Defining Service Properties - Watchguard Firebox FireboxTM System 4.6 User Manual

Watchguard firebox system user guide

Hide thumbs Also See for Firebox FireboxTM System 4.6:

Reference manual (78 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

page of 170

/ 170
Contents
Table of Contents
Bookmarks

Table of Contents

Defining service properties

In the Port text box, enter the well-known port number for this service.

For a list of well-known services and their associated ports, see the Reference Guide or Online

Help.

Click OK.

Policy Manager adds the port configuration to the New Service dialog box.

10 Verify that the name, description, and configuration of this service are correct.

11 Click Add to configure another port for this service. Repeat the process until all

ports for the service are configured. When you finish, click OK.

The Services dialog box appears with the new service. You can now add the custom service to the

Services Arena just as you would an existing service. For more information, see "Adding an

existing service" on page 47.

12 Click File => Save => To Firebox to save your changes to the Firebox. Specify the

location and name of the new configuration file.

Defining service properties

Use the Properties dialog box to configure a service's incoming and outgoing access

rules. Defining service properties includes:

• Adding incoming hosts, networks, and users

• Adding outgoing hosts, networks, and users

The Properties dialog box for a typical service displays Incoming and Outgoing tabs.

The Incoming tab defines which hosts and users outside the Firebox can use the

service to initiate sessions with your protected users and hosts. The Outgoing tab

defines which hosts and users behind the Firebox can use the service to initiate

sessions with an outside host. You can make any service a one-directional filter by

setting the Connections Are drop list to Disabled.

After defining service properties, you need to save your configuration file, as

described at the end of the previous procedures.

Adding incoming service properties

From Policy Manager:

In the Services Arena, double-click the service.

The Properties dialog box appears, displaying the Incoming tab.

Use the Incoming Connections Are drop list to select Enabled and Allowed.

To define specific external users or hosts that the service will allow in, click Add

beneath the From list.

The Add Address dialog box appears. For a description, see "Adding addresses to service

properties" on page 50.

To define specific destinations within the Trusted network that can receive

through the service, click Add beneath the To list.

To customize logging and notification for incoming traffic for this service, click

Logging. Configure logging and notification according to your security policy

preferences.

For a description of each control, right-click the control and then click What's This?

User Guide

Table of Contents

Related Products for Watchguard Firebox FireboxTM System 4.6

Watchguard 4RE

Watchguard Firebox 4500

Defining Service Properties - Watchguard Firebox FireboxTM System 4.6 User Manual

Defining service properties

Related Manuals for Watchguard Firebox FireboxTM System 4.6

Related Products for Watchguard Firebox FireboxTM System 4.6

Table of Contents