Rubicon Netgate-4200 User manual

Security Gateway Manual

Netgate-4200

Jan 08, 2024

CONTENTS

1 Out of the Box 2

2 How-To Guides 24

3 References 55

Security Gateway Manual Netgate-4200

This Quick Start Guide covers the ﬁrst time connection procedures for the Netgate® 4200 Desktop Firewall Appliance

and will provide the information needed to keep the appliance up and running.

Tip: Before getting started, a good practice is to download the PDF version of the Product Manual and the PDF

version of the pfSense Documentation in case Internet access is not available during setup.

CHAPTER

ONE

OUT OF THE BOX

1.1 Getting Started

The basic ﬁrewall conﬁguration begins with connecting the Netgate® appliance to the Internet. The Netgate appliance

should be unplugged at this time.

Connect one end of an Ethernet cable to the WAN port (shown in the Input and Output Ports section) of the Netgate

appliance. The other end of the same cable should be inserted into a LAN port on the ISP CPE device, such as a cable

or ﬁber modem. If the CPE device provided by the ISP has multiple LAN ports, any LAN port should work in most

circumstances.

Next, connect one end of a second Ethernet cable to the LAN port (shown in the Input and Output Ports section) of

the Netgate appliance. Connect the other end to the computer.

Security Gateway Manual Netgate-4200

1.1.1 What next?

To connect to the GUI and conﬁgure the ﬁrewall in a browser, continue on to Initial Conﬁguration.

To connect to the console and make adjustments before connecting to the GUI, see Connecting to the USB Console

Port.

Warning: The default IP Address on the LAN subnet on the Netgate ﬁrewall is 192.168.1.1/24. The same

subnet cannot be used on both WAN and LAN, so if the default IP address on the ISP-supplied modem is also

192.168.1.1/24,disconnect the WAN interface until the LAN interface on the ﬁrewall has been renumbered

to a different subnet (like 192.168.2.1/24) to avoid an IP Address conﬂict.

To change an interface IP address, choose option 2 from the Console Menu and walk through the steps to change

it, or from the GUI, go through the Setup Wizard (opens at ﬁrst boot, also found at System > Setup Wizard) and

change the IP address on Step 5. Complete the Wizard and save the changes.

1.2 Initial Conﬁguration

Plug the power cable into the power port (shown in the Input and Output Ports section) to turn on the Netgate®

Firewall. Allow 4 or 5 minutes to boot up completely.

Warning: If the CPE on WAN (e.g. Fiber or Cable Modem) has a default IP Address of 192.168.1.1,

disconnect the Ethernet cable from the 1port on the Netgate 4200 Security Gateway before proceeding.

Change the default LAN IP Address of the device during a later step in the conﬁguration to avoid having conﬂicting

subnets on the WAN and LAN.

1.2.1 Connecting to the Web Interface (GUI)

1. From the computer, log into the web interface

Open a web browser (Google Chrome in this example) and enter 192.168.1.1 in the address bar. Press

Enter.

Fig. 1: Enter the default LAN IP address in the browser

2. A warning message may appear. If this message or similar message is encountered, it is safe to proceed. Click

the Advanced Button and then click Proceed to 192.168.1.1 (unsafe) to continue.

3. At the Sign In page, enter the default pfSense®Plus username and password and click Next.

• Default Username: admin

• Default Password: pfsense

Security Gateway Manual Netgate-4200

Fig. 2: Example certiﬁcate warning message

Security Gateway Manual Netgate-4200

1.2.2 The Setup Wizard

This section steps through each page of the Setup Wizard to perform the initial conﬁguration of the ﬁrewall. The

wizard collects information one page at a time but it does not make any changes to the ﬁrewall until the wizard is

completed.

Tip: The wizard can be safely stopped at any time for those who wish to perform the conﬁguration manually or

restore an existing backup (Backup and Restore).

To stop the wizard, navigate away from the wizard pages by clicking the logo in the upper left of the page or by

choosing an entry from one of the menus.

Note: Ignore the warning at the top of each wizard page about resetting the admin account password. One of the

steps in the Setup Wizard is to change the default password, but the new password is not applied until the end of the

wizard.

1. Click Next to start the Setup Wizard.

Fig. 3: Setup Wizard starting page

2. Click Next after reading the information on Netgate Global Support.

3. Use the following items as a guide to conﬁgure the options on the General Information page:

Hostname Any desired hostname name can be entered to identify the ﬁrewall. For the purposes of

this guide, the default hostname pfsense is used.

Domain The domain name under which the ﬁrewall operates. The default home.arpa is used for

the purposes of this tutorial.

Security Gateway Manual Netgate-4200

DNS Servers For purposes of this setup guide, use the Google public DNS servers (8.8.8.8 and

8.8.4.4).

Note: The ﬁrewall defaults to acting as a resolver and clients will not utilize these forwarding

DNS servers. However, these servers give the ﬁrewall itself a way to ensure it has working DNS

if resolving the default way does not work properly.

Fig. 4: General Information page in the Setup Wizard

Type in the DNS Server information and Click Next.

4. Use the following information for the Time Server Information page:

Time Server Hostname Use the default time server address. The default hostname is suitable for

both IPv4 and IPv6 NTP clients.

Timezone Select a geographically named time zone for the location of the ﬁrewall.

For this guide, the Timezone will be set to America/Chicago for US Central time.

Change the Timezone and click Next.

5. Use the following information for the Conﬁgure WAN Interface page:

The WAN interface is the external (public) IP address the ﬁrewall will use to communicate with the Internet.

DHCP is the default and is the most common type of WAN interface for home ﬁber and cable modems.

Default settings for the other items on this page should be acceptable for normal home users.

Default settings should be acceptable. Click Next.

Security Gateway Manual Netgate-4200

Fig. 5: Time Server Information page in the Setup Wizard

Fig. 6: Conﬁgure WAN Interface page in the Setup Wizard

Security Gateway Manual Netgate-4200

6. Conﬁguring LAN IP Address & Subnet Mask. The default LAN IP address of 192.168.1.1 and subnet mask

of 24 is usually sufﬁcient.

Tip: If the CPE on WAN (e.g. Fiber or Cable Modem) has a default IP Address of 192.168.1.1, the

Ethernet cable should be disconnected from the 1port on the Netgate 4200 Security Gateway before starting.

Change the default LAN IP Address of the device during this step in the conﬁguration to avoid having conﬂicting

subnets on the WAN and LAN.

7. Change the Admin Password. Enter the same new password in both ﬁelds.

8. Click Reload to save the conﬁguration.

9. After a few seconds, a message will indicate the Setup Wizard has completed. To proceed to the pfSense®Plus

dashboard, click Finish.

Note: This step of the wizard also contains several useful links to Netgate resources and methods of obtaining

assistance with the product. Be sure to read through the items on this page before ﬁnishing the wizard.

1.2.3 Finishing Up

After completing or exiting the wizard, during the ﬁrst time loading the Dashboard the ﬁrewall will display a notiﬁ-

cation modal dialog with the Copyright and Trademark Notices.

Read and click Accept to continue to the dashboard.

If the Ethernet cable was unplugged at the beginning of this conﬁguration, reconnect it to the 1port now.

This completes the basic conﬁguration for the Netgate appliance.

1.3 pfSense Plus Software Overview

This page provides an overview of the pfSense®Plus dashboard and navigation. It also provides information on how to

perform frequent tasks such as backing up the pfSense®Plus software and connecting to the Netgate ﬁrewall console.

1.3.1 The Dashboard

pfSense®Plus software is highly conﬁgurable, all of which can be done through the dashboard. This orientation will

help to navigate and further conﬁgure the ﬁrewall.

Section 1 Important system information such as the model, Serial Number, and Netgate Device ID for this Netgate

ﬁrewall.

Section 2 Identiﬁes what version of pfSense®Plus software is installed, and if an update is available.

Section 3 Describes Netgate Service and Support.

Section 4 Shows the various menu headings. Each menu heading has drop-down options for a wide range of conﬁg-

uration choices.

Other Rubicon Gateway manuals

Rubicon

Rubicon Netgate SG-5100 User manual

Rubicon

Rubicon netgate XG-7100 User manual

Rubicon

Rubicon Netgate-8200 User manual

Rubicon

Rubicon netgate SG-1100 User manual

Rubicon

Rubicon Netgate SG-2100 User manual

Popular Gateway manuals by other brands

Telecom FM

Telecom FM onestream gfx Programming guide

UfiSpace

UfiSpace LoRa GPE810U Quick setup guide

Merak

Merak MMk-736F Quick setup guide

Robustel

Robustel R3010 user guide

turck

turck BL20-PG-EN-V3 user manual

IBM

IBM Security Web Gateway Appliance quick start guide

SSS Siedle

SSS Siedle Smart Gateway Commissioning instructions

ADTRAN

ADTRAN 424RG Installation

Chorus

Chorus Hyperfibre XGS-250WX-A user guide

Dragino

Dragino G308 user manual

Data Domain

Data Domain DD690g Installation and setup guide

Raritan

Raritan Laptop Release notes

Haivision

Haivision Torpedo quick start guide

ATCOM

ATCOM AG-268 user manual

LST

LST M500RFE-AS Specification sheet

Vega

Vega VEGA BS-3 user manual

Kinnex

Kinnex Media Gateway quick start guide

2N Telekomunikace

2N Telekomunikace 2N StarGate user manual