WatchGuard® Made Simple

This site is for common setup practices as well as tips and tricks for WatchGuard® Firewall products and contain editorial content.  While every effort is made to ensure all information is correct and concise, no warranty of any kind is expressed or implied, and all information is provided on an "as is" basis.

WatchGuard® is not affiliated with this site and all trademarks and graphics referenced are the property of WatchGuard Technologies Inc. or their respective owners.  All other content is the property of Fireboxsupport.com and may not be reproduced without permission.
 

                                       PLEASE REFRESH THE  PAGES IF YOU HAVE VISITED PREVIOUSLY! - NEW CONTENT ADDED!  01/02/2007

Common Practices

Fireware Pro

Configurations and examples

Firebox SSL VPN

Firebox Core SSL VPN

Firebox X Core/Edge

Setup -

Branch Office VPN (IPSec) - Firebox/Soho

Proxy Configuration

Webblocker Configuration

Remote User configuration using MUVPN & PPTP

Spamscreen®

High Availability

Troubleshooting -

Firebox X Resetting

Rebuilding your configuration

Backing Up/Restoring your Firebox Image.

 

WatchGuard Support Programs

Top

                                                 

MoneyCentral Stock Quote
Enter (WGRD) 

 

 

Firebox X Reset Procedures.

Resetting the Firebox X is a simple process.  You need to have either your original configuration file, or a new configuration file ready to load if you need to do this.  It does not actually "reset" or "default" the Firebox, it only puts it into a system mode where it will simply hold an IP address and wait for you to send it a new configuration. 

If you reset the Firebox and do not load a new configuration to it and reboot it, it goes back to the last configuration loaded to it.  This is helpful for initial setup, or if you forget the configuration passphrase for the unit.

To reset the Firebox X, power off the unit.  While holding the UP arrow button, power on the unit and keep holding the UP arrow until the front panel reads "SYSB Loopback".

The Firebox now holds the IP address 192.168.253.1 and will accept a configuration saved to it on that IP with a passphrase of "wg".  Remember this is just a system mode and you cannot connect to it.  Change your management station TCP/IP settings so it holds an IP of 192.168.253.x, are cabled to the trusted interface, and can ping the 192.168.253.1 address.  Now all you need to do is open policy manager with the policy you wish to load, select save>to Firebox, and save the configuration to the IP 192.168.253.1 with a configuration passphrase of "wg" and you will be prompted with the normal full flash options where you select what you want for passphrases. 

You may get a prompt telling you the IP you are saving to does not match the external, optional, or trusted IP's of the configuration.  This is fine, the Firebox is just telling you that after saving you will need to change your IP to the correct trusted subnet to connect again.  It is a warning for users managing many boxes to not accidentally save the wrong configuration to a certain Firebox.

After this is complete, change your IP to be on the trusted network and reconnect with the new trusted IP address and status passphrase.  Open policy manager and overwrite if asked and you can make normal changes from now on.

 

 

Top      User Forum