Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 748
  • Last Modified:

Firebox

My company is using the Firebox III 700.  I have never used it before.  
How can I tell what users are doing?  

My boss is concerned with the security.  
Can I show him something that would indicate I am blocking the bad traffic?

Can I administer this box from home using the control center software?  Or is there a better way.

Does anyone know how to setup VPN with it.

I have the books and have read the online documentation.  I still have these questions.  

Jonathan
0
stewartje
Asked:
stewartje
  • 4
  • 3
  • 2
1 Solution
 
ADSaundersCommented:
Hi stewartje,
>My company is using the Firebox III 700.  I have never used it before.  
> How can I tell what users are doing?  
You can only tell what users are doing if they log in to the firebox security using the supplied java app. Then you can simply watch the firebox logs.
> My boss is concerned with the security.  
> Can I show him something that would indicate I am blocking the bad traffic?
Yes, run any of the log reports and print it for him.
> Can I administer this box from home using the control center software?  Or is there a better way.
Yeeesss?? But you'll be controlling a security gateway from it's untrusted network! That is if you are doing it over the Internet as opposed to a dedicated dial-in circuit.
> Does anyone know how to setup VPN with it.
Noooo.. not exactly, we needed to be shown by the support guys who installed it. we got all our requred vpns set up then. Could be asking the same question if we get a new employee requiring vpn access.

Cheers! Alan
0
 
stewartjeAuthor Commented:
I have no logs.  I treid to open them and none could be found.  My firebox says that i am not logging.  How do I setup a log?  How do I create the log file?  

jon
0
 
ADSaundersCommented:
Hi, First you need to set up security event  processors on the machine(s) that you will be logging to. This is accomplished by running the firebox setup on those machine(s) and selecting that option only. When the security event processor(s) is/are running, go back to the machine on which the firebox management console is running, connect to the firebox, and load the policy manager.
Click on setup, and select logging. There you will be able to add the ip address(es) of that(those) machine(s) running the security event processor. If you have more than one sep running, then the firebox will log to the first specified as long as it is available.

.. Alan
0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 
RaybansCommented:
what type of VPN do you want

the VPN's are straight forward to set up

and if you down load the documentation for the type you want it should be easy to do, you might need to be a little more specific in your questions if you want more.

ALL logging can be kept and sent ot a logging server for you to generate reports on as well.
0
 
stewartjeAuthor Commented:
I am not sure about the type of VPN.  Coould you give me some background on the type??  This issue has turned in to a high priority for the boss.  

Still need to setup the software for processing the log.  I am going to use my laptop as the one where the log files go to.
 thanks

jon
0
 
RaybansCommented:
is this an office to office VPN

or a remote client to Office VPN

what is the boss expecting
0
 
RaybansCommented:
http://www.watchguard.com/help/documentation/firebox.asp

this links will give you some domcumentation specific to your Watchguard Firebox.
0
 
stewartjeAuthor Commented:
Raybans,

The VPN is remote client to Office.  I also need a connection to our server from my home.  The boss needs a HIPPA compliant connections between his computer at home and the network here.  We also have 3-4 other people that could work from home if they could access the network.  

Thanks

Jon
0
 
RaybansCommented:
not sure of what HIPPA needs, as I am in Australia

but you can choose from PPTP protocol which you can use the built in software in the Windows2000 or XP OS to connect with

or you can use an IPSEC client for a more secure connection.

both are set up slightly different.

finding out what the minimum requirements from the HIPPA body would be your first step.

Also you should try setting up an account on the watchguard website, and watchguard webforums

you will probable get a very direct answer on the question.

Sounds like you will need to use IPSEC thoough.

i would check with your Firewall supplier what your licensing is.

check this as well

http://www.watchguard.com/products/ruvpn.asp

(you may have a couple licences for the MUVPN client already, or if you dont have an account activate it and get 5 licenses)


you should check what live security subscription you have and if it has been activated or not.
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

  • 4
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now