Rubicon Netgate SG-2100 Manual

Hide thumbs

Table Of Contents

Table of Contents

Quick Links

Download this manual

Security Gateway Manual

SG-2100

Oct 06, 2020

Table of Contents

Need help?

Do you have a question about the Netgate SG-2100 and is the answer not in the manual?

Questions and answers

Summary of Contents for Rubicon Netgate SG-2100

Page 2: Table Of Contents
2 Initial Conﬁguration 3 pfSense Overview 4 Input and Output Ports 5 Safety and Legal 6 Netgate SG-2100 Wall Mount 7 Connecting to the Console Port 8 Reinstalling pfSense Software 9 Optional M.2 SATA Installation 10 Conﬁguring the Switch Ports...
Page 3 It will provide the information needed to keep the appliance up and running. Tip: Before getting started, we recommend downloading the PDF version of the Product Manual and the PDF version of the pfSense Documentation in case you lose Internet access. © Copyright 2020 Rubicon Communications LLC...
Page 4: Getting Started
CHAPTER GETTING STARTED The basic ﬁrewall conﬁguration begins with connecting the Netgate® appliance to the Internet. The Netgate appliance should be unplugged at this time. Connect one end of an Ethernet cable to the WAN port (shown in the Input and Output Ports section) of the Netgate appliance.
Page 5 WAN and LAN, so if the default IP address on the ISP-supplied modem is also 192.168.1.1/24, disconnect the WAN interface until the LAN interface on the ﬁrewall has been renumbered to a different subnet (like 192.168.2.1/24). © Copyright 2020 Rubicon Communications LLC...
Page 6: Initial Configuration
CHAPTER INITIAL CONFIGURATION Plug the power cable into the power port (shown in the Input and Output Ports section) to turn on the Netgate® Firewall. Allow 4 or 5 minutes to boot up completely. Warning: If your DSL or Cable Modem has a default IP Address of 192.168.1.1, please disconnect the Ethernet cable from the WAN port on your SG-2100 Netgate Security Gateway before proceeding.
Page 8 SG-2100 Netgate Security Gateway to a different subnet, such as 192.168.2.1 with a subnet mask of 24 to avoid an IP Address conﬂict. 7. Change the Admin Password. Enter the same password in both ﬁelds. 8. Click Reload to save the conﬁguration. © Copyright 2020 Rubicon Communications LLC...
Page 10 Fig. 7: Read and Click Accept If you unplugged the Ethernet cable at the beginning of this conﬁguration, reconnect it to the WAN port now. This completes the basic conﬁguration for the Netgate appliance. © Copyright 2020 Rubicon Communications LLC...
Page 11: Pfsense Overview
CHAPTER THREE PFSENSE OVERVIEW This page provides an overview of the pfSense® dashboard and navigation. It also provides information on how to perform frequent tasks such as backing up the pfSense software and connecting to the Netgate ﬁrewall console. 3.1 The Dashboard pfSense software is highly conﬁgurable, all of which can be done through the dashboard.
Page 12 Note: Auto Conﬁg Backup is a built-in service located at Services -> Auto Conﬁg Backup. This service will save up to 100 encrypted backup ﬁles automatically, any time a change to the conﬁguration has been made. Visit the Auto Conﬁg Backup page for more information. © Copyright 2020 Rubicon Communications LLC...
Page 14 Connecting to the Console Port Connect to the console. Cable is required. Tip: To learn more about getting the most out of your Netgate appliance, sign up for a pfSense Training course or browse our extensive Resource Library. © Copyright 2020 Rubicon Communications LLC...
Page 15: Input And Output Ports
CHAPTER FOUR INPUT AND OUTPUT PORTS 4.1 Rear Side 4.1.1 Routed Ethernet The WAN Combo-Port is shared between an RJ-45 port and an SFP port. Only one port can be used. Interface Name Port Name mvneta0 LED Pattern Description Left LED only green Flashes with 1Gb trafﬁc, solid with link.
Page 16 Note: The reset button is only used to reset the system back to factory defaults. It does not respond when pushed while the system is running. See our Youtube video for instructions. 4.2 Front Side © Copyright 2020 Rubicon Communications LLC...
Page 17 Security Gateway Manual SG-2100 LED Pattern Description Boot Process The sequence, circle -> square -> diamond, quickly ﬂashes blue. Boot Completed The diamond slowly ﬂashes blue. Update is Available The square slowly ﬂashes orange. © Copyright 2020 Rubicon Communications LLC...
Page 18: Safety And Legal
CHAPTER FIVE SAFETY AND LEGAL 5.1 Safety Notices 1. Read, follow, and keep these instructions. 2. Heed all warnings. 3. Only use attachments/accessories speciﬁed by the manufacturer. Warning: Do not use this product in location that can be submerged by water. Warning: Do not use this product during an electrical storm to avoid electrical shock.
Page 19 For more detailed information about the disposal of your old equipment, please contact your local authorities, waste disposal service, or the shop where you purchased the product. © Copyright 2020 Rubicon Communications LLC...
Page 20 Per ricevere informazioni più dettagliate circa lo smaltimento delle vecchie apparecchiature in Vostro possesso, Vi invitiamo a contattare gli enti pubblici di competenza, il servizio di smaltimento riﬁuti o il negozio nel quale avete acquistato il prodotto. © Copyright 2020 Rubicon Communications LLC...
Page 21 Netgate, device est conforme aux exigences essentielles et aux autres dispositions pertinentes de la directive 1999/5/CE. 5.8.7 Deutsch [German] Hiermit erklärt Netgate, dass sich diese NETGATE device, in Übereinstimmung mit den grundlegenden Anforderun- gen und den anderen relevanten Vorschriften der Richtlinie 1999/5/EG beﬁndet”. (BMWi) © Copyright 2020 Rubicon Communications LLC...
Page 22 Hawnhekk, Netgate, jiddikjara li dan NETGATE device, jikkonforma mal- ti ijiet essenzjali u ma provvedimenti o rajn relevanti li hemm ﬁd-Dirrettiva 1999/5/EC. 5.8.15 Norsk [Norwegian] NETGATE erklærer herved at utstyret NETGATE device, er i samsvar med de grunnleggende krav og øvrige relevante krav i direktiv 1999/5/EF. © Copyright 2020 Rubicon Communications LLC...
Page 23 TORY DAMAGES), AND MUST FOLLOW THE TERMS OF THESE TERMS AND CONDITIONS OF USE AS A COURT WOULD. To begin an arbitration proceeding, you must send a letter requesting arbitration and describing your claim to the following: Rubicon Communications LLC Attn.: Legal Dept. © Copyright 2020 Rubicon Communications LLC...
Page 25 LESS OTHERWISE SPECIFIED IN WRITING. YOU EXPRESSLY AGREE THAT YOUR USE OF THE PROD- UCTS/SERVICES IS AT YOUR SOLE RISK. TO THE FULL EXTENT PERMISSIBLE BY APPLICABLE LAW, RUBICON COMMUNICATIONS, LLC (RCL) AND ELECTRIC SHEEP FENCING (ESF) DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUD- ING, BUT NOT LIMITED TO, IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PAR- TICULAR PURPOSE.
Page 26: Netgate Sg-2100 Wall Mount
CHAPTER NETGATE SG-2100 WALL MOUNT The Netgate SG-2100 has built in wall-mount keyholes on the bottom of the appliance. This page provides an overview and a PDF template for attaching the system to the wall.
Page 27 Once the PDF template is downloaded, print it out at 100% Scale for it to be accurate. Note: The 100% Scale setting varies by printer manufacturer and model. Verify the distance between holes is 5.5-inches or 140 mm (14 cm) before placing the anchors in the wall. © Copyright 2020 Rubicon Communications LLC...
Page 29: Connecting To The Console Port
CHAPTER SEVEN CONNECTING TO THE CONSOLE PORT There are times when directly accessing the console is required. Perhaps webGUI or SSH access has been locked out, or the password has been lost or forgotten. This guide shows how to regain access directly through the console. 7.1 Install the Driver A Silicon Labs CP210x USB-to-UART Bridge driver is used to provide access to the console, which is exposed via the Mini-USB port on the appliance.
Page 30 The device associated with the system console is likely to show up as /dev/ttyUSB0. Look for messages about the device attaching in the system log ﬁles or by running dmesg. Note: If the device does not appear in /dev/, see the note above in the driver section about manually loading the Linux © Copyright 2020 Rubicon Communications LLC...
Page 31 Open PuTTY from a terminal by typing sudo putty. Next, set the Connection type to Serial. Then, set Serial line to /dev/ttyUSB0 and the Speed to 115200 bits per second. Click the Open button and the console screen will be displayed. © Copyright 2020 Rubicon Communications LLC...
Page 33 The settings to use within the terminal program are: Speed 115200 baud, the speed of the BIOS Data bits 8 Parity none Stop bits 1 Flow Control Off or XON/OFF. Hardware ﬂow control (RTS/CTS) must be disabled. © Copyright 2020 Rubicon Communications LLC...
Page 34 • Ensure the installed operating system is conﬁgured for the proper console (e.g. ttyS1 in Linux). Consult the various operating install guides on this site for further information. • If booting from a USB ﬂash drive, ensure that the drive was written correctly and contains a bootable operating system image. © Copyright 2020 Rubicon Communications LLC...
Page 35: Reinstalling Pfsense Software
1. Please open a support ticket General Problem and then select Netgate SG-2100 for the platform. Make sure to include the serial number in the ticket to expedite access. Once the ticket is processed, the latest stable version of the ﬁrmware will be attached to the ticket, with a name such as: pfSense-netgate-SG-2100-recovery-2.4.5-p1-RELEASE-aarch64.img.gz...
Page 39: Optional M.2 Sata Installation
CHAPTER NINE OPTIONAL M.2 SATA INSTALLATION The Netgate® SG-2100 has built-in onboard eMMC storage. Optionally, a M.2 SATA drive could be installed as an upgrade or to bypass the onboard eMMC ﬂash memory. Note: The SG-2100 does not support NVMe drives. Warning: Before proceeding: 1.
Page 40 Note: If the standoff turns as you try to remove the screw, hold the standoff with a ﬁne pair of needle-nosed pliers. Fig. 2: M.2 SATA Location and Screw 3. After the screw has been removed, insert the M.2 SATA drive into the slot at about a 30° angle. © Copyright 2020 Rubicon Communications LLC...
Page 41 5. Place the cover back on and turn the SG-2100 over. Replace the four T10 Torx case screws. Be careful not to crossthread the screws or overtighten them. 6. Reinstall the pfSense software on the new M.2 SATA drive. 7. Restore your conﬁguration backup if you have one. © Copyright 2020 Rubicon Communications LLC...
Page 43: Configuring The Switch Ports
CHAPTER CONFIGURING THE SWITCH PORTS This optional guide shows the steps required to conﬁgure the 4 switched Ethernet ports as discrete ports. The following attributes are used in this conﬁguration guide but can be changed to suit your particular requirements: •...
Page 44 1 and 4094. Avoid using values that are already in use. Best practice is not to use 1. 7. Go to the Interface Assignments sub-menu. 8. Ensure Available network ports: is correct. It is VLAN 4084 on mvneta1 - lan (Lan port 4) in this example. © Copyright 2020 Rubicon Communications LLC...
Page 45 9. Click on OPT1. This is the Interface that matches the new VLAN being created. 10. Check the Enable Interface check-box. 11. Change the IPv4 Conﬁguration Type from None to Static IPv4. 12. Scroll down and make the IPv4 Address 192.168.100.1/24 (in this example). © Copyright 2020 Rubicon Communications LLC...
Page 46 15. Go to Interfaces -> Switches. 16. Go to the VLANs sub-menu. Click in the Enable 802.1q VLAN mode check-box and click Save. 17. You will notice that the table changes. Click + Add Tag. © Copyright 2020 Rubicon Communications LLC...
Page 47 18. Type 4084 for the VLAN Tag and 4 for Member(s). This represents LAN4 (port 4) and tagged should be unchecked. 19. Click + Add Member to add the LAN Uplink, 5. This member should be tagged as shown. 20. Click Save. 21. Click on beside VLAN group 0. © Copyright 2020 Rubicon Communications LLC...
Page 48 25. Click on Port VID 1 beside LAN4. Backspace through 1 and insert 4084, the new VLAN ID. 26. Click Save. This completes the conﬁguration of a discrete port on the Netgate SG-2100. You will need to create the appropriate ﬁrewall rules...
Page 49: Additional Resources
CHAPTER ELEVEN ADDITIONAL RESOURCES 11.1 Netgate Training Netgate training offers training courses for increasing your knowledge of pfSense® products and services. Whether you need to maintain or improve the security skills of your staff or offer highly specialized support and improve your customer satisfaction;...
Page 50: Warranty And Support
CHAPTER TWELVE WARRANTY AND SUPPORT • One year manufacturer’s warranty. • Please contact Netgate for warranty information or view our Product Lifecycle page. • All Speciﬁcations subject to change without notice For support information, view our support plans. See also: For more information on how to use pfSense®...

Rubicon Netgate SG-2100 Manual

Quick Links

Need help?

Questions and answers

Related Manuals for Rubicon Netgate SG-2100

Summary of Contents for Rubicon Netgate SG-2100

Table of Contents