicator 14 M Management Station described.
Un punto importante, dopo l’acquisto del dispositivo (o anche prima di acquisto) è quello di leggere il manuale. Dobbiamo farlo per diversi motivi semplici:
Se non hai ancora comprato il WatchGuard Technologies 1000 è un buon momento per familiarizzare con i dati di base del prodotto. Prime consultare le pagine iniziali del manuale d’uso, che si trova al di sopra. Dovresti trovare lì i dati tecnici più importanti del WatchGuard Technologies 1000 - in questo modo è possibile verificare se l’apparecchio soddisfa le tue esigenze. Esplorando le pagine segenti del manuali d’uso WatchGuard Technologies 1000 imparerai tutte le caratteristiche del prodotto e le informazioni sul suo funzionamento. Le informazioni sul WatchGuard Technologies 1000 ti aiuteranno sicuramente a prendere una decisione relativa all’acquisto.
In una situazione in cui hai già il WatchGuard Technologies 1000, ma non hai ancora letto il manuale d’uso, dovresti farlo per le ragioni sopra descritte. Saprai quindi se hai correttamente usato le funzioni disponibili, e se hai commesso errori che possono ridurre la durata di vita del WatchGuard Technologies 1000.
Tuttavia, uno dei ruoli più importanti per l’utente svolti dal manuale d’uso è quello di aiutare a risolvere i problemi con il WatchGuard Technologies 1000. Quasi sempre, ci troverai Troubleshooting, cioè i guasti più frequenti e malfunzionamenti del dispositivo WatchGuard Technologies 1000 insieme con le istruzioni su come risolverli. Anche se non si riesci a risolvere il problema, il manuale d’uso ti mostrerà il percorso di ulteriori procedimenti – il contatto con il centro servizio clienti o il servizio più vicino.