English dropdown-ico

Manual Global Technology Associates GBWA200501-01

60 pages 1.36 mb
Download

Go to site of 60

Summary
  • Global Technology Associates GBWA200501-01 - page 1

    G B - W a r e S OFT W ARE F i re wa l l P roduc t Guide GBW A200501-01 powered by GNA T Bo x S y st e m So f t w ar e ...

  • Global Technology Associates GBWA200501-01 - page 2

    Copyright © 1996-2004, Global T echnology Associates, Incorporated (GTA). All rights reserved. Except as permitted under copyright law , no part of this manual may be reproduced or distributed in any form or by any means without the prior permission of Global T echnology Associates, Incorporated. T echnical Support GT A includes 30 days “up and ...

  • Global Technology Associates GBWA200501-01 - page 3

    T able of Contents iii Contents 1 INTRODUCTION ............................................................................................... 1 About GT A Firewalls ....................................................................................... 1 About GB-W are ............................................................................... ...

  • Global Technology Associates GBWA200501-01 - page 4

    GB-Ware Firewall Product Guide iv Re-configuring Y our Computer ................................................................ 28 Accessing the Firewall ............................................................................ 28 Configuration Using GBAdmin .................................................................... 29 Entering Y ou ...

  • Global Technology Associates GBWA200501-01 - page 5

    1 - Introduction 1 1 Introduction About GT A Firewalls Global T echnology Associates, Inc. (GT A) has been designing and building Internet firewalls since 1994. In 1996, GT A developed the first truly affordable commercial-grade firewall, the GNA T Box ® . Since then, ICSA- certified GNA T Box System Software has become the engine that drives ...

  • Global Technology Associates GBWA200501-01 - page 6

    GB-Ware Firewall Product Guide 2 • Dynamic DNS • DNS proxy • T ransparent and traditional web proxy with script blocking • DNS server (optional on 10 user version) • DHCP server • Web and GBAdmin user interfaces for remote management • SNMP (read-only) • T raffic shaping (bandwidth limiting) • NTP (network time protocol) server A ...

  • Global Technology Associates GBWA200501-01 - page 7

    1 - Introduction 3 Software Specifications Specification GB-W are 10 users GB-W are unrestricted users Concurrent connec- tions (standard) 1,000 128,000 Concurrent out- bound users (stan- dard) 10 Unrestricted Network interfaces (standard) 2 3 User authentication 50 750 Address objects 50 600 Aliases 5 300 Pass-through hosts 10 300 Filters, outbou ...

  • Global Technology Associates GBWA200501-01 - page 8

    GB-Ware Firewall Product Guide 4 configuration with full network speeds on all interfaces. The best possible performance can be obtained by using a Pentium class or higher CPU with PCI network cards. Network performance bottlenecks usually occur at the connection to the Internet when using DSL or T1 class connectivity . GB-W are with 10 Mbps Ether ...

  • Global Technology Associates GBWA200501-01 - page 9

    1 - Introduction 5 Optional Components • 1-18 additional network cards (if using the Multi-Interface Option) • Async modem (PPP connections or pager only) • ISDN T A with RS-232 interface (PPP connections only) • Cable modem • Serial ports for COM 1-4 (1645x/1655x UART s only) Note GT A recommends installing only the GB-War e required or ...

  • Global Technology Associates GBWA200501-01 - page 10

    GB-Ware Firewall Product Guide 6 Modem/ISDN T A Hardware GT A recommends configuring the modem or ISDN T A on another system before installing it on GB-W are. Most modems allow the storage of a user configuration and the recall of this configuration using a specific command (e.g. A TZ). It is usually easiest to configure the modem before insta ...

  • Global Technology Associates GBWA200501-01 - page 11

    1 - Introduction 7 Other avenues for assistance are available through authorized GT A Channel Partners, the GNA T Box Mailing List, or the GT A web site (www .gta.com). Upgrades Once registered, you can view available upgrades in the GT A online support center section of the GT A web site (www .gta.com/support/center/login/). Click on the serial nu ...

  • Global Technology Associates GBWA200501-01 - page 12

    GB-Ware Firewall Product Guide 8 Additional Documentation For additional instructions on installation, registration and setup of a GT A product, see applicable Quick Guides, F AQs or technical papers. For optional features, see the appropriate feature guide. Documentation is included on installation CDs, and is available for download from the GT A ...

  • Global Technology Associates GBWA200501-01 - page 13

    2 – Installation 9 2 Installation Registration T o get technical support and software updates, you must register your GT A firewall. 1) T o register , go to www .gta.com. Click on SUPPORT and then the SUPPORT CENTER link to visit https://gta.com/support/center/login/. 2) If you do not have an online support account, click on the CREA TE AN ACCOU ...

  • Global Technology Associates GBWA200501-01 - page 14

    GB-Ware Firewall Product Guide 10 Installing GB-W are on PC Hardware GB-W are software must be installed on x86 (Intel-compatible) computer hardware before you can use your firewall. The GB-W are installation CD will install the firewall software onto your computer hardware. Requirements GB-W are can be installed either on a bootable Compact Flas ...

  • Global Technology Associates GBWA200501-01 - page 15

    2 – Installation 1 1 Setup for GB-W are Installation The computer (either the intended firewall or an installation proxy computer) must be modified to boot using a CD-ROM drive. This enables the GNA T Box System Software installation CD to activate and install the GB-W are firewall software when powering on the PC. Caution If in stall ing GB-W ...

  • Global Technology Associates GBWA200501-01 - page 16

    GB-Ware Firewall Product Guide 12 Caution Inst alli ng GB -W are on a hard drive wil l era se its cont ents and replace them with GB-Ware. If you wish to keep the data on a hard drive, do not install GB-W are on it; instead, install GB-Ware on a dif ferent hard drive. Y ou may also wish to temporarily disconnect other (non- GB-W are) hard drives to ...

  • Global Technology Associates GBWA200501-01 - page 17

    2 – Installation 13 GNA T Box System Softwar e Licensing Agr eement Selecting a GB-W are Runtime The GNA T Box System Software Runtime Installer screen will appear . If you are upgrading, verify that your configuration has been backed up to another location. Any information currently on the disk will be over-written during the installation. Sele ...

  • Global Technology Associates GBWA200501-01 - page 18

    GB-Ware Firewall Product Guide 14 The serial version of the GB-Ware runtime installs factory default settin gs; a serial or temporary peer Ether net con necti on can be used to change these settings. If you prefer to perform initial firewall configuration over the web or with GBAdmin, choose this option. The selection list also includes the Erase ...

  • Global Technology Associates GBWA200501-01 - page 19

    2 – Installation 15 Note USB pen drives may appear , but should not be selected for installation as they are not IDE-bootable devices. CD-ROM or DVD- ROM dr ives will not be displayed by the GB- W are system ins tallat ion process, as they are not writable discs. Other drives will not display . Device Designations Designation Description Device G ...

  • Global Technology Associates GBWA200501-01 - page 20

    GB-Ware Firewall Product Guide 16 Disk Re-formatting W arning It may take several minutes for the runtime to install. A pipe indicator (|) will be animated while the system installs. A message similar to the following will display when the system installation is complete: Load i ng r u nti m e i m age for <runtime number> – succee de d Ini ...

  • Global Technology Associates GBWA200501-01 - page 21

    2 – Installation 17 attach the hardware key block to a prospective GB-W are firewall and boot the GB-W are disk. ...

  • Global Technology Associates GBWA200501-01 - page 22

    GB-Ware Firewall Product Guide 18 ...

  • Global Technology Associates GBWA200501-01 - page 23

    3 – Configuration 19 3 Configuration The following sections describe how to change GB-W are from the default configuration, in which all internal users are allowed outbound connections, but no unsolicited inbound connections are allowed. Use either the web user interface, GBAdmin, the video console, or the serial console to configure the GB-W ...

  • Global Technology Associates GBWA200501-01 - page 24

    GB-Ware Firewall Product Guide 20 During installation, you chose the video or the serial console version of the GNA T Box runtime. These methods can be used during setup, or when you have direct physical access to the firewall, or as a failsafe if the network is down and you can no longer administer your firewall remotely . Addition- ally , you m ...

  • Global Technology Associates GBWA200501-01 - page 25

    3 – Configuration 21 Requirements If using the web user interface, you will need: • 1 crossover Ethernet cable to connect with the computer directly , or 1 straight-through Ethernet cable to connect with the computer through a hub or switch • 2 straight-through Ethernet cables, one for each required network connection • 1 computer with a SS ...

  • Global Technology Associates GBWA200501-01 - page 26

    GB-Ware Firewall Product Guide 22 match the network address scheme. Then you may add the firewall to your network and connect remotely (by web or GBAdmin) through your normal network. 1) Use a crossover Ethernet cable to connect a computer to the fire- wall’s first network interface card. Alternately , use straight-through cables to connect yo ...

  • Global Technology Associates GBWA200501-01 - page 27

    3 – Configuration 23 T emporary Network Configuration for Connection with Fir ewall Defaults - Mac OS X 3) Reboot your computer if necessary to put your new network configu - ration into effect. Note Please refer to the GNAT Box System Softwar e User’ s Guide for specific information about editing network information. Making a Serial Connect ...

  • Global Technology Associates GBWA200501-01 - page 28

    GB-Ware Firewall Product Guide 24 Configuring Y our Firewall Y ou will need to configure your firewall to match your network scheme before installing it. Requirements If using a web browser , you will need: • an SSL-compatible, frames-enabled web browser • a temporary peer network connection between the firewall and a computer (first con? ...

  • Global Technology Associates GBWA200501-01 - page 29

    3 – Configuration 25 On Macintosh computers, GT A does not recommend using Microsoft Internet Explorer for Macintosh (Mac IE 5). OpenSSL encryption, used by the firewall, is known to be incompatible with Mac IE 5, and your browser will not allow you to continue past the security alert screen. If you must use Mac IE 5, install the firewall using ...

  • Global Technology Associates GBWA200501-01 - page 30

    GB-Ware Firewall Product Guide 26 Entering the Default User ID and Passwor d Caution GT A recommends changing the default user ID and password to prevent unauthorized access. Entering Y our Network Information GB-W are requires entry of the serial number and activation code. Click on Basic Configuration and expand the menu, then select F eatures . ...

  • Global Technology Associates GBWA200501-01 - page 31

    3 – Configuration 27 Caution Closing the browser without clicking SA VE will cause the entered data to be lost, and your firewall will remain in default configuration. Y ou will need to re-connect to the firewall and re-enter the network information. 2) Once you have completed the network configuration, apply the changes by clicking SA V E . ...

  • Global Technology Associates GBWA200501-01 - page 32

    GB-Ware Firewall Product Guide 28 Using CIDR-based or Slash (/) Notation CIDR (Classless Inter-Domain Routing) aggregates routes so that one IP address represents thousands served by a backbone provider . GNA T Box System Software uses CIDR-based notation as the default for subnet masks, instead of dotted decimal (e.g. 255.255.255.0) notation. Inst ...

  • Global Technology Associates GBWA200501-01 - page 33

    3 – Configuration 29 Caution Failure to change the default password is a serious security weakn ess. G T A r ecomm ends cha nging the defaul t user ID and password to prevent unauthorized access. Configuration Using GBAdmin If your computer ’ s operating system is Microsoft W indows, you can choose to configure your firewall by using the GBAd ...

  • Global Technology Associates GBWA200501-01 - page 34

    GB-Ware Firewall Product Guide 30 GBAdmin Network Information W indow Entering Y our Network Information GB-W are requires entry of the serial number and activation code. Click on Basic Configuration and expand the menu, then select F eatures . Enter the serial number and activation code, then click the SA V E button then the OK button. The firew ...

  • Global Technology Associates GBWA200501-01 - page 35

    3 – Configuration 31 Caution Closing GBAdm in without clic king SA VE will cause the entered data to be lost, and your firewall will remain in default configuration. Y ou will need to re-connect to the firewall and re-enter the network information. 2) Once you have completed the Network Informa tion form, apply the changes by clicking SA V E . ...

  • Global Technology Associates GBWA200501-01 - page 36

    GB-Ware Firewall Product Guide 32 1) On your computer , open terminal emulator software such as T era T erm or Microsoft HyperT erminal and enter the following settings for a new connection: E MULA TION VT -100 P ORT Computer serial (COM) port connected to the firewall via a DB-9 cable B AUD R A TE 38400 D A T A / B IT R A TE 8 P ARITY None S TOP ...

  • Global Technology Associates GBWA200501-01 - page 37

    3 – Configuration 33 2) If you specified the video console version during installation and your hardware was configured correctly , and the system did not encounter any problems, the Setup Wizard should now appear . Video Console Navigation There are three modes on the video console: log messages, the main inter- face and statistics. V iew log ...

  • Global Technology Associates GBWA200501-01 - page 38

    GB-Ware Firewall Product Guide 34 Note If you cancel the Setup Wizard, go to Basic Configuration then Features to enter your serial number and activation code. Next, enter your initial configuration information in Basic Configuration then N etwo rk Information . Y our firewall will not be functional until these steps are performed, either by hand ...

  • Global Technology Associates GBWA200501-01 - page 39

    3 – Configuration 35 Run DHCP? 6c. IP Address Y ou will reach this option if you rejected use of dynamic IP address services. Enter the static IP address and subnet mask of the exter - nal network interface. The IP address for the external network interface should be a valid ISP-registered IP address if you will be connecting your firewall to th ...

  • Global Technology Associates GBWA200501-01 - page 40

    GB-Ware Firewall Product Guide 36 ment Numbers Authority (IANA) has specified network addresses in RFC 1918 that are designated exclusively for internal networks. IANA Private Network IP Address Rules Quantity of Addresses Available Network Class IP Address Range 1 A 10.0.0.0 - 10.255.255.255 16 B 172.16.0.0 - 172.31.255.255 256 C 192.168.0.0 - 19 ...

  • Global Technology Associates GBWA200501-01 - page 41

    3 – Configuration 37 Accessing Y our GT A Firewall After completing the initial configuration in the setup wizard, your GT A firewall should be active and functioning in default security mode (all internal users are allowed outgoing connections, and no unsolicited connec- tions are allowed in). After testing connectivity , you can now perform a ...

  • Global Technology Associates GBWA200501-01 - page 42

    GB-Ware Firewall Product Guide 38 ...

  • Global Technology Associates GBWA200501-01 - page 43

    4 – T roubleshooting 39 4 T roubleshooting T roubleshooting Basics GT A Support recommends the following guidelines as a starting point when troubleshooting network problems: • Start with the simplest case of locally attached hosts. • Use IP addresses, not names. Y our problem could be DNS. • Work with one network segment at a time. • V e ...

  • Global Technology Associates GBWA200501-01 - page 44

    GB-Ware Firewall Product Guide 40 • Have you added a static route on the firewall to tell it which router is used to reach the Internet? Have you set the router ’s default route to be the firewall? Have you set the default route for hosts on the problem network to be the router or firewall? • Is the wrong IP address assigned to the hosts o ...

  • Global Technology Associates GBWA200501-01 - page 45

    4 – T roubleshooting 41 Note Distinguish between crossover cables and straight-through cables by comparing the connection ends. On a straight-through cable, the wire order matches; on a crossover cable, the first three of the four wires are in reverse order . 6a. How do I install the parallel port hardware key block? The parallel port hardware k ...

  • Global Technology Associates GBWA200501-01 - page 46

    GB-Ware Firewall Product Guide 42 Installation of the USB Key Block 3. Enter the GB-W are serial number and activation code in the Basic Configuration then F eatures section of the GB-W are web interface or wizard. Note If the hardware key block is not recognized once you have booted the system, and the serial number and activation code are both e ...

  • Global Technology Associates GBWA200501-01 - page 47

    4 – T roubleshooting 43 1 1. The warning message “Initializing runtime slice 2 failed; No space left on device” is displayed. 1. The Compact Flash card is too small; GT A only supports GT A-certi- fied Compact Flash cards. 2. The Compact Flash card no longer functions correctly; contact GT A or a GT A Channel Partner for hardware warranty . ...

  • Global Technology Associates GBWA200501-01 - page 48

    GB-Ware Firewall Product Guide 44 13. How do I revert to my previous configuration after a version upgrade? The firewall’s Compact Flash or hard drive memory is in two sections (“slices”); one contains the current software version plus any saved configu- ration, the other contains the previous software version and configuration. A new fi ...

  • Global Technology Associates GBWA200501-01 - page 49

    4 – T roubleshooting 45 1. If you have more than one CD-ROM drive installed, either discon- nect the additional CD-ROM drives and retry , or verify that the installation CD-ROM drive is detected first in the boot sequence, before other CD-ROM drives in the IDE controller ports. 2. Connect a different CD-ROM drive and retry . 3. T ry installing G ...

  • Global Technology Associates GBWA200501-01 - page 50

    GB-Ware Firewall Product Guide 46 ...

  • Global Technology Associates GBWA200501-01 - page 51

    4 – T roubleshooting 47 Appendix Installing the Compact Flash Card If you are installing your GB-W are firewall on a Compact Flash card, use these instructions to install the Compact Flash card for your firewall. The instructions assume that the Compact Flash IDE adapter is being installed in the intended firewall; modification is necessary t ...

  • Global Technology Associates GBWA200501-01 - page 52

    GB-Ware Firewall Product Guide 48 Warning Improper grounding can damage your system or Compact Flash card, and may cause physical injury or death. Never service your GB-W are system while it is plugged in or powered on! Assembling the Compact Flash IDE Adapter 1) Insert the four white nylon mounting posts into the mounting holes in the adapter boar ...

  • Global Technology Associates GBWA200501-01 - page 53

    4 – T roubleshooting 49 (Refer to the motherboard’ s user guide if you cannot locate the IDE controller ports.) Locating the Primary IDE Contr oller Port Mounting the Compact Flash Card Mount the adapter board securely inside the firewall’ s case; find a place where the components fit easily and securely , and where the IDE cable can easil ...

  • Global Technology Associates GBWA200501-01 - page 54

    GB-Ware Firewall Product Guide 50 Connecting the IDE Cable Insert one end of the IDE cable into the primary IDE controller port with the red-striped side of the cable lined up with pin #1 of the IDE controller port. Insert the other end of the IDE cable into the IDE port of the adapter board with the red-striped side of the IDE cable nearest to the ...

  • Global Technology Associates GBWA200501-01 - page 55

    4 – T roubleshooting 51 Note Those upgrading from GNA T Box System Software version 2.x or lower should record all configuration data and use it as a guide to enter new configuration data manually . Y ou may use the web interface to print the configuration or manually record it. 1) Once you have installed GB-W are on a Compact Flash card or ha ...

  • Global Technology Associates GBWA200501-01 - page 56

    GB-Ware Firewall Product Guide 52 4) GBAdmin will connect to the GB-W are firewall and prompt you for the user ID and password selected during installation; when suc- cessfully authenticated, GBAdmin will load the GB-W are configura - tion. 5) Merge the old configuration with the GB-W are firewall configuration. Click File then Merge . A warni ...

  • Global Technology Associates GBWA200501-01 - page 57

    4 – T roubleshooting 53 Note If your NIC is not listed, it’s possible that you are upgrading from an older version in which that NIC was supported. Please contact support with any questions. If you are placing the configuration on new hardware with different NICs, you will need to select your cards. 10) Save the configuration to the firewall ...

  • Global Technology Associates GBWA200501-01 - page 58

    GB-Ware Firewall Product Guide 54 ...

  • Global Technology Associates GBWA200501-01 - page 59

    Index 55 Index Symbols 4-pin power port 52. A activation code 34, 41, 47. adapter board 49. ADSL 5. asterisk. See wildcard symbol. auto-detect IDE 45. B Baud Rate 43. boot 39, 44. browsers Internet Explorer ii. C cable 40, 41, 43. cable modem 34. case-sensitive 43. compact flash 10, 16, 42. installation 49. Compaq 45. components 5, 51. COM port 43 ...

  • Global Technology Associates GBWA200501-01 - page 60

    GB-Ware Firewall Product Guide 56 log 43. Login 26. login 43. lost 43. lost 43. lower case 43. M mailing list 8. memory 43, 44. memory slice 16, 43. Microsoft 40. modem 6, 43. mounting posts 49, 50. N network configuration 40. Note 9, 23. notes & warnings 4, 5, 6, 10, 35. warning 50. null-modem 43. number , serial 34. O online help 40. P parit ...

Manufacturer Global Technology Associates Category Network Card

Documents that we receive from a manufacturer of a Global Technology Associates GBWA200501-01 can be divided into several groups. They are, among others:
- Global Technology Associates technical drawings
- GBWA200501-01 manuals
- Global Technology Associates product data sheets
- information booklets
- or energy labels Global Technology Associates GBWA200501-01
All of them are important, but the most important information from the point of view of use of the device are in the user manual Global Technology Associates GBWA200501-01.

A group of documents referred to as user manuals is also divided into more specific types, such as: Installation manuals Global Technology Associates GBWA200501-01, service manual, brief instructions and user manuals Global Technology Associates GBWA200501-01. Depending on your needs, you should look for the document you need. In our website you can view the most popular manual of the product Global Technology Associates GBWA200501-01.

Similar manuals

A complete manual for the device Global Technology Associates GBWA200501-01, how should it look like?
A manual, also referred to as a user manual, or simply "instructions" is a technical document designed to assist in the use Global Technology Associates GBWA200501-01 by users. Manuals are usually written by a technical writer, but in a language understandable to all users of Global Technology Associates GBWA200501-01.

A complete Global Technology Associates manual, should contain several basic components. Some of them are less important, such as: cover / title page or copyright page. However, the remaining part should provide us with information that is important from the point of view of the user.

1. Preface and tips on how to use the manual Global Technology Associates GBWA200501-01 - At the beginning of each manual we should find clues about how to use the guidelines. It should include information about the location of the Contents of the Global Technology Associates GBWA200501-01, FAQ or common problems, i.e. places that are most often searched by users in each manual
2. Contents - index of all tips concerning the Global Technology Associates GBWA200501-01, that we can find in the current document
3. Tips how to use the basic functions of the device Global Technology Associates GBWA200501-01 - which should help us in our first steps of using Global Technology Associates GBWA200501-01
4. Troubleshooting - systematic sequence of activities that will help us diagnose and subsequently solve the most important problems with Global Technology Associates GBWA200501-01
5. FAQ - Frequently Asked Questions
6. Contact detailsInformation about where to look for contact to the manufacturer/service of Global Technology Associates GBWA200501-01 in a specific country, if it was not possible to solve the problem on our own.

Do you have a question concerning Global Technology Associates GBWA200501-01?

Use the form below

If you did not solve your problem by using a manual Global Technology Associates GBWA200501-01, ask a question using the form below. If a user had a similar problem with Global Technology Associates GBWA200501-01 it is likely that he will want to share the way to solve it.

Copy the text from the picture

Captcha
New picture

Comments (0)