Watchguard Firebox II Config Files Location

Posted on 2005-04-19
Last Modified: 2013-11-16
Anyone know how I can get the configuration files from a Watchguard Firebox II+. I have a client who is upgrading to a PIX and I need to get the ruleset for the configuration of the new firewall. The client has supplied me with the actual rule-set but it makes reference to objects (hosts/host-lists) which must be defined in some other file.

Not having played with these boxes too much, it would be great if some-one could give me a straight-forward location for TFTPing or some method of getting it through the GUI.

Question by:mellowmarquis
    LVL 16

    Expert Comment

    The watchguard is configured from a PC running the management software. If you run up that software you can either sluirp the current settings off the box or you can open the saved copy of them without looking at  the box itself.
    LVL 2

    Author Comment

    ccomely - Thanks but I'm hoping someone can tell me how to do this. I need to pass on instructions to the client in very simply language. I have no access to the box. If the files are stored locally on the management machine, is there a directory I can just get them to zip up and send to me or do I need to get him to take screen-shots of the management interface. And if screenshots are required, I need to know which menu he should navigate.

    Forgive the noob nature, but I'm a PIX person and just want to get all the info I need to do the build.

    Thanks again for your help
    LVL 5

    Accepted Solution

    everytime you log into the firewall, the computer that is used stores a text file copy of the watchguard conf file.

    it should be in the watchgaurd directory withing your program files. The directory will be based on ip address, a folder is created for each IP so you'll need to drill down .

    or you could run the SMS client on the PC and connect to the firewall,  once policy is loaded, simply choose 'file-save as file'. use this method as it ensures you get the latest version of the policy.

    you'll get the actuall conf file, it will make more sense to you once you see it in text form howver, if aliases are used, you may be better off looking up the details of those alias on the firewall via SMS client itself in order to replicate them.

    LVL 2

    Author Comment

    Thanks tmehmet, you hit the nail right on the head.


    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
    To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

    754 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now