HotBrick VPN 6000 User Manual
Contents
1. cccceceeceseeeeeeeeeeeeeeeeeeeseeatseeaeentaeeanentanas 32 1 12 Errors al REE OVE arine aa AE R E 33 r HotBrick VPN 6000 user manual Ho Brick 1 Installation 1 1 Requirements To insure a smooth installation of your HotBrick VPN 6000 we should make sure to have all the necessary equipment and information ready To configure your firewall for the first time we will need 1x HotBrick VPN 6000 1x Standard power cord bundled with HotBrick VPN 6000 2x UTP RJ45 cables bundled with HotBrick VPN 6000 1x PC or notebook computer 1x HotBrick VPN 6000 license key lf we are to set up your firewall to handle one or more Internet connections we will also need Connection details provided by your Internet Service Provider ISP 1 2 Getting to know your HotBrick VPN 6000 1 2 1 Front 1 LCD display 7 FLEXI port SR pcre Sey 2 Serial port 8 FLEX1 connection LED ee Fr 3 WANT port 9 FLEX2 port 4 WAN1 connection LED 10 FLEX2 connection LED 5 WAN2 port 11 FLEX3 port 6 WAN2 connection LED 12 FLEX3 connection LED 13 FLEX4 port 14 FLEX4 connection LED 1 2 2 Back 15 Power socket 16 Power switch 17 More googog 1 3 Hardware installation gt Use the power cord to connect the HotBrick VPN 6000 s power socket 15 to a standard wall power outlet gt Switch the firewall on using the power switch 16 on the back of the device Booting the hardware for the first time may take u2. which gives a summary of firewall settings in the selected backup Set revision 193 05 01 20 page 26 33 Hot i HotBrick VPN 6000 0 Brick l user manua gt Click download to download a copy of the backup set we ve just made to your computer Whenever you contact support personnel about a problem with your configuration they may ask you to send a backup set containing your current firewall settings page 27 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick 1 8 Changing the administrator s password No system can be secure using a factory default password Before we deploy the HotBrick VPN 6000 in a real network environment we therefore advise you change the administrator s password A good administrator s password is at least eight characters long contains letters preferably in both upper and lower case as well as numbers or non alphanumeric characters It can not be found directly in any dictionary but should still be memorable to those in the know gt Think up a good administrator password It is essential that you not forget this password You will not be able to manage your firewall without it It is strongly recommended you file at least one copy of your password in a sealed envelope to a safe or to your direct superior We change the administrator s password from the Configuration context gt Click on the red text Configuration on the left hand side of the
3. Configuration ready please review and save apply the changes gt In the final confirmation screen click done to close the wizard The top left hand corner of the screen of our firewall s management interface should now show the text Apply changes Changes made in the Quick install wizard are only made permanent once you click this text Brick License number vujwqaC1 GL8LFW8TL1xPZn40U1 CAekqBUV9gN2LxA OLcGfA amp s ly changes HotView Current Status o HotBrick firewall Quick Install x 5 Contact information Configuration j U S A Miami Netherlands Amsterdam Brazil So Paulo Setup subsystems HotBrick U S A HotBrick Europe HotBrick Brazil f 7243 NW 54th Street Generatorstraat 26 Rua Francisco Tramontano 100 cj 42 iniaenoi Sean ne estes Miami FL 33166 U S A Hengelo Ov 7556 RC Netherlands So Paulo SP 05686 010 Local Area Networks Tel 305 396 0888 Tel 31 74 249 1004 Brazil LAN E mail support hotbrick com E mail support hotbrick ni Tel 11 3755 1122 Port forwarders PNAT Web www hotBrick com Web www hotbrick nl E mail suporte hotbrick com br IDS IPS management Web www hotbrick com br VPN IPSec tunnels VPN PPTP L2TP users DMZ setup revision 193 05 01 20 page 24 33 r HotBrick VPN 6000 user manual Ho Brick Please note that when you do this your firewall s IP address will probably change Since the IP address of the
4. Using the Quick Install wizard will reset the interface to the factory defaults Configuration You will loose all earlier setup data System Status Time 19 96 3018 Uptime 16 min 1 6 1 Setting up your LAN connection The first step after starting the wizard is to set up your LAN Local Area Network connection This is the connection between the firewall and your local network As a firewall the HotBrick VPN 6000 should serve as a buffer between your Internet revision 193 05 01 20 page 18 33 r HotBrick VPN 6000 user manual Brick y connections WAN or Wide Area Network connections and your local network or LAN The Quick Install wizard will allow you to enter network settings specific to your local network First we enter a label to use for the local network Default setting is lan which seems sensible In more complex network environments with more than one LAN you may opt to use a more descriptive name like public lan or accounting lan instead In any case make sure the names you use are unique throughout your organization to avoid confusion arising from identical network names for different networks gt Enter a network name for your local network The next values to enter are an internal IP Address for the firewall in the context of the LAN and a net mask Together the IP Address and the net mask define a network address for the local network In our example we use an I
5. Area Connection Connection speciftic DNS Suffix lan IP Address 197 168 599 101 n L h H et M a5 k m UI m G G Uj Uj m G m m i F 5 5 C F 5 5 UI pi 5 5 G 0 D T a L E at EW cpi G m m m m m m G m z 14 F 15 5 m q q m q G C Documents and Settings Administrator gt page 9 33 version 193 05 01 20 HotBrick VPN 6000 user manual Brick 0 gt If the IP Address line does not list an address starting with 192 168 99 please try typing ipconfig renew This should force the PC or Notebook to request a new network address If you still fail to get an IP Address in the correct range please refer to section 1 12 Errors and recovery Enabling DHCP using Windows XP gt Using the Windows Start menu and Settings sub menu open the Control Panel Control Panel File Edit View Favorites Tools Help T cs a x Search gt Folders Address Atl Filter Accessibility Add Hardware Administrative Automatic Date and Time Options Tools Updates Directs Display Folder Options Game Internet Keyboard Controllers Options R 2 b MPEG Layer 3 Mero Network Network Setup Phone and Power Options Configuration ImageDrive Connections Wizard Modem es gg eo Printers and QuickTime Regional and Scanners and Scheduled Security Sounds and Faxes Language Cameras Tasks Center Audio Devices FF BO bid BB amp Symantec System Taskbar and Tweak UI User Accounts Li
6. Open a web browser on the PC or Notebook you Nave just configured gt Enter the address https 192 168 99 99 12000 into the address bar dj about blank Microsoft Internet Explorer File Edit wiew Favorites Tools Help da Back p ix fat Gi search 4J Favorites ey media SE Er T p Address https 192 168 99 99 12000 Go d gt When prompted for a user name and password enter admin user name and password as password gt Click OK If you get a timeout not found or permission denied error please refer to section 1 12 Errors and recovery revision 193 05 01 20 page 14 33 r HotBrick VPN 6000 user manual Ho Brick 1 5 Entering a valid product key The factory defaults of your HotBrick VPN 6000 do not contain it s product key Without the product key none of the changes you make in the firewall s management interface can be applied Therefore it is essential that the very first thing we do after establishing a connection is entering a valid product key Once you have logged in to the firewall s management interface you should see the following welcome screen Brick License number Empt SLi Firewall VPN 6000 Current Status HotBrick firewall Contact information Quick Install Configuration USA Miami Netherlands Amsterdam HotBrick U S A HotBrick Europe 7243 NW 54th Street Generatorstraat 26 Rua Francisco
7. Tramontano 100 j 42 Miami FL 33166 U S A Hengelo Ov 7556 RC Netherlands So Paulo SP 05685 010 Tel 305 398 0888 Tel 31 74 249 1004 razi E mail support hotbrick com E mail support hotbrick n Tel 11 3755 1122 Web www hotBrick com Web www hotbrick nl E mail suporte hotbrick com br Web www hotbrick com br System Status A blue triangle in the upper left hand corner of the screen indicates we are looking at the Current Status 1 of the firewall Tabs labeled Control 2 HotView 3 Logs 4 and Statistics 4 provide access to other screens in the Current Status context The red warning message at the top of the screen 5 indicates the current lack of a valid license key The system status on the left hand side of the screen about half way to the bottom displays some statistics concerning the operation of your firewall s hardware These Statistics are updated once every 10 seconds to insure the accuracy of the information Immediately left of the red warning text in the upper left hand corner of the screen is an icon of a globe fronted by a magic wand 6 gt Click this icon 7 to enter your license key page 15 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick The Setup License Keys dialog window appears I Setup License keys Harddisk Serial number MR H455M4H28KP B Firewall License Key vujwqacd GLELFVSTL1xPZ n4olliCAekqBUVEg
8. a default gateway by your ISP After choosing Static Nat as type of Internet connection the next screen will offer the opportunity to enter this data HT Quick Install wizard OE In this step you ll will setup the WAN 1 connection Please provide the new Paddress 213 84 145 1 dn And the corresponding netmask 255 255 255 0 The default gateway 2 13 84 145 1 Next Back Cancel gt Enter the IP address net mask and gateway address If you are in any way unsure about the correct number to enter please contact your ISP for confirmation revision 193 05 01 20 page 22 33 HotBrick VPN 6000 user manual TH Brick Setting up WANI using a PPTP or PPPoE connection PPTP or PPPoE Internet connections are not identical but since both require user authentication the options to enter are much the same gt Enter the type of Internet connection PPTP or PPPoE after the text Please choose the type of connection in the example screen below we use PPTP Please remember that this procedure also applies for PPPoE connections gt Enter the user name and password provided by your ISP in the corresponding fields If you do not know the correct type of connection user name and or password please contact your ISP for these details Some ISP s also require you request a specific IP address of gateway If such is the case you can put these values in the optional IP address and gateway fields
9. anyone wishing to leave this option open will do well to choose a different network address for each LAN for example 192 168 0 0 192 168 1 0 192 168 2 0 etc page 19 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick 2 Quick Install wizard OE In this step you ll setup the FLEX port LAN The label for the internal lansegment lan Internal ipaddress of the firewall The netmask of the internal lansegment 24 est Back Cancel As an example only we will make use of a 192 168 0 0 network in this user manual We will set the firewall s internal IP address to 192 168 0 1 and the net mask value to 24 as befits a 192 168 x 0 network gt Enter a firewall IP address gt Enter the corresponding net mask gt Write down the IP address and net mask values for later reference gt Click next to continue revision 193 05 01 20 page 20 33 HotBrick VPN 6000 user manual TH Brick 1 6 2 Setting up your default Internet connection The next step in the wizard is to set up your WAN Wide Area Network connections These are your connections to the Internet The HotBrick VPN 6000 allows for two WAN connections one default connection and one fall back The default connection we name WAN and we will eventually connect the modem or router to the WAN1 network port The fall back connection we name WANZ2 and like with WAN1 the modem or router for this network connection if any w
10. screen to enter the Configuration context gt Activate the Config tab by clicking it R can Brick Firewall VPN 6000 License number vuvlo SIGL XqgqAQDEjMuheYWHZdnaYh9t uj21i fy HotView Current Status Activation E Quick Install save Activate changes i Configuration load Revert to active config i Printable Configuratie Setup subsystems z Intenet Comections Advanced Configuration Local Area Networks LAN Port forwarders PNAT VPN IPSec tunnels VPN PPTP L2TP users DMZ setup Password pre bk Again fewer change Edit the backupsets System password Make new backup Name Upload backupset Backupset Delete applied config 1105532939 5 2005 01 12 12 28 59 Load Download View gt Under the heading System password next to Password enter your new administrator s password gt Enter the same password again one line lower next to Again gt Click change to change the password revision 193 05 01 20 page 28 33 r HotBrick VPN 6000 user manual Ho Brick After changing the administrator s password your own login based on the previous administrator password will also expire It will therefore be necessary to provide a user name and password again before continuing gt Log in with the user name admin and the password you have just entered page 29 33 version 193 05 01 20 HotBrick VPN 6000 user manua
11. the computer start a web browser gt In the address bar of your web browser type https followed by the IP address of the firewall which you have written down followed by 12000 In our example this would lead to the address https 192 168 0 1 12000 Then press enter about blank Microsoft Internet Explorer iol xj File Edit view Favorites Tools Help Ea gt When prompted for a user name and password enter admin user name and password as password then click OK If you get a timeout not found or permission denied error please refer to section 1 12 Errors and recovery page 25 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick 1 7 Backup sets The new settings you ve just applied have been stored in the firewall as current configuration but also as a backup set A backup set is a snapshot of the HotBrick VPN 6000 s configuration in a single file These backup sets can be uploaded to the firewall or downloaded from the firewall Thus it is possible to send or receive an entire firewall configuration in a single file You can also store a backup set on another computer or backup medium as a backup of the HotBrick VPN 6000 s configuration Operations on backup sets are performed in the Config tab of the Configuration context gt Click on the red Configuration text in the left hand side of the screen to
12. you have a routed subnet or a fixed IP address for your Internet connection and have been provided with an IP address a net mask and a standard gateway address by your Internet service provider ISP please choose Static NAT page 21 33 version 193 05 01 20 HotBrick VPN 6000 user manual TP Brick jil instead Be sure to have the connection details provided by your ISP at hand because you will need these in the next screen Some Internet providers may have you authenticate before connecting to the Internet preferring to use PPTP or PPPoE If you have such a connection choose PPTP PPPOE Like with a Static NAT connection setting up a PPTP PPPoE Internet connection will require connection details provided by your ISP When in doubt about the type of Internet connection to choose please contact your ISP gt Select the type of Internet connection appropriate to your situation gt Press next to continue Setting up WAN1 using DHCP The easiest way to connect WAN1 to the Internet is using DHCP Generally when choosing DHCP no further settings are required for an Internet connection After pressing next you will directly be offered the opportunity to set up your WAN2 interface fall back Internet connection Setting up WAN1 using a Static Nat connection When using a single static IP address or a routed subnet for your network connection you will have been provided with an IP number a net mask and
13. 0 Enabling DACP using Mac OS Kis or ne SE anna rane sideaainieans 12 1 4 2 Log in on the firewall management INTErface cceceeeee ee eeeeaeeeeaeeeeeeeneess 14 ES Enternng a Valid DFOGUCE KEY SE acu A wes tux gudymadewiae tans idle yaa 15 126 RUNING Ne OUIEK INStall AMI EET aoon eunereneddiantatetens dea daenia er rr 18 1 6 1 Setting Up your LAN CONNECTION ccccceseeceseeeeeeeeeeeeeaeeataeeseeneatsneaneataneass 18 1 6 2 Setting up your default internet CONNECTION ccccececeseeeeeeeeeeeeaeeeeeteneess 21 Setting Up WAN Using DACP isaac renee no A le Reid 22 Setting up WAN using a Static Nat CONNECTION cccccececeeeeeeeeeeeteeeeeeaeanees 22 Setting up WANL1 using a PPTP or PPPOE CONNECTION cccceceseeeeeeeeeeeeaeaeees 23 1 6 3 Setting up your fallback internet CONNECTION ccccccceeeeeeeeeeteteeeseeeeeeneess 23 1 6 4 Confirming and applying FESUILS cccecececeseeeeeeeeeeeeeeeeeaeeeeeeaesaeetsaeeneeteneass 24 1 6 5 Connecting to the firewall s management INterface ccceceeeeeseeeeeeeeeees 25 TS BICKUD SES E A N A EN 26 1 8 Changing the administrator s password ssssssssrrssrrrsrrrrrsrrrrsrrrrrerrreerrrreerene 28 1 9 Setting the firewall s time ANd Aate cccceceeceseeeeeeeeeeeeeeaeeeeaeeeeeeeseeeeaneaneaneas 30 1 10 Optionally disable the firewall s DHCP Servel cccccececeeeeeeeeeaeeeeeesneeneaneas 31 1 11 Connecting LAN and WAN CableS
14. Edit View Favorites Tools Advanced Help da Back p S d search Lat Folders Eg LAS DE w A FEM Make New Local Area Connection Conned an 3 objectis gt In the Network and Dial up Connections window double click the Local Area Connection icon page 7 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick 0 The Local Area Connection Status window should open gt In the Local Area Connection Status window click the Properties button Local Area Connection Status R x General Connection Status Connected Duration 04 06 39 Speed 100 0 Mbps Activity CE i Sent 1 Hecerwed L 4 Packets 658 707 974 689 i Disable The Local Area Connection Properties window should open Local Area Connection Properties i x General Connect using Be Intel R PRO 100 5 Desktop Adapter Components checked are used by this connector m Client for Microsoft Networks a File and Printer Sharing for Microsoft Networks internet Protocol TCP IP 2 Install Uninstall ke Description Transmission Control Protocollntermet Protocol The default Wide area network protocol that provides communication across diverse interconnected networks IM Show icon in taskbar when connected Ok Cancel gt In this window select Internet Protocol TCP IP the blue line in the example be
15. HotBrick VPN 6000 user manual version 193 2005 01 20 Title HotBrick VPN 6000 user manual Author Martijn Bakker Revision 193 05 01 20 All rights reserved No part of this publication may be reproduced stored in a retrieval system or transmitted in any form or by any means electronic mechanical photocopying recording or otherwise without the prior written consent of the publisher Microsoft and Windows are trademarks of Microsoft Corporation in the United States and other countries Apple and Mac OS are trademarks of Apple Computer Inc registered in the U S and other countries Table of Contents L INSta AON wavivicriatinnesvareuaetissiiaisasisersnisenetiareavaie ae SEERE eerie eines 5 FARE UENS on circa tana oeatertscnteduiccevonebitedvaauintaasensiw E 5 1 2 Getting to Know your HotBrick VPN 6GOOO ccccecece ee eeeeteeteeeeeeeeeeeaeaeeaesneatanes 5 Zed TOME Bet SENER SENERE SEE Ree FSR Eee tania sent E aie meee ahi E 5 Es ACK sep erate artes ec vad wee ca Taare nase E s dane eee esau eee een ae 5 1 3 Hardware INStallatlon suis inrsin AAE 5 1 4 Connecting to the management INCTEACE ccecece cece eeeeeeeeteeeeeeteeeaeeaeeeeatseeatanes 6 1 4 1 Configure a notebook or PC to use DHCP ccccccceeceeeeeeeeeeeeeeeeeeeeeeeeaeeneaes 6 Enabdling DECP Using WIiNdOWS 2000 ma ai danerne 6 Enabling DHCP using Windows XP cccccececeseeeeeeeeeeaeaeeeeeeseeeesaeaeeatansaneneaeas 1
16. Most users may simply leave these fields empty i Ouick Install wizard OR In this step you ll will setup the WAN connection Please choose the type of dialin connection Provider s Username Provider s Password Optionally provide the new ipaddress f 13 84 145 135 pasmi If you leave the Paddress blank a random ipaddress will be used in the negotiation with the provider Next Back Cancel And the new gateway gt f required fill in the new IP address and new gateway fields gt Press next to continue 1 6 3 Setting up your fall back Internet connection Next you will be asked to set up your fall back Internet connection WANZ2 Setting up a fall back Internet connection is much the same as setting up your default connection covered in the previous paragraph Therefore we will not include a detailed description here If you do not have a fall back Internet connection or do not wish to use one please choose DHCP as the type of Internet connection for WAN2 Your firewall will automatically detect the absence of a connection on WAN2 and will not make use of this connection page 23 33 version 193 05 01 20 HotBrick VPN 6000 user manual TP Brick il 1 6 4 Confirming and applying results After we have set up our LAN and our default and fall back Internet connections the Quick Install wizard is done Bi Edit an Internet Connection Ele
17. P Address of 192 168 0 1 with a net mask of 24 bits A net mask of 24 3 8 means that the first three numbers from the IP Address will be part of the network address so all addresses in the network start with 192 168 0 If you already have a local network then this network address should have a predefined value if uncertain contact your network administrator In this case please note that HotBrick VPN 6000 displays the net mask as a number of bits not in the 255 255 255 0 format If you do not have a local network then you need to pick an address for your local network first There are a number of possible network addresses set aside for use in a local network The table below lists the possible IP addresses their net masks and uses Firewall IP address Net mask Network Address Internal IP maximum addresses addresses 192 168 x z 24 192 168 x 0 192 168 x n 254 172 16 x z 24 172 16 x 0 192 168 x n 254 10 x y Z 8 10 0 0 0 10 n m p 16 million Where x y can denote any predefined number between 0 and 255 z can denote any predefined number between 1 and 254 while n m and p may be any number between 1 and 254 Generally a local network does not need over 254 IP addresses per distinct local network We would therefore recommend you choose a 192 168 x or 172 16 x network Users who intend to use the HotBrick VPN 6000 to connect their local network to another LAN by means of a VPN tunnel or indeed
18. enter the Configuration context gt Activate the Config tab by clicking it once Under the heading Edit the backup sets you will find the stored backup sets as well as buttons for possible operations on the backup sets TIR Brick Licens e number vuvlo6S1GL XqAQDEjMuheYWHZdnaYh9t uj2li AN Firewall VPN 6000 i Current Status Activation Quick Install save Activate changes Configuration load Revert to active config i Printable Configuratie Setup subsystems z Internet Comections Advanced Configuration Enable Advanced options Port forwarders PNAT REESE LEDER System password DMZ setup Password f a _ change Edit the backupsets Make new backup Name a HE Upload backupset Backupset Delete applied config 1105532939 5 2005 01 12 12 28 59 Load Download View At the moment we have one stored backup set applied config 1105532939 5 in the above example Pressing Delete before the name of the backup set on the left will delete the backup set from the firewall s memory This will not affect the firewall s current settings but is still inadvisable On the right hand side of the backup set s name we find the other options Load which restores the firewall s configuration to the values stored in the backup set Download which we can use to download a backup set with the firewalls current settings to our computer and View
19. erties window select Internet Protocol TCP IP the blue line in the above example gt Then press Properties The Internet Protocol TCP IP Properties window should open page 11 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick jil Internet Protocol TCP IP Properties General Alternate Configuration You can gel IF settings assigned automatically if your network supports this capability Othermize pou need to ask your network administrator for the appropriate IP settings Obtain an IP address automatically O Use the following IP address Obtain ONS server address automatically O Use the following DNS server addresses L J exe gt In the Internet Protocol TCP IP Properties window make sure settings are as in the above example Obtain an IP address automatically and Obtain DNS server address automatically are selected gt Press the OK button to confirm your new settings gt To verify your settings open a Command Prompt From the Start menu through All Programs in the Accessories sub menu gt In the command prompt type ipconfig The output should look like this ce Command Prompt Microsoft Windows XP Version 5 1 2600 Cc Copyright 1985 2001 Microsoft Corp C Documents and Settings Acaministrator gt ipcontig Windows IP Configu
20. firewall will change the address we used to log in to the management interface will no longer point to the firewall Hence we will lose our connection to the firewall temporarily To log in to the management interface after applying changes we will need the firewall s new IP address gt Make sure you have the firewall s new IP address in the local network written down gt Click Apply changes If you used the Quick install wizard to alter the firewall s IP address on the local network the we will lose our connection to the firewall after applying changes The next paragraph deals with re establishing the connection 1 6 5 Connecting to the firewall s management interface After we ve applied the changes made in the Quick install wizard we may loose our connection to the firewall s management interface because according to the firewall s new local network settings our PC or notebook is no longer on the same local network as the firewall is If such is the case then we have to make a new connection to the firewall before we can proceed The first step towards this is to obtain a new network address which is valid according to the firewall s local network settings A good way to do this is to reboot the PC or notebook Experienced system administrators may opt to renew their machine s DHCP lease instead Remember to verify the addresses you obtain by this method gt Reboot the PC or notebook gt After rebooting
21. h2LxAOLeGfa Next Back Cancel gt Enter the license key provided with your HotBrick VPN 6000 gt Press Next to continue If you entered the license key correctly the next window should allow you to confirm the changes and return to the firewall management interface ET Setup License keys EEI Configuration ready please review and save apply the changes Done If you have incorrectly entered a license key you will be asked to enter the license key again If the license key should fail repeatedly the license key may not match your hardware Please refer to section 1 12 Errors and recovery revision 193 05 01 20 page 16 33 r HotBrick VPN 6000 user manual Ho Brick After confirming your entered license key you will see the following screen Brick Firewall VPN 6000 License number vujwga Ci GLeLFW TLIxPZnd4oU1CAekgBUVSgN2LxAOLeGfA i Config HotView Current Status HotBrick firewall Quick Install i PER Contact information Configuration WE aaa U S A Miami Netherlands Amsterdam Brazil So Paulo Seip subnynieme HotBrick U S A HotBrick Europe HotBrick Brazil 7243 NW S4th Street Generatorstraat 26 Rua Francisco Tramontano 100 ej 42 Internet Connections Miami FL 33166 U S A Hengelo Cv 7556 RC Netherlands So Paulo SP 05688 010 Local Area Networks Tel 305 308 0888 Tel 31 74 249 1004 Brazil LAN E mail support hotbrick com E mail support hotb
22. ill be connected to the WAN2 port First we will setup your WAN1 Internet connection 2 Ouick Install wizard OR In this step you ll will setup WANT conne ction Connection name default This connection uses ethernet port WAN 1 Please select the type of internet connection Static N at j In this screen we can enter a name for the WAN1 default Internet connection Per default this name is set to default WAN2 is named fall back per default Any name can be entered here You are encouraged to use a descriptive name for the Internet connection For example MyISP DSL or AOL dial in This way it will be easier to tell two separate Internet connections apart in the future gt Enter a Connection name for your default Internet connection The type of Internet connection to choose is slightly more complicated Different types of Internet connections will require different values As a consequence the next screen in the Quick install wizard will look slightly different based on the choice you make here If you have an Internet connection by means of an ISDN router or a cable or DSL modem you will generally be able to choose DHCP Choosing DHCP is the easiest possible configuration Choosing DHCP will allow you to skip the next screen in the Quick install wizard entirely You do not have to enter any connection details as these can be automatically configured However when
23. l TP Brick 1 9 Setting the firewall s time and date The configuration of your HotBrick VPN 6000 is not fully complete until you have set the correct time and date It is customary for computers connected to the Internet to use the network time protocol NTP to regularly update their date and time gt Click on the red text Current Status on the left hand side of the screen to enter the Current Status context gt Once in the Current Status context find the current time on the left hand side about half way to the bottom gt Press the globe and magic wand icon right of the time indicator The Setup TimeZone and NTP servers window will open B Setup TimeZone and NTP servers OR Step S wizaction edit wiztype time wizdir up wizlabel newwizlabel Timezone Europe Amsterdam NTP servers ntp xs4all nl Next Back Cancel gt From the Timezone menu choose your timezone gt Enter at least one valid NTP server under NTP servers for example us pool ntp org gt Click next to continue gt Click done to confirm your changes Your HotBrick VPN 6000 will now use the Internet connections to keep it s internal clock and calendar synchronized revision 193 05 01 20 page 30 33 r HotBrick VPN 6000 user manual Ho Brick 1 10 Optionally disable the firewall s DHCP server Per default the HotBrick VPN 6000 is set to use a DHCP serve
24. low gt Click the Properties button revision 193 05 01 20 page 8 33 HotBrick VPN 6000 user manual TPT Brick J The window Internet Protocol TCP IP Properties should open Internet Protocol TCP IP Properties i 2 x General You can qet F settings assigned automatically if pour network supports this capability Othenvise you need to ask your network administrator for the appropriate IP settings mE Use the following IP address 7 IP address i Subnet mast Default gateway f Obtain DNS server address automatically if Use the following DNS server addresses Prefered ONS server l Alternate WAS server L Advanced Cancel gt Make sure settings in this window are as specified in the example above check Obtain an IP address automatically and Obtain DNS server address automatically gt Click the OK button to confirm your changes gt To verify your settings open a Command Prompt From the Start menu through Programs in the Accessories sub menu gt Inthe command prompt type ipconfig The output should look like this Command Prompt Microsoft windows 2000 version O Copyright 1985 2000 Microsoft Corp Z Documents and Settings Administrator gt ipcontig 2 Windows 2000 IP Configuration ernet adapter Local
25. nnection LED s above the corresponding network ports light up If one does not please refer to section 1 12 Errors and recovery revision 193 05 01 20 page 32 33 r HotBrick VPN 6000 user manual Ho Brick 1 12 Errors and recovery Symptom Check Solution did not hear three beeps Check power cable and insure wall socket has power Power off the device Wait 30 seconds Switch the device on again If the device fails to beep again the hardware may be at fault Contact your sales representative for support The FLEX1 connection LED doesn t light up when I connect my notebook PC Check the cable connection Make sure you use the network cables bundled with your HotBrick VPN 6000 Verify that both your PC notebook and your firewall have power and are switched on I use an operating system other than Windows 2000 Windows XP Mac OS X How am I to enable DHCP on my system That information falls outside of the scope of this manual Please contact your system administrator for support DHCP configuration of my system yields the wrong IP Address If the address you obtain starts with 169 254 or if you get no address at all then the connection between the firewall and your PC notebook may be at fault Check the connection LED for the FLEX1 port to insure that the device is properly connected If the address you obtain starts with anything BUT 169 254 then you may have connected you PC or notebook and probably the firewall
26. op Homme a PPTP server Down start B Uptime 2 31 SNMP server B Resources B Cpu Eo Mail subsystema Memory DH Mail system g Swap POP3 fetching B Storage Erot M page 31 33 version 193 05 01 20 1 HotBrick VPN 6000 user manual Brick jil 11 Connecting LAN and WAN cables Now that we have everything set up correctly we can perform the final step in the hardware installation of the HotBrick VPN 6000 The firewall is now fully ready to be deployed gt Power down the firewall using the power switch on the back of the device gt Power down your notebook or laptop gt Detach the network cables from the PC or notebook and the firewall gt Using one of the bundled RJ45 UTP cables connect the WAN1 interface to the router or modem used for your primary default Internet connection gt If you make use of a secondary fall back Internet connection connect the WAN2 interface to the modem or router used for your secondary fall back Internet connection gt Using one of the bundled RJ45 UTP cables connect the FLEX1 interface on the firewall to the switch router or hub you will use for your local network gt Power up the firewall using the power switch on the back of the device gt Check for three beeps to indicate the device has booted up correctly If you do not hear the three beeps please refer to section 1 12 Errors and recovery gt Check that WAN1 WANZ2 if in use and FLEX1 co
27. p to 1 minute When the firewall is switched on and ready you should hear 3 short beeps If you have not heard 3 beeps within 1 minute of switching on the device please refer to section 1 12 Errors and recovery page 5 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick gt Use an UTP RJ45 cable to connect the firewall s FLEX1 port 7 to a network connector on your PC or notebook gt Switch on the PC or notebook The FLEX1 connection LED above the FLEX1 port 8 should come on If this LED does not come on please refer to section 1 12 Errors and recovery 1 4 Connecting to the management interface Your HotBrick VPN 6000 is highly configurable by means of a powerful management interface Once the device is properly set up you will be able to access this interface from any machine in your local network provided you know the right password For the initial setup of the firewall we will make use of the same management interface However because the device is not set up to connect with a local network or Internet connection it must first be configured using a single PC or notebook 1 4 1 Configure a notebook or PC to use DHCP If you are to use the firewall s management interface from your notebook or PC then both are to be connected and using a common network setup The fastest way to effect this is to have your PC or Notebook computer configure it s network settings automatically by means of DHCP D
28. r to automatically configure network addresses of computers in you local network This could potentially cause problems if you have another DHCP server running in your network Any local network may only contain one DHCP server at a time If you wish the HotBrick VPN 6000 to serve as DHCP server make sure you disable any other DHCP servers in your local network If you wish to keep your existing DHCP server active we must deactivate the HotBrick VPN 6000 s built in DHCP server before connecting the firewall to your local network If you need to disable the HotBrick VPN 6000 s built in DHCP server gt Click on the red text Current Status on the left hand side of the screen to enter the Current Status context gt Activate the Control tab by clicking it once gt In the Control page in the Subsystems table find the line that says DHCP Server and click on the corresponding Stop button Brick Firewall VPN 6000 License number vujwoacl GLELFWETLIxPZn4oU CAekgBUVSgN2LxA OLcGfA Q HotView 3 Statistics pr Cements Shutdown Restart Quik Install shutdown Shutdown machine Configuration restart Restart machine a update Update software Status Devices General subsystems Mail status FLEX1 Up Packetfilter Up stop Queue Queue Empty a REN Proxy server Up stop WANT Up Intrusion Detection System Up stop al B System Status DHCP server Up st
29. ration Ethernet adapter Local Area Connection Connection spectfic DNS Suffix lan IF Address p i 7 152 168 995 101 Subnet Mask ee a T 255 255 2755 0 Default Gateway I 192 168 99 99 C Documents and Settings Administrater gt gt If the IP Address line does not list an address starting with 192 168 99 please try typing ipconfig renew This should force the PC or Notebook to request a new network address If you still fail to get an IP Address in the correct range please refer to section 1 12 Errors and recovery revision 193 05 01 20 page 12 33 r HotBrick VPN 6000 user manual Ho Brick Enabling DHCP using Mac OS X gt From the Apple menu choose System Preferences then Network The Network window should open ga Network RF a amp U i D i Show All Displays Sound Network Startup Disk Mouse Location Automatic B Show Active Network Ports B Active Ports Check available port configurations in the list below to activate them All checked configurations are active simultaneously Drag ports in the list to specify the order to try them when connecting to a network On i Port Configurations Vv Built in Ethernet a New TA PCI Ethernet Slot D Port 3 TS l e Internal Modem Duplicate a Delete 9 y Turn off any port you no longer want to use in this location by unchecking it To change
30. rick n Tal 11 3755 1122 Port forwarders PNAT Web www hotBrick com Webs www hotbrick nl E mail suporte hotbrick com br DS IFS management l Web www hotbrick cam Br VPN IPSec tunnels VPN PPTP L27P users DMZ setup Note the license key in the top left corner of the screen now in black The blue triangle in the left of the screen indicates we are now looking at the Configuration context This has slightly different tabs from the Current Status context we saw before namely Config HotView Mail and Proxy The Current Status context will display information concerning the status of your device while we will use the Configuration context to make changes to it s intended behavior The Configuration context has a number of wizards available that can be used to provide assistance performing common tasks The list of wizards is found on the left hand side of the screen right below the red Configuration text They are Internet Connections Local Area Networks Port forwarders PNAT VPN IPSec tunnels VPN L2TP PPTP users and DMZ setup The Quick install wizard is not listed here Instead we start the Quick Install wizard by clicking the red Quick Install text between the Current Status and Configuration context indicators The next step in setting up your HotBrick VPN 6000 is running the Quick in
31. stall wizard page 17 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick a 1 6 Running the Quick install wizard The Quick install wizard was intended to allow you to quickly and efficiently tailor the HotBrick VPN 6000 to match your network s needs and settings Whenever you start a Quick install wizard all current configuration data will be lost At a first installation this should not pose a problem However if you ever feel you Should change important configuration data at a later stage you are encouraged to use the Local Area Networks or Internet Connections wizards from the Configuration context instead You may start the Quick install wizard by pressing the red Quick install text in the left hand side of the screen between Current Status and Configuration gt Start the Quick install wizard When you start the Quick install wizard a warning screen signals the start of this wizard The screen is there to prevent you from inadvertently starting the Quick install wizard at a later time thereby deleting all your current network settings However for a first install we do not consider this a problem gt Click next Brick Firewall VPN 6000 License number vuvl06S1GL XqAQDEjMuheYWHZdnarh9t uj2ii Bg Control Statistics i Current Status HotBri i Quick Install wizard OR Quick Install gt z Contact infor
32. the name of a port configuration double click it To create multiple configurations of a port use the New or Duplicate button To delete a port configuration select it and press Delete f O Click the lock to prevent further changes Apply Now gt In the Network window make sure the Show box is set to show Active Network Ports gt Drag Built in Ethernet to the top of the list gt Set the Show box to Built in Ethernet page 13 33 version 193 05 01 20 HotBrick VPN 6000 user manual Te Brick 0 6 0 Network 1 la O Show All Displays Sound Network Startup Disk Mouse Location Automatic ry Show Built in Ethernet Fa PPPoE AppleTalk Proxies Configure Using DHCP PsA Domain Name Servers Optional IP Address 192 168 99 101 Provided by DHCP Server Subnet Mask 255 255 255 0 Router 192 168 99 99 Search Domains Optional DHCP Client ID Optional Example apple com earthlink net Ethernet Address 00 00 c5 53 5f c9 5 1 f O Click the lock to prevent further changes _ Apply Now gt Now select the TCP IP tab gt Switch the Configure box to Using DHCP gt Verify that the IP address Subnet Mask and Router settings are as shown 192 168 99 101 255 255 255 0 and 192 168 99 99 respectively gt Click Apply Now to confirm your changes 1 4 2 Log in on the firewall management interface gt
33. too to an existing network Please connect the notebook PC directly to the firewall s FLEXI port My license key is incorrect Please write down the hard disk serial number mentioned in the Setup License Keys dialog and contact your sales representative for a valid license key I can t connect to the firewall s management interface Make sure you have entered the correct address Initially before running the Quick Install wizard this should be https 192 168 99 99 12000 After you ve run the quick install wizard this should be https lt your firewall s ip address gt 12000 https 192 168 0 1 12000 in our example Where lt your firewall s ip address gt denotes the new IP address you entered for the firewall Make sure your web browser supports HTTPS If you are unsure about this upgrade your web browser to the latest stable version page 33 33 version 193 05 01 20
34. veUpdate Start Menu e S uga Windows Windows Wireless Link Wireless Firewall Media Connect Network Set gt In the Control Panel double click the Network Connections icon The Network Connections window should open revision 193 05 01 20 page 10 33 r HotBrick VPN 6000 user manual Ho Brick a Network Connections File Edit View Favorites Tools Advanced Help sack amp wa pa Search Folders Address Network Connections LAN or High Speed Internet 1394 Local 4rea Connection ala Wizard EH 2 New Network Setup Connecti Wizard r gt In the Network Connections window double click the Local Area Connection ICON The Local Area Connection Properties window should open Local Area Connection Properties General Authentication Advanced Connect using E SiS 900 PCI Fast Ethernet Adapter This connection uses the following items mM mt 05 Packet Scheduler O Microsoft TCP4P version 6 Install Uninsta Description Transmission Control Protocol lnternet Protocol The default wide area network protocol that provides communication across diverse interconnected networks Show icon in notification area when connected Notify me when this connection has limited or no connectivity om test gt In the Local Area Connection Prop
35. ynamic Host Configuration Protocol As this is done in a slightly different manner by various operating systems the following sections will detail the procedure for enabling DHCP in Windows 2000 Windows XP or Windows 2003 and Mac OS X respectively Enabling DHCP using Windows 2000 gt Using the Windows Start menu and Settings sub menu open the Control Panel E Control Panel File Edit View Favorites Tools Help 4m Back Search UyFolders G4 as LE x A Ez Address A Control Panel eGo S D amp ACS Filter Accessibility Add Remove Add Remove Administrative AudioHO Automatic ptions Hardware Programs Tools Updates Date Time Display ming D gt O 9 Intel R Internet i Ouse MPEG Layer 3 Nero PRGSet IT Options Configuration ImageDrive a A a Network pod NVIDIA nview Phone and Power Options Printers QuickTime Regional Dial up CB Desktop M Modem Options a i F KE SPREE EEE i i Scanners and Scheduled Sounds and Startup Symantec System Text Services Cameras Tasks Multimedia LiveUpdate Tweak UI Users and Passwords 137 objectis i My Computer revision 193 05 01 20 page 6 33 HotBrick VPN 6000 user manual Ho Brick gt In the Control panel double click the Network and Dial up Connections icon The window Network and Dial up Connections should open ET Network and Dial up Connections File
Download Pdf Manuals
Related Search