Table of Contents
Advertisement
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Stonesoft FW-315 Series
Summary of Contents for Stonesoft FW-315 Series
- Page 1 FW-315 Series Appliance Installation Guide...
- Page 2 European Council Regulation (EC) N:o 1334/2000 of 22 June 2000 setting up a Community regime for the control of exports of dual-use items and technology (as amended). Thus, the export of this Stonesoft software in any manner is restricted and requires a license by the relevant authorities.
-
Page 3: Table Of Contents
Thank you for choosing a Stonesoft™ appliance. This guide provides instructions for the initial hardware installation and the maintenance of the FW-315 Series appliances. See Product Documentation (page 4) for information on other available documentation. The use of the appliance is subject to the acceptance of the End User License Agreement, which can be found at the Stonesoft website. -
Page 4: Installation Procedure
(page 11)). The appliance starts up and the initial configuration is transferred to the appliance. • If the initial configuration has been uploaded to the Stonesoft Installation Server, the appliance automatically connects to the Installation Server, and the initial configuration is transferred from the Installation Server to the appliance. -
Page 5: Safety Precautions
The following safety information and procedures must be followed whenever working with electronic equipment. However, please be advised that Stonesoft appliances are not end-user serviceable, and you must never open the appliance covers for any reason. Doing so may lead to serious injury and will void any hardware warranty that may be associated with your appliance. -
Page 6: Esd Precautions
Note – Use a UPS (Uninterruptible Power Supply) in critical environments with your Stonesoft appliance. If after a brief power outage your Stonesoft appliance only partially starts up (for example, the power light is on, but the appliance does not connect) turn the appliance off for five seconds and then back on. -
Page 7: Unpacking The Appliance
Lithium Battery Precautions Caution – Do not change the battery; the battery must be replaced by authorized service personnel only. Danger of explosion if battery is incorrectly replaced. Replacement battery must be same or equivalent type recommended by the manufacturer. Used batteries must be discarded according to the manufacturer’s instructions. -
Page 8: Front Panel
Fro n t P a n e l Network activity and link indicators for Ethernet interfaces Power and disk activity indicators Note – Standby power is supplied to the system even when the appliance is turned off. The indicators in the front panel provide you with critical information related to different parts of the system. -
Page 9: Back Panel
Table 2 Network Activity and Link Indicators for Ethernet Interfaces Status Indicator Explanation 0 to 3 Unlit No link. 0 to 3 Green Link ok. B a c k P a n e l (Some models, left to right) DSL and activity indicators Power button Ethernet ports The back panel indicator lights and the colors of the Power button light... - Page 10 Ethernet Port Indicators Activity Link Table 3 Port Indicators Status Explanation Both indicators are unlit No link. Link ok. Both indicators are lit Activity indicator blinks on activity. DSL Port Indicators Table 4 DSL and Activity and Indicators for DSL Port Indicator Status Explanation...
-
Page 11: Connecting The Cables
Serial port Ethernet ports 0-3 Power cable Two USB ports Only some FW-315 Series appliances support wireless connections. If your appliance does not have WLAN support, proceed to Connecting the Cables below. Connecting the Antennas To connect the antennas Locate the two antennas included in the delivery. - Page 12 Note – The ports and port numbers of the physical appliance must match the interface definitions and Interface IDs that you have defined for the firewall engine in the Stonesoft Management Client. Cable Types Make sure that the copper cables you use are correctly rated (CAT 5e or CAT 6 in gigabit networks).
-
Page 13: Initial Configuration
• Plug-and-play configuration: Connect the antennas (some models only) and the cables to the appliance. The appliance automatically connects to the Stonesoft Installation Server, downloads the initial configuration, and connects to the Management Server. Note – If the appliance does not have a DSL port and no 3G modem is plugged in to the appliance, Ethernet port 0 is the only port that can be used for connecting to the Installation Server. - Page 14 Configuring the Engine with Plug-and-Play Method Plug-and-play configuration is possible only if the engine’s initial configuration has been uploaded to the Stonesoft Installation Server. See the Firewall/VPN Installation Guide or the Online Help of the Management Client for details. To configure the engine with the plug-and-play method...
- Page 15 and contacted the Management Server. The appliance automatically reboots itself after initial contact with the Management Server. See After Successful Management Server Contact (page 22) for more details. If the Plug-and-Play Configuration Fails • If the plug-and-play configuration fails and you had plugged in a USB stick to the appliance, you can check for the reason in the log (sg_autoconfig.log) written on the USB stick.
- Page 16 USB stick and then tries to make the initial contact to the Management Server. • If the connection is successful, the appliance automatically reboots itself and the engine configuration is finished. If you configure the engine with a USB stick, you must set a password for the root account in the Management Client to enable command line access to the engine.
- Page 17 To select the configuration method Do one of the following: • To import a saved configuration, highlight Import using the arrow keys and press Enter. • To skip the import, highlight Next and press Enter. If you selected the Import option, select the configuration file. ...
- Page 18 To set the engine’s timezone Highlight the entry field for Local Timezone using the arrow keys and press Enter. Select the correct timezone in the dialog that opens. Note – The timezone setting affects only the way the time is displayed on the engine command line.
- Page 19 (Optional) Highlight Enable SSH Daemon and press the spacebar on your keyboard to select the option and allow remote access to engine command line using SSH. Note – It is not necessary to enable the SSH daemon now for ongoing management, as this option can also be set through the Management Client.
- Page 20 and virtual channel ID (VCI) settings according to the information that you have received from your service provider. Highlight the Mgmt column and press the spacebar on your keyboard to select the correct interface for contact with the Management Server. Note –...
- Page 21 To activate the initial configuration Highlight Switch Firewall Node to Initial Configuration and press spacebar to activate. Fill in according to your environment. The information must match to what you defined for the Firewall element (Primary Control IP Address). •...
- Page 22 (Optional) Fill in the Key fingerprint (also shown when you saved the initial configuration). Filling it in increases the security of the communications. Highlight Finish and press Enter. The engine now tries to make initial Management Server contact. • If you see a “connection refused” error message, ensure that the one-time password is correct and the Management Server IP address is reachable from the node.
-
Page 23: Maintenance Operations
M a i n t e n a n c e O p e r a t i o n s Connecting to the Engine Command Line You may need to connect to the engine command line, for example, to undo a software upgrade. - Page 24 Resetting the Appliance to Factory Settings Note – Perform a factory reset only if you have a specific need to do so. Consult Stonesoft Support before performing this operation if you are unsure of whether this operation is necessary or not.
-
Page 25: Default Port Settings
This section explains the port settings that are used when the appliance is configured using the plug--and-play method. It also explain the order in which the different types of ports are used to connect to the Stonesoft Installation Server. Note – Use the default port settings explained below also in the properties of the corresponding engine interfaces that you have defined in the Management Client. -
Page 26: Conformity Marks
Ethernet 0 If attempts to connect to the Installation Server through the 3G modem and through the DSL port fail, the appliance tries to connect to the Installation Server through Ethernet port 0. In the Management Client, the corresponding Physical Interface must have a dynamic IPv4 address. C o n fo r m i t y M a r k s CE Marking The following conformity mark is added to the appliance in accordance... - Page 27 Safety: • Dual band products Electromagnetic Compatibility (EMC): • Dual band products National Restrictions and Requirements for Authorization This appliance can be operated within FCC DFS2 band or ETSI/EC DFS band, or other countries which are regulating or are planning to regulate mid-5 GHz band.
-
Page 28: Disposal Instructions
Channel Support Table 6 Supported Channels Country Mode Channels 802.11b/g/n 11 (1 ~ 11) 23 non-overlapping channels: 36, 40, 44, 48, 52, 56, 60, 64, US/Canada 802.11n 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140, 149, 153, 157, 161 802.11b/g/n 13 (1 ~ 13) Major... - Page 29 Stonesoft Appliance Installation Guide This booklet covers the initial installation and configuration tasks specific to your Stonesoft Appliance. For information on how to prepare the Management Center for a new engine installation, see the other available documentation. See inside for fur ther details.
Need help?
Do you have a question about the FW-315 Series and is the answer not in the manual?
Questions and answers