• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1575
  • Last Modified:

Watchguard Firebox II Config Files Location

Anyone know how I can get the configuration files from a Watchguard Firebox II+. I have a client who is upgrading to a PIX and I need to get the ruleset for the configuration of the new firewall. The client has supplied me with the actual rule-set but it makes reference to objects (hosts/host-lists) which must be defined in some other file.

Not having played with these boxes too much, it would be great if some-one could give me a straight-forward location for TFTPing or some method of getting it through the GUI.

TIA
0
mellowmarquis
Asked:
mellowmarquis
  • 2
1 Solution
 
ccomleyCommented:
The watchguard is configured from a PC running the management software. If you run up that software you can either sluirp the current settings off the box or you can open the saved copy of them without looking at  the box itself.
0
 
mellowmarquisAuthor Commented:
ccomely - Thanks but I'm hoping someone can tell me how to do this. I need to pass on instructions to the client in very simply language. I have no access to the box. If the files are stored locally on the management machine, is there a directory I can just get them to zip up and send to me or do I need to get him to take screen-shots of the management interface. And if screenshots are required, I need to know which menu he should navigate.

Forgive the noob nature, but I'm a PIX person and just want to get all the info I need to do the build.

Thanks again for your help
0
 
tmehmetCommented:
everytime you log into the firewall, the computer that is used stores a text file copy of the watchguard conf file.

it should be in the watchgaurd directory withing your program files. The directory will be based on ip address, a folder is created for each IP so you'll need to drill down .

or you could run the SMS client on the PC and connect to the firewall,  once policy is loaded, simply choose 'file-save as file'. use this method as it ensures you get the latest version of the policy.

you'll get the actuall conf file, it will make more sense to you once you see it in text form howver, if aliases are used, you may be better off looking up the details of those alias on the firewall via SMS client itself in order to replicate them.

0
 
mellowmarquisAuthor Commented:
Thanks tmehmet, you hit the nail right on the head.

Cheers.
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now