GTA GB-200 User manual
GB-200
Firewall
APPLIANCE
Product
Guide
powered by
GNAT Box
System Software
Copyright
© 1996-2004, Global Technology Associates, Incorporated (GTA). All rights reserved.
Except as permitted under copyright law, no part of this manual may be reproduced or distributed in any
form or by any means without the prior permission of Global Technology Associates, Incorporated.
GB-200 Product Guide (Updated July 2004) July 2003
iTechnical Support
GTA includes 30 days “up and running” installation support from the date of purchase. See
GTA’s website for more information. GTA’s direct customers in the USA should call or email
GTA using the telephone and email address below. International customers should contact a
local GTA authorized channel partner.
Disclaimer
Neither GTA, nor its distributors and dealers, make any warranties or representations, either
expressed or implied, as to the software and documentation, including without limitation, the
condition of software and implied warranties of its merchantability or fitness for a particular
purpose. GTA shall not be liable for any lost profits or for any direct, indirect, incidental,
consequential or other damages suffered by licensee or others resulting from the use of the
program or arising out of any breach of warranty. GTA further reserves the right to make
changes to the specifications of the program and contents of the manual without obligation to
notify any person or organization of such changes.
Mention of third-party products is for informational purposes only and constitutes neither an
endorsement nor a recommendation for their use. GTA assumes no responsibility with regard
to the performance or use of these products.
Every effort has been made to ensure that the information in this manual is accurate. GTA is
not responsible for printing or clerical errors.
Trademarks & Copyrights
GNAT Box and Surf Sentinel are registered trademarks of Global Technology Associates,
Incorporated. RoBoX, GB-Commander and GB-Ware are trademarks of Global Technology
Associates, Incorporated.
Microsoft, Internet Explorer and Windows are either trademarks or registered trademarks of
Microsoft Corporation in the United States and/or other countries. WELF and WebTrends
are trademarks of NetIQ. Sun, Sun Microsystems and Java are trademarks or registered
trademarks of Sun Microsystems, Inc. in the United States and other countries. The Java
product includes code licensed from RSA Security, Inc. Some portions licensed from IBM
are available at http://oss.software.ibm.com/icu4j/. SurfControl is a registered trademark of
SurfControl plc.
All other products are trademarks of their respective companies.
Global Technology Associates, Inc.
3505 Lake Lynda Drive, Suite 109 • Orlando, FL 32817 USA
Tel: +1.407.380.0220 • Fax: +1.407.380.6080 • Web: http://www.gta.com • Email: [email protected]
Lead Development Team: Larry Baird, Richard Briley, Jim Silas, Brad Plank, Shaun Murphy.
Technical Consulting: David Brooks. Documentation: Courtney Schwartz.
Contents
1 INTRODUCTION 5
GNAT Box Basics …………………………………………………………………… 5
Requirements ……………………………………………………………………… 5
Registration …………………………………………………………………………… 6
Activation Codes ………………………………………………………………… 6
Support ………………………………………………………………………………… 6
Support Options ………………………………………………………………… 7
Upgrades…………………………………………………………………………… 7
About This Guide …………………………………………………………………… 7
Additional Documentation………………………………………………………… 8
About GB-200 ………………………………………………………………………… 9
Features …………………………………………………………………………… 9
Optional Features ……………………………………………………………… 9
Additional Software Products ………………………………………………… 9
Software Specications…………………………………………………………… 10
Hardware Design ………………………………………………………………… 10
Status Displays ………………………………………………………………… 10
Hardware Specications ……………………………………………………… 12
2 INSTALLATION 13
Preinstallation ………………………………………………………………………… 13
Utilities & Documentation ………………………………………………………… 13
Temporary Workstation Conguration ………………………………………… 13
LAN Using the Default IP Network …………………………………………… 14
Connect the GB-200 ………………………………………………………………… 14
3 SET UP DEFAULT CONFIGURATION 15
Basic Conguration using Web Interface ……………………………………… 15
Network Information ……………………………………………………………… 17
Re-congure Workstation ………………………………………………………… 18
Access the GB-200 ……………………………………………………………… 18
Basic Conguration using GBAdmin …………………………………………… 18
Network Information ……………………………………………………………… 19
Re-congure Workstation ………………………………………………………… 20
Access the GB-200 ……………………………………………………………… 20
4 TROUBLESHOOTING 21
Guidelines……………………………………………………………………………… 21
Troubleshooting Q & A ……………………………………………………………… 22
Introduction 5
FCC Compliance Information
Product Name: GB-200 Firewall Appliance
Model Number: GB-200
FCC RULES: TESTED TO COMPLY WITH FCC PART 15 CLASS A OPERAT-
ING ENVIRONMENT.
FCC COMPLIANCE STATEMENT:
This device complies with part 15 of the FCC Rules. Operation is subject to the
following two conditions: (1) This device may not cause harmful interference, and
(2) This device must accept any interference received, including interference that
may cause undesired operation.
INFORMATION FOR USER:
This device has been tested and found to comply with the limits of a Class A
digital device, pursuant to Part 15 of the FCC Rules. These limits are designed
to provide reasonable protection against harmful interference. This equipment
generates, uses and can radiate radio frequency and, if not installed and used
in accordance with these instructions, may cause harmful interferences to radio
communications. However, there is no guarantee that interference will not occur
in a particular installation; if this equipment does cause harmful interference to
radio or television reception, which can be determined by turning the equipment
off and on, the user is encouraged to try to correct the interference by one or
more of the following measures:
1. Reorient or relocate the receiving antenna.
2. Increase the separation between the equipment and receiver.
3. Connect the equipment to an outlet on a circuit different from
that to which the receiver is connected.
4. Consult the dealer or an experienced radio/TV technician for
help.
CAUTION:
Changes or modications not expressly approved by the manufacturer respon-
sible for compliance could void the user’s authority to operate the equipment.
THIS PARTY RESPONSIBLE FOR PRODUCT COMPLIANCE:
Global Technology Associates, Inc.
3505 Lake Lynda Drive, Suite 109
Orlando, FL 32817 USA
Tel: +1.407.380.0220
Introduction 5
1 Introduction
GNAT Box Basics
Global Technology Associates, Inc., has been designing and building
Internet rewalls since 1994. In 1996, GTA developed the rst truly
affordable commercial-grade rewall, the GNAT Box®. Since then, ICSA-
certied GNAT Box System Software has become the engine that drives all
GTA rewall systems.
Requirements
To connect the GB-200 Firewall Appliance, you will need:
• External power supply.
• Ethernet cables, one for each required network connection.
• A crossover cable to connect to a host or router, or a straight-
through cable to connect to a hub or switch.
An external power supply, a yellow crossover cable and a grey straight-
through cable, as well as a null modem cable for the Console interface, are
included with rewall appliances.
In addition, to use GNAT Box System Software, you will need:
• An understanding of TCP/IP networking.
• Network IP addresses for all network interfaces used.
• Netmasks for each attached network.
• Default route for External Network.
• Which services to allow inbound (if any).
• Which services to restrict outbound (if any).
GB-200 Firewall Appliance Product Guide6
Introduction 7
Registration
To register, go to www.gta.com. Click on Support and then the GTA
Support Center link. If you do not have an account, click New Account, and
enter the prole information. Once you have completed the form, click Add
to save the prole.Return to the login screen.
Enter your user ID and password. Click on the Support Center link, then
click on Product Registration in the Account Home screen for your support
information. Enter your serial number and activation (unlock) code, then
click Submit. Your new product will now appear in the View Registered
Products screen, accessible from the Account Home page.
In addition to qualifying you for installation support, your product regis-
tration will allow GTA to inform you about upgrades and special offers.
Note
If you cannot retrieve your registration code, or a code does not
appear under Registered Products, please email support with a brief
description of your problem in the body of the email. Include the
product serial number and your Support Center User ID in the
message subject.
Activation Codes
All commercial GTA Firewalls use activation codes to protect software. For
rewall appliances, the required code is pre-installed. Additional features
require separate feature activation codes. Serial numbers and activation
codes are printed on packaging and are also available under View Registered
Products on the GTA Support site, www.gta.com. GNAT Box System Soft-
ware can be copied for backup purposes.
Support
Installation ("up and running") support is available to registered users. If
you have registered your product and need installation assistance during the
rst 30 days, contact the GTA Support team by email at [email protected].
Include your product name, serial number, registration number, feature acti-
vation code numbers for your optional products, and a System or Hardware
Conguration Report, if possible.
Installation support covers only the aspects of conguration related to
installation and default setup of the rewall. For further assistance, contact
GTA Sales staff for information about support offerings.
GB-200 Firewall Appliance Product Guide6
Introduction 7
Support Options
If you need support after installation and conguration to defaults, a variety
of support contracts are available. Contact GTA Sales staff for more infor-
mation. Contracts range from support by the incident to full coverage for a
year.
Other avenues for assistance are available through the GNAT Box Mailing
List, on the GTA website, found at www.gta.com, or through an authorized
GTA Channel Partner.
Upgrades
Once registered, you can view available upgrades in the GTA Support
Center. If the Action eld in the Registered Products section indicates that
there is an upgrade for your product, click on the Free Upgrade link. When
you return to the Registered Product List, click the product’s serial number
and see the Product Details section to obtain the new activation code. The
section will also display previous activation codes. Upgrades are also avail-
able in Support Center Downloads. Only downloads for your version will
be shown.
Caution
Back up your conguration before upgrading!
About This Guide
This Product Guide shows how to set up and install the GB-200 and change
the factory settings to your network’s default conguration. The GNAT BOX
SYSTEM SOFTWARE USER'S GUIDE includes conguration functions, descrip-
tions of GBAdmin and the Web interface, administrative tools and GNAT
Box-specic terms.
A few conventions are used in this guide to help you recognize specic
elements of the text. If you are viewing this in a PDF, color variations are
also used to emphasize notes, warnings and new sections.
Documentation Conventions
SMALL CAPS FIELD NAMES IN BODY TEXT.
BOLD SMALL CAPS NAMES OF PUBLICATIONS.
Bold Italics Emphasis.
Courier Screen text.
Condensed Bold Menus, menu items, buttons.
GB-200 Firewall Appliance Product Guide8
Introduction 9
Additional Documentation
For instructions on installation, registration and setup of a GTA Firewall in
default conguration, see your GTA Firewall’s product guide; for optional
features, see the appropriate Feature Guide. User’s Guides, Product Guides
and Feature Guides are delivered with new GTA products; these manuals
and other documentation for registered products can also be found on the
GTA website, www.gta.com.
Documents on the website are either in plain text (*.txt) or Portable Docu-
ment Format (PDF) which requires Adobe Acrobat Reader version 5.0. A
free copy of the reader can be obtained at www.adobe.com. Documents
received from GTA Support may also be in email or Microsoft Word format
(*.doc).
Documentation Map
Products and Options
GNAT Box System Software ........GNAT Box System Software User‘s Guide
GTA Firewall Installation .........................................................Product Guides
Firewall Management ......................................GB-Commander User’s Guide
Reporting.................................................. GTA Reporting Suite User’s Guide
Content Filtering ......................Surf Sentinel Content Filtering Feature Guide
High Availability .......................................H2A High Availability Feature Guide
Virtual Private Networking ............................. GNAT Box VPN Feature Guide
VPN Examples ........................................ GNAT Box VPN to VPN Tech Docs
Utilities & Information
Logging Utilities ...... GNAT Box System Software User’s Guide & Addendum
Database Maintenance ..........GB-Commander, GTA Reporting Suite Guides
Troubleshooting ................................................ Product and Feature Guides
Ports & Services......................................................................... Product CDs
Drivers & NICs........................................................................... www.gta.com
Frequently Asked Questions ...................................... FAQs on www.gta.com
Web Interface, GBAdmin..............GNAT Box System Software User’s Guide
Console interface ..........................................Console Interface User’s Guide
GB-200 Firewall Appliance Product Guide8
Introduction 9
About GB-200
The GB-200 Firewall Appliance is a self-contained desktop unit with the
system software pre-installed. This guide describes and explains how to
install and initially congure the GB-200. For conguration options and
eld descriptions see the GNAT BOX SYSTEM SOFTWARE USER’S GUIDE.
Features
• 2,500 (10 user version) or 5,000 (25 user version) concurrent ses-
sions
• 10 or 25 concurrent outbound users (upgradeable to 50)
• DHCP Server
• Three 10/100 Ethernet ports
• ICSA-certied GNAT Box System Software
• IPSec VPN with 1 mobile user license standard on 25 user version
(optional on 10 user version)
• Local Content List (LCL) ltering
• PPP/PPPoE/PPTP
• Secure Email Proxy (SMTP)
• Secure remote management
• Stateful Packet Inspection
• Time-based lters
• Transparent NAT (Network Address Translation )
• DB-9 serial interface
• User authentication
Optional Features
• Surf Sentinel
• Support Contracts
• Additional VPN mobile user licenses
Additional Software Products
• GTA Reporting Suite
• GB-Commander
GB-200 Firewall Appliance Product Guide10
Introduction 11
Software Specications
• Address Objects 50
• Concurrent Connections 2,500 or 5,000
• Maximum Concurrent Mobile VPNs 10
• IP Aliases 5
• IP Pass Through Hosts 10
• PPPs 5
• Filters 75
• Protocols 255
• Security Associations 20
• Static Maps 25
• Static Routes 10
• Time Groups 75
• Tunnels 25
• URL Access Lists 10
• Local Content Lists 25
• User Authentication 50
• VPN Objects 5
Hardware Design
The GB-200 Firewall Appliance is a small desktop unit designed to mini-
mize heat generation without cooling fans. It has three high speed 10/100
Ethernet interfaces to ensure high performance and network design ex-
ibility, and one multifunction DB-9 serial interface to provide access for a
serial console or a dial-up modem/ISDN TA. Flash memory stores and runs
the pre-installed system software. Power is supplied by an external block
type transformer.
Caution
At least three (3) inches of clearance should be provided above the
system to allow efcient cooling. Inadequate clearance can cause
the system to overheat.
Status Displays
The GB-200 has three LED lights on the front panel, indicating power,
activity and operational/error. On the back panel, green and amber LEDs
found on either side of each of three RJ-45 network connectors, labeled 0, 1,
and 2, correspond to the network interfaces.
Warning
There are no user serviceable parts in the GB-200. Opening the unit
will void the warranty on the system.
GB-200 Firewall Appliance Product Guide10
Introduction 11
Global Technology Associates, Inc.
GB-200 Front Panel
Global Technology Associates, Inc.
GB-200 Back Panel
LED Indicators
Front Panel
Power LED When the rewall is powered up, the green Power LED
on the left side of the front panel will be lit.
Activity LED When data is being transmitted or received, the green
Activity LED will ash for lower level activity and turn
solid for higher levels. When there is no activity on the
link, the LED will not light.
Error LED The red Error LED will be lit while the system boots up
and performs diagnostic tests; and when the power is
on, but the connection has failed.
Back Panel
10/100 Link LED The LED on the left side of each interface indicates
that the unit is linked, green for 100 Mb and amber for
10 Mb.
Activity LED When data is being transmitted or received, the green
Activity LED on the right of each interface will ash for
lower level activity and turn solid for higher levels.
When there is no activity, the LED will not light.
GB-200 Firewall Appliance Product Guide12 1 – Installation 13
Hardware Specications
Physical Specications
Chassis 1” h x 6” d x 6.25” w (2.54 cm x 15.24 cm x 15.875 cm)
Weight 1.25 lbs (0.568kg)
Power Specications
MTBF (Mean Time Between Failure) Minimum–300,000 /H/rs
Input Input Output
Location Voltage Frequency Voltage
Australia 240 VAC 50Hz 12 VDC
Europe 230 VAC 50Hz 12 VDC
Japan 100 VAC 50-60Hz 12 VDC
USA 120 VAC 60Hz 12 VDC
UK 230 VAC 50Hz 12 VDC
Operational Specications
Temperature 0 to 140° F (0° to 60° C)
Relative Humidity 10% - 90%, non-condensing
Elevation 0 - 10,000 ft
Storage Specications
Temperature -20°C - 85°C
Relative Humidity 5% - 95%, non-condensing
Memory
CPU 133 Mhz AMD SC 520
Memory 64 Mb
Flash Memory 64 Mb
I/O Interfaces
3 10/100 Ethernet interfaces. Ethernet 10Base-T on
UTP Cat. 3, 4 and 5, and Fast Ethernet 100Base-
TX on UTP Cat. 5. Interfaces 0, 1 and 2 are active
and available. The 0 factory setting is IP address
192.168.71.254.
1 RS-232 (DB-9). The Serial Console port should be set
to 38,400 bps, 8 bit, 1 stop, no parity and ow control
to Hardware.
GB-200 Firewall Appliance Product Guide12 1 – Installation 13
2 Installation
Preinstallation
Installing the GB-200 requires that the system be connected to your local
area network (LAN). This allows the administrator to connect to the GB-
200, congure the network settings to match the local network address
scheme and perform connectivity tests. The GB-200 can be congured and
administered using any of the user interfaces. Installation procedures for
GBAdmin and the Web user interfaces are described in this document.
Note that the IP Address 192.168.71.254 is the factory setting for the
Protected Network interface (0) port on the GB-200.
Utilities & Documentation
Prior to installation of the GB-200, install the utility software and docu-
mentation on your workstation. If the workstation is running Windows 95,
98, NT 4.0, Me, XP or Windows 2000, there is an automated installer on
the Installation CD that will install these les. If the workstation is running
a non-Windows based OS (e.g., Macintosh or Unix) or an older version of
Windows, locate the directory on the CD-ROM for your OS and use the
Read Me document to install the documentation and utility programs.
Temporary Workstation Conguration
The factory network information settings on the GB-200 are unlikely to
match your network, so you must temporarily congure a local workstation
to match the GB-200's network information settings in order to congure
the GB-200 and integrate it into your network.
Note
Please refer to the GNAT BOX SYSTEM SOFTWARE USER’S GUIDE for
specic information about editing Network Information.
Once you are able to connect to the rewall, the network information can be
changed to match the existing address scheme on your network and you can
reset your local machine to its original IP Address.
GB-200 Firewall Appliance Product Guide14 3 – Set Up Default Configurationo 15
LAN Using the Default IP Network
If your local area network is currently using the 192.168.71.0 network,
make sure that the IP address 192.168.71.254 is not currently assigned to
any device on your network. If a device does have this IP address assigned:
• Set up an isolated network that contains only the GB-200 Firewall
Appliance and a workstation that will be used to congure the sys-
tem; connect the GB-200 and your workstation to a hub that has no
other connections.
• Optionally, use an Ethernet crossover cable and connect your work-
station directly to the GB-200’s Protected Network interface, (port
0). A yellow crossover cable is included with hardware appliances.
Connect the GB-200
Connect the GB-200 to a hub or switch on your local area network using
the Protected Network interface, (the rst interface port 0, see illustration
GB-200 Rear Panel) and a standard (straight-through) network cable. By
default, 0 is assigned the IP address 192.168.71.254. Use a crossover cable
to connect the rewall directly to a host or router.
Connect the power transformer into a power outlet, then insert the power
connector tip into the GB-200. Since there is no power switch on the GB-
200 system, applying power will cause the boot process to begin.
The system will be operational in about one minute. Check to see that the
Power LED on the front panel is lit and the Error LED is not lit. The Link
LED on the NIC “0” should be lit, amber for a 10 Mb connection and green
for 100 Mb.
Installation of the GB-200 is complete. The next step is to enter your basic
network information in the GB-200's default conguration.
GB-200 Firewall Appliance Product Guide14 3 – Set Up Default Configurationo 15
3 Set Up Default Conguration
The following sections will describe how to set up your GB-200 in the
default conguration, in which all internal users are allowed outbound and
no unsolicited inbound connections are allowed.
Basic Conguration using Web Interface
Start a web browser on your workstation and enter the following URL into
the browser Address eld: https://192.168.71.254.
Note
Web setup requires a browser that supports frames.
If your network and cables are congured correctly, you will be prompted
with a Security Alert dialog indicating that the Certicate Authority is not
one you have chosen to trust; that the security certicate date is valid; and
that the name on the security certicate does not match the name of the site.
Security Alert
Select Yes, or if your alert differs, choose the selection that allows you to
proceed. You will establish your GB-200 certicate once you have logged
on to the rewall. See the GNAT BOX SYSTEM SOFTWARE USER'S GUIDE.
Next, in the login screen, enter the default user ID, "gnatbox" (all lower
case), press the <Tab> key, then enter the default password, also "gnatbox"
(all lower case). Select OK or press the <Return> key when nished.
GB-200 Firewall Appliance Product Guide16
3 – Set Up Default Configurationo 17
User ID and Password
Note
GTA recommends changing the default user ID and password. See
the GNAT BOX SYSTEM SOFTWARE USER'S GUIDE for instructions.
Web Interface
Exception
GNAT Box System Software is known to be incompatible with Internet
Explorer 5 for Macintosh. If your browser does not allow you to
continue past the Security Alert screen in order to set up your new
GB-200, GTA recommends using another compatible browser such
as Mozilla (www.mozilla.org), Netscape (www.netscape.com) or
Opera (www.opera.com) to administer your rewall, that allows you
to use SSL encryption, or using a compatible browser, GBAdmin or
Console to install GB-200, disable SSL, then use Internet Explorer
5 with SSL encryption disabled. See Technical Documents on the
CD and on www.gta.com for information about installing the GTA
certicate or disabling SSL encryption.
GB-200 Firewall Appliance Product Guide16
3 – Set Up Default Configurationo 17
Network Information
The GB-200 comes congured with factory settings which need to be
changed to match our network settings. Click on Basic Conguration and
expand the menu to select Network Information. On the Network Informa-
tion screen:
• Congure IP and netmasks, (expressed in either dotted decimal or
CIDR notation), for your External and Protected Networks.
• Disable the DHCP option on the external interface if necessary, as
it is set by default.
• Set the Default Route to your Internet router IP address.
• Set the Host Name to that given to the rewall in your DNS server.
Once you have completed Network Information, apply the changes by
clicking on the Save. The GB-200 will now be on a different logical network
(assuming you’ve changed the default IP address for the Protected Network)
and you will not be able to access the GTA Firewall from your workstation,
since the rewall will now be on a different network.
The GB-200 has three network interfaces. Only one External and one
Protected Network interface are required to initially congure and test
the GTA Firewall. The other interface can be dened as any of the three
network types: Protected, External or PSN (Private Service Network, GTA's
DMZ). See the GNAT BOX SYSTEM SOFTWARE USER'S GUIDE for more
information about the functions of the network interface types.
Network Information
GB-200 Firewall Appliance Product Guide18
3 – Set Up Default Configurationo 19
Re-congure Workstation
Re-congure your workstation back to its original IP address, now on the
same network as the GTA Firewall.
Access the GB-200
After re-conguring your workstation, you can access the GB-200 using the
new IP address assigned to the Protected Network interface.
The GB-200 should now be active and functioning in default security mode,
(all internal users are allowed outbound and no unsolicited inbound connec-
tions are allowed). You can now perform any additional conguration tasks.
See the GNAT BOX SYSTEM SOFTWARE USER'S GUIDE for more information.
Basic Conguration using GBAdmin
Select GBAdmin (GBAdmin.exe) from the program menu. This opens a
blank GBAdmin interface, similar to the following screen: Select File from
the toolbar, then select Open.
GBAdmin Interface
Note
GBAdmin must be installed on a local workstation running Windows
95, 98, NT 4.0, XP, Me, or 2000.
GB-200 Firewall Appliance Product Guide18
3 – Set Up Default Configurationo 19
In Open File dialog box, in the Source area, select Network. In the Server
eld, enter the default IP Address for the GB-200 (192.168.71.254). Make
sure that there is a check in the box next to Conguration in the Information
to Load section. Once this is complete, press the <Return> key or click OK.
GBAdmin Open
The system will prompt you for a user ID and password. Enter the default
user ID, which is "gnatbox" (all lower case), then press the <Return> key.
Next, enter the default password, which is also "gnatbox" (all lower case),
then press the <Return> key or select OK when nished.
User ID and Password
Note
GTA recommends changing the default user ID and password. See
the GNAT BOX SYSTEM SOFTWARE USER'S GUIDE for instructions.
Network Information
The GB-200 comes congured with factory settings which need to be
changed to match our network settings. Click on Basic Conguration and
expand the menu to select Network Information. On the Network Informa-
tion screen:
• Congure IP and netmasks, (expressed in either dotted decimal or
CIDR notation), for your External and Protected Networks.
• Disable the DHCP option on the external interface if necessary, as
it is set by default.
• Set the Default Route to your Internet router IP address.
• Set the Host Name to that given to the rewall in your DNS server.
Once you have completed the Network Information form, apply the changes
to the GB-200 by clicking on the single diskette icon on the tool bar to save
the data. The GB-200 will now be on a different logical network (assuming
you’ve changed the default IP address for the Protected Network).
GB-200 Firewall Appliance Product Guide20 4 – Troubleshooting 21
The GB-200 has three network interfaces; two are used for Protected and
External Networks. The other network interfaces can be dened as any
of the three network types: Protected, External or PSN (Private Service
Network, GTA's DMZ). Only External and Protected Network interfaces
are required to initially congure and test the GTA Firewall. See the GNAT
BOX SYSTEM SOFTWARE USER'S GUIDE for more information about the func-
tions of the network interface types.
Network Information
Once you click Save on the Network Information screen you will not be
able to access the GB-200 from your workstation, since the rewall will
now be on a different network.
Re-congure Workstation
Re-congure your workstation back to its original IP address, now on the
same network as the GTA Firewall.
Access the GB-200
After re-conguring your workstation, you can access the GB-200 using the
new IP address assigned to the Protected Network interface.
The GB-200 should now be active and functioning in the default security
mode, (all internal users are allowed outbound and no unsolicited inbound
connections are allowed). You can now perform additional conguration
tasks. See the GNAT BOX SYSTEM SOFTWARE USER'S GUIDE for more infor-
mation.
Table of contents
Popular Firewall manuals by other brands
NETGEAR
NETGEAR FVS336Gv1 - ProSafe Dual WAN Gigabit... Reference manual
ZyXEL Communications
ZyXEL Communications ADSL 2+ Security Gateway user guide
Nexcom
Nexcom NSA 7145 user manual
Cisco
Cisco RV120W Administration guide
Alcatel-Lucent
Alcatel-Lucent VPN Firewall Specification sheet
Solida systems
Solida systems SL-2000 user manual
