Watchguard Firebox FireboxTM System 4.6 User Manual page 149

Watchguard firebox system user guide

Hide thumbs Also See for Firebox FireboxTM System 4.6:

Reference manual (78 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

page of 170

/ 170
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring the Firebox for Mobile User VPN

10 Use the Encryption drop list to select an encryption method.

Options available with the strong encryption version of WatchGuard Firebox System include:

None (no encryption), DES-CBC (56-bit), and 3DES-CBC (168-bit).

11 Click Next. Click Finish.

The wizard closes and the username appears in the Remote User VPN Setup dialog box on the

Mobile User tab Users list.

12 Click OK.

Modifying an existing Mobile User VPN entry

Use the Mobile User VPN wizard to generate a new

change the end-user configuration file. Reasons to change an end-user configuration

include:

• Modifying the shared key

• Adding access to additional hosts or networks

• Restricting access to a single destination port, source port, or protocol

• Modifying the encryption or authentication parameters

From Policy Manager:

Select Network => Remote User.

In the Users list on the Mobile User VPN tab, click the username.

Click Edit.

The Mobile User VPN wizard appears, displaying the User Name and Pass Phrase form.

Use Next to step through the wizard, reconfiguring the end-user configuration

according to your security policy preferences.

To add access to a new network or host, proceed to the Multiple Policy

Configuration step in the Mobile User VPN wizard. Click Add.

You can also use the Multiple Policy Configuration step to change the virtual IP address

assigned to the remote user.

Use the drop list to select Network or Host. Type the IP address. Use the Dst Port,

Protocol, and Src Port options to restrict access. Click OK.

The new IP address appears in the Configured Policies list.

Step completely through the wizard until the final screen. Click Finish.

You must click Finish to ensure that the wizard creates a new .exp file and writes the modified

settings to the Firebox configuration file.

Click OK.

Saving the configuration to a Firebox

To activate new Mobile User configuration settings, you must save the configuration

file to the primary area of the Firebox flash disk. For instructions, see "Saving a

configuration to the Firebox" on page 24.

Distributing the software and configuration files

WatchGuard recommends distributing end-user configuration files on a floppy disk

or by encrypted e-mail. Each client machine needs the following:

• Remote client installation package

User Guide

file every time you want to

.exp

139

Table of Contents

Related Products for Watchguard Firebox FireboxTM System 4.6

Watchguard 4RE

Watchguard Firebox 4500

Watchguard Firebox FireboxTM System 4.6 User Manual page 149

Related Manuals for Watchguard Firebox FireboxTM System 4.6

Related Products for Watchguard Firebox FireboxTM System 4.6

Table of Contents