Neoware Firewall, User Manual

Page 1: ...Neoware Firewall USER MANUAL...

Page 2: ...reduced to any electronic medium or machine readable form without prior consent in writing from Neoware Inc Neoware is a trademark of Neoware Inc Other trademarks used in this manual are the property...

Page 3: ...uring Neoware Firewall 3 Introduction 3 Starting the Configuration Utility 4 Currently Defined Firewall Filters 5 Changing the Filter Assignment 6 Editing a Filter 6 Removing a Filter 6 Adding a New F...

Page 4: ...Table of Contents iv Exporting Displayed Data 12 APPENDIX A Default Neoware Firewall Rules 15 Index 23...

Page 5: ...asy con figuration of the firewall It also provides a set of predefined secu rity rules and an export option to clone a customized configuration to other thin clients Neoware Firewall Windows Firewall...

Page 6: ...l for incoming traffic Installation Procedure Neoware thin clients may have Neoware Firewall already installed If you need to re install it the standard snap in installation proce dure applies This sn...

Page 7: ...nfigured your FTP server to use passive data connec tions you will need to configure Neoware Firewall for passive FTP before enabling it Since passive FTP servers may be configured to use a range of p...

Page 8: ...n Utility Neoware Firewall is configured using a utility that is accessed from the Start menu To run the utility select Start All Programs Neoware Firewall Configuration Utility The utility will displ...

Page 9: ...predefined firewall filters so that you can use the firewall immediately For a list of all the pre defined filters and their functions refer to the appendix Default Neoware Firewall Rules on page 15 T...

Page 10: ...ed filter 1 Select the filter to edit by clicking on the filter line in the list of defined filters 2 Click the Edit button to display the Filter Properties dialog This is almost the same as the Add a...

Page 11: ...traffic You can enter a Description for this new filter so that you can quickly discover what it does Defining Filter Rules You must define the Rules used by the filter Rules include proto cols ports...

Page 12: ...To add a rule click the Add button in the Add a Filter dialog to display the Add a Rule dialog In this dialog enter a Rule Name provide a Description and spec ify the rule details After adding a rule...

Page 13: ...u have finished making changes to the firewall configura tion click the Save button in the main Neoware Firewall Configu ration Utility dialog to save the settings and make the new security policy tak...

Page 14: ...Configuring Neoware Firewall 10 Saving Applying the Firewall Configuration...

Page 15: ...Introduction Once you have defined and saved your security policy configura tion you may also want to apply the same configuration to other thin clients This can be achieved very easily and quickly E...

Page 16: ...ting Displayed Data The Neoware Firewall Configuration Utility saves the display data and export configuration separately If you want to copy the display data to other thin clients as well as the expo...

Page 17: ...onfiguration Exporting Displayed Data 13 4 Apply the exported template batch file on the target thin client 5 Overwrite the MFWC DAT file on the target thin client with the MFWC DAT file from the sour...

Page 18: ...Exporting a Neoware Firewall Configuration 14 Exporting Displayed Data...

Page 19: ...on includes the rules and settings associated with them All Inbound Traffic Assigned No Action Block Blocks all inbound traffic Rule Name Inbound Any protocol any source port any destination port sour...

Page 20: ...tion port 53 source address my IP address desti nation address any IP address mirrored Rule Name FTP Allows connections to FTP servers TCP protocol any source port destination port 21 source address m...

Page 21: ...tocol any source port destination port 9101 source address my IP address destination address any IP address mirrored Rule Name IP Print 2 Allows printing via multiport IP Print servers TCP protocol an...

Page 22: ...ion port source address my IP address destination address any IP address mirrored Rule Name WINS TCP Allows connections to WINS servers via TCP TCP protocol any source port destination port 42 source...

Page 23: ...ource address any IP address destination address my IP address mirrored Rule Name Microsoft ds Outbound Microsoft Directory Services TCP protocol any source port desti nation port 445 source address m...

Page 24: ...protocol any source port destination port 139 source address my IP address destination address any IP address mirrored Grid Center Assigned No Action Permit Ports required by CCT Grid Center Rule Nam...

Page 25: ...t source address my IP address destination address any IP address not mirrored MMS Assigned No Action Permit Ports required by MMS Rule Name 40000 MMS Agent UDP protocol any source port destination po...

Page 26: ...ezRemote Manager UDP protocol any source port destination port 161 source address any IP address destination address my IP address mirrored Rule Name ezRM Manage Allus units to be managed with ezRemot...

Page 27: ...assignment 5 6 editing a filter 6 filter list 5 removing a filter 6 rules 7 starting 4 D defining filter rules 7 deleting a filter 6 E editing a filter 6 exporting a configuration 11 exporting display...

Page 28: ...rocedure 2 introduction 1 IP security template file 12 M MFWC DAT file 12 MMS filter 21 N Neoware Management filter 22 P passive FTP 3 R removing a filter 6 rules adding 8 defining 7 S saving a config...