1. Manuals
  2. Brands
  3. Stonesoft Manuals
  4. Firewall
  5. StoneGate FW-5105
  6. Installation manual

Stonesoft StoneGate FW-5105 Installation Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
FW-5105
Appliance Installation Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the StoneGate FW-5105 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Stonesoft StoneGate FW-5105

Summary of Contents for Stonesoft StoneGate FW-5105

  • Page 1 FW-5105 Appliance Installation Guide...
  • Page 2 European Council Regulation (EC) N:o 1334/2000 of 22 June 2000 setting up a Community regime for the control of exports of dual-use items and technology (as amended). Thus, the export of this Stonesoft software in any manner is restricted and requires a license by the relevant authorities.

  • Page 3: Table Of Contents

    (page 5) for information on other available documentation. The use of the appliance is subject to the acceptance of the End User License Agreement, which can be found at the Stonesoft website. You must have a working Management Center on a separate server to bring the appliance(s) operational.

  • Page 4: Getting Started

    StoneGate appliance). 5. Licenses for each component except the Management Client(s). Generate appliance licenses at the Stonesoft website with the POS (proof-of-serial-number) code attached to the appliance. The Web Portal Server is an optional component that can be ordered separately.

  • Page 5: Installation Procedure

    Press F1 in any Management Client window to view the Online Help. All PDF guides are available: • On the Management Center CD-ROM (in the Documentation folder) • At the Stonesoft website at http://www.stonesoft.com/en/support/ technical_support_and_documents/manuals/current/ Install the free Adobe Reader program to view the PDF documents (available at www.adobe.com/reader/).

  • Page 6: Safety Precautions

    S a f e t y P r e c a u t i o n s The following safety information and procedures should be followed whenever working with electronic equipment. Electrical Safety Precautions Basic electrical safety precautions should be followed to protect yourself from harm and the appliance from damage: •...
  • Page 7 General Safety Precautions Follow these rules to ensure general safety: • Keep the area around the appliance clean and free of clutter. • The appliance weighs approximately 33 kg (72 lbs.) when fully loaded. When lifting the appliance, two people at either end should lift slowly with their feet spread out to distribute the weight.

  • Page 8: Unpacking The Appliance

    Operating and Storage Temperatures The allowed operating temperature of the appliance is +10...+35ºC. The allowed storage temperature is -40...+70ºC. Do not operate or store the appliance in temperatures outside these limits. Lithium Battery Precautions Caution – The battery must be replaced by authorized service personnel only.

  • Page 9: Front Panel

    F r o n t P a n e l Front Panel With Cover Power Indicator Front Panel Under the Cover LED Indicators Buttons Hard Drives CD-ROM Drive USB Ports Under the front panel cover, there are hard drives, a CD-ROM drive, and two USB ports.
  • Page 10 Table 1 Front Panel LEDs (Continued) When flashing, indicates a fan failure. When continuously on, indicates an overheat condition, which may be caused by cables obstructing the airflow in the system or the ambient room temperature being too warm. Indicates network activity on the onboard LAN2 Ethernet interface when flashing (check the port number on the back panel).

  • Page 11: Rack-Mounting

    R a c k - M o u n t i n g There are a variety of rack units on the market, so the assembly procedure may differ slightly from what is instructed in this guide. Refer to the instructions that came with the rack unit you are using. The rail assemblies supplied with the appliance are designed for rack depths from 30 to 33 inches.
  • Page 12 Rack precautions • Ensure that the leveling jacks on the bottom of the rack are fully extended to the floor with the full weight of the rack resting on them. • In single rack installation, stabilizers should be attached to the rack. •...
  • Page 13 Installing the Appliance into a Rack Follow the instructions in this section and the precautions laid out in the previous sections above to install the StoneGate appliance into a rack. Also, refer to the documentation that came with the rack. The appliance package includes one set of rail assemblies (two inner and two outer).
  • Page 14 To attach the outer rails to the rack Find the front and the rear outer rails in the package. The front outer rails are marked with R for “right” and L for “left” to show on which side of the rack you must secure them. Front Outer Rail Rear Outer Rail Locate the button on the side of the front outer rail and attach the...
  • Page 15 To install the appliance into the rack Line up the rear of the inner rails with the front of the outer rails. Slide the inner rails into the outer rails, keeping the pressure even on both sides (you may have to depress the locking tabs when inserting).

  • Page 16: Connecting The Cables

    C o n n e c t i n g t h e C a b l e s Connect the cables after installing the appliance into the rack. AC Power Two USB Ports Connectors Serial Port PS/2 Mouse VGA Port Ethernet Ports and Keyboard Connecting Management Cables...

  • Page 17: Connecting Network Cables

    Connecting Network Cables To connect network cables Connect the network cables to the ethernet ports. • The ethernet ports are mapped to Interface IDs during the initial configuration. • See the numbering of the ports on the back panel and in the table below.
  • Page 18 Connecting the Appliance to the Power Supply To connect the appliance to the power supply Connect the power cables to the AC power connectors on the back of the appliance. • It is recommended to connect both power connectors to a power source to guarantee that the appliance can function even if one of the power connectors fails.

  • Page 19: Initial Configuration

    I n i t i a l C o n f i g u r a t i o n Your StoneGate appliance comes pre-loaded with StoneGate engine software. However, before a policy can be loaded on the appliance, you must configure some permanent and some temporary network settings.
  • Page 20 • The keyboard and display console is now inactive and must be activated in a similar way before you can use it. • To define two active consoles, use the command sg-bootconfig. For usage, see “Command Line Tools” in the Firewall/VPN Reference Guide, Administrator’s Guide or Online Help of the Management Client.
  • Page 21 If the Automatic Configuration Fails • If the automatic configuration fails, and you do not have a display connected, you can check for the reason in the log (sg_autoconfig.log) written on the USB stick. • If you see a “connection refused” error message, ensure that the Management Server IP address is reachable from the engine and check the IP addresses you have defined in the Management Client.
  • Page 22 Tip: Type in the first letter to move forward more quickly in the list of keyboard layouts. Note – If the desired keyboard layout is not available, use the best- matching available layout, or select US_English. To set the engine’s timezone Highlight the entry field for Local Timezone using the arrow keys and press E NTER...
  • Page 23 To set the rest of the OS settings Type in the name of the firewall. Type in the password for the user root. This is the only account for engine command line access. (Optional) Highlight Enable SSH Daemon and press the spacebar on your keyboard to select the option and allow remote access to engine command line using SSH.
  • Page 24 Check that the automatically detected drivers are correct and that all interfaces have been detected. To add interfaces manually, click Add and select a device driver. To map the physical interfaces to interface IDs Type in the Interface IDs to define how physical interfaces are mapped to the Interface IDs you defined in the Firewall element.
  • Page 25 To activate the initial configuration Highlight Switch Firewall Node to Initial Configuration and press spacebar to activate. Fill in according to your environment. The information must match what you defined for the Firewall element (Primary Control IP Address). • If the engine and the Management Server are on the same network, you can leave the Gateway to management field empty.
  • Page 26 (Optional) Fill in the Key fingerprint (also shown when you saved the initial configuration). Filling it in increases the security of the communications. Highlight Finish and press E NTER The engine now tries to make initial Management Server contact. • If you see a “connection refused” error message, ensure that the one-time password is correct and the Management Server IP address is reachable from the node.

  • Page 27: Command-Line Management

    C o m m a n d - L i n e M a n a g e m e n t To permanently activate the serial console Login to the command line (using SSH, keyboard and display) as user Root with the password you have set for the appliance. Run the command sg-bootconfig --secondary-console M a i n t e n a n c e O p e r a t i o n s Common maintenance operations for this StoneGate appliance are...
  • Page 28 Replacing Power Supply Modules Caution – Unplug the power cord from the power supply module before removing the power supply module from the appliance. To replace power supply modules Locate the release tab on the left side of the power supply. Release Tab Handle Push the release tab to the right to release the power supply from...
  • Page 29 Replacing Appliance Fans There are three front fans and two rear fans on the appliance. Before replacing appliance fans, you must first open the appliance’s top cover. To replace appliance fans Remove the screw that secures the cover to the appliance, and press the release tabs to release the cover from its locking position.
  • Page 30 Fan 4 Fan 5 Fan 3 Fan 2 Fan 1 Press the release tab located on the side of the appliance fan to release the fan from its locking position. Release tab on front fan Release tab on rear fan Remove the fan from the appliance and slide the new fan into the fan housing.
  • Page 31 Reverting to Previously Installed Software Version This procedure allows you to undo a software upgrade. The appliance has two working partitions. One is designated as active and the other as inactive. The inactive partition is used for upgrades and the status is switched between the partitions when the upgrade is ready to be activated.
  • Page 32 Switch Firewall Node to Initial Configuration option. Note – Perform a factory reset only if you have a specific need to do so. Consult Stonesoft Support before performing this operation if you are unsure of whether this operation is necessary or not.

  • Page 33: Port Indicators

    P o r t I n d i c a t o r s The port indicators provide information on the activity and link status of the ports. Motherboard Ports Activity Link Table 4 Motherboard Port Indicators Indicator Color Explanation Activity Amber Link ok, blinks on activity.

  • Page 34: Disposal Instructions

    10 Gigabit Fiber NIC ACT/LINK Table 5 Indicators in 10 Gigabit Fiber NIC Indicator Status Explanation ACT/LINK Link ok. Blinks on activity. D i s p o s a l I n s t r u c t i o n s Dispose of the appliance separately from household waste at an appropriate waste disposal facility at the end of its useful service life.
  • Page 35 Suite 900 tel. +358 9 4767 11 Atlanta, GA 30338, USA fax. +358 9 4767 1234 tel. +1 866 869 4075 www.stonesoft.com fax. +1 770 668 1131 Copyright 2009 Stonesoft Corporation. All rights reserved. All specifications are subject to change.

Table of Contents