advertisement
WatchGuard
®
V10, V60L, V60,
V80, V100
Hardware Guide
Vclass 5.0
FCC Certification
This device has been tested and found to comply with limits for a Class A digital device, pursuant to Part 15 of the FCC Rules. Operation is subject to the following two conditions:
• This device may not cause harmful interference.
• This device must accept any interference received, including interference that may cause undesired operation.
CE Notice
The CE symbol on your WatchGuard Technologies equipment indicates that it is in compliance with the
Electromagnetic Compatibility (EMC) directive and the Low Voltage Directive (LVD) of the European
Union (EU).
Industry Canada
This Class A digital apparatus meets all requirements of the Canadian Interference-Causing Equipment
Regulations.
Cet appareil numerique de la classe A respecte toutes les exigences du Reglement sur le materiel broulleur du Canada.
ii Vclass
VCCI Notice Class A ITE
Firebox V10, V60L, V60, V80, V100 Hardware Guide iii
Declaration of Conformity iv Vclass
Firebox Limited Hardware Warranty
This Limited Hardware Warranty (the “Warranty”) applies to the enclosed
WatchGuard hardware product (the “Product”), not including any associated software which is licensed pursuant to a seperate end-user license agreement and warranty. BY
USING THE PRODUCT, YOU AGREE TO THE TERMS HEREOF. If you do not agree to these terms, please return this package, along with proof of purchase, to the authorized dealer from which you purchased it for a full refund. WatchGuard
Technologies, Inc. (”WatchGuard”) and you agree as follows:
1. Limited Warranty. WatchGuard warrants that upon delivery and for one (1) year thereafter (the “Warranty Period”): (a) the Product will be free from material defects in materials and workmanship, and (b) the Product, when properly installed and used for its intended purpose and in its intended operating environment, will perform substantially in accordance with WatchGuard applicable specifications.
This warranty does not apply to any Product that has been: (i) altered, repaired or modified by any party other than WatchGuard; or (ii) damaged or destroyed by accidents, power spikes or similar events or by any intentional, reckless or negligent acts or omissions of any party. You may have additional warranties with respect to the
Product from the manufacturers of Product components. However, you agree not to look to WatchGuard for, and hereby release WatchGuard from any liability for, performance of, enforcement of, or damages or other relief on account of, any such warranties or any breach thereof.
2. Remedies. If any Product does not comply with the WatchGuard warranties set forth in Section 1 above, WatchGuard will, at its option, either (a) repair the Product, or (b) replace the Product; provided, that you will be responsible for returning the Product to the place of purchase and for all costs of shipping and handling. Repair or replacement of the Product shall not extend the Warranty Period. Any Product, component, part or other item replaced by WatchGuard becomes the property of WatchGuard .
WatchGuard shall not be responsible for return of or damage to any software, firmware, information or data contained in, stored on, or integrated with any returned
Products.
3. Disclaimer and Release. THE WARRANTIES, OBLIGATIONS AND LIABILITIES
OF WATCHGUARD, AND YOUR REMEDIES, SET FORTH IN PARAGRAPHS 1 AND
2 ABOVE ARE EXCLUSIVE AND IN SUBSTITUTION FOR, AND YOU HEREBY
WAIVE, DISCLAIM AND RELEASE ANY AND ALL OTHER WARRANTIES,
OBLIGATIONS AND LIABILITIES OF WATCHGUARD AND ALL OTHER RIGHTS,
CLAIMS AND REMEDIES YOU MAY HAVE AGAINST WATCHGUARD, EXPRESS
OR IMPLIED, ARISING BY LAW OR OTHERWISE, WITH RESPECT TO ANY
NONCONFORMANCE OR DEFECT IN THE PRODUCT (INCLUDING, BUT NOT
LIMITED TO, ANY IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS
FOR A PARTICULAR PURPOSE, ANY IMPLIED WARRANTY ARISING FROM
COURSE OF PERFORMANCE, COURSE OF DEALING, OR USAGE OF TRADE,
ANY WARRANTY OF NONINFRINGEMENT, ANY WARRANTY OF
UNINTERRUPTED OR ERROR-FREE OPERATION, ANY OBLIGATION,
LIABILITY, RIGHT, CLAIM OR REMEDY IN TORT, WHETHER OR NOT ARISING
FROM THE NEGLIGENCE (WHETHER ACTIVE, PASSIVE OR IMPUTED) OR
FAULT OF WATCHGUARD OR FROM PRODUCT LIABILITY, STRICT LIABILITY
OR OTHER THEORY, AND ANY OBLIGATION, LIABILITY, RIGHT, CLAIM OR
REMEDY FOR LOSS OR DAMAGE TO, OR CAUSED BY OR CONTRIBUTED TO
BY,THE PRODUCT).
4. Limitation of Liability. WATCHGUARD TECHNOLOGIES’ LIABILITY (WHETHER
ARISING IN CONTRACT (INCLUDING WARRANTY), TORT (INCLUDING ACTIVE,
PASSIVE OR IMPUTED NEGLIGENCE AND STRICT LIABILITY AND FAULT) OR
OTHER THEORY) WITH REGARD TO ANY PRODUCT WILL IN NO EVENT
EXCEED THE PURCHASE PRICE PAID BY YOU FOR SUCH PRODUCT. THIS
SHALL BE TRUE EVEN IN THE EVENT OF THE FAILURE OF ANY AGREED
REMEDY. IN NO EVENT WILL WATCHGUARD TECHNOLOGIES BE LIABLE TO
Firebox V10, V60L, V60, V80, V100 Hardware Guide v
YOU OR ANY THIRD PARTY (WHETHER ARISING IN CONTRACT (INCLUDING
WARRANTY), TORT (INCLUDING ACTIVE, PASSIVE OR IMPUTED NEGLIGENCE
AND STRICT LIABILITY AND FAULT) OR OTHER THEORY) FOR COST OF COVER
OR FOR ANY INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL
DAMAGES (INCLUDING WITHOUT LIMITATION LOSS OF PROFITS, BUSINESS,
OR DATA) ARISING OUT OF OR IN CONNECTION WITH THIS WARRANTY OR
THE USE OF OR INABILITY TO USE THE PRODUCT, EVEN IF WATCHGUARD
TECHNOLOGIES HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH
DAMAGES. THIS SHALL BE TRUE EVEN IN THE EVENT OF THE FAILURE OF
ANY AGREED REMEDY.
5. Miscellaneous Provisions. This Warranty will be governed by the laws of the state of
Washington, U.S.A., without reference to its choice of law rules. The provisions of the
1980 United Nations Convention on Contracts for the International Sales of Goods, as amended, shall not apply. You agree not to directly or indirectly transfer the Product or associated documentation to any country to which such transfer would be prohibited by the U.S. Export laws and regulations. If any provision of this Warranty is found to be invalid or unenforceable, then the remainder shall have full force and effect and the invalid provision shall be modified or partially enforced to the maximum extent permitted by law to effectuate the purpose of this Warranty. This is the entire agreement between WatchGuard and you relating to the Product, and supersedes any prior purchase order, communications, advertising or representations concerning the
Product AND BY USING THE PRODUCT YOU AGREE TO THESE TERMS. No change or modification of this Agreement will be valid unless it is in writing, and is signed by WatchGuard.
Notice to Users
Information in this guide is subject to change without notice. Companies, names, and data used in examples herein are fictitious unless otherwise noted. No part of this guide may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of WatchGuard
Technologies, Inc.
Copyright, Trademark, and Patent Information
Copyright© 1998 - 2003 WatchGuard Technologies, Inc. All rights reserved.
AppLock®, AppLock®/Web, Designing peace of mind®, Firebox®, Firebox® 1000,
Firebox® 2500, Firebox® 4500, Firebox® II, Firebox® II Plus, Firebox® II
FastVPN, Firebox® III, Firebox® SOHO, Firebox® SOHO 6, Firebox® SOHO 6tc,
Firebox® SOHO|tc, Firebox® V100, Firebox® V80, Firebox® V60, Firebox V60L,
Firebox® V10, LiveSecurity®, LockSolid®, RapidStream®, RapidCore®,
ServerLock®, WatchGuard®, WatchGuard® Technologies, Inc., DVCP™ technology,,
Enforcer/MUVPN™, FireChip™, HackAdmin™, HostWatch™, Make Security Your
Strength™, RapidCare™, SchoolMate™, ServiceWatch™, Smart Security. Simply
Done.™, Vcontroller™, VPNforce™ are either registered trademarks or trademarks of
WatchGuard Technologies, Inc. in the United States and/or other countries.
© Hi/fn, Inc. 1993, including one or more U.S. Patents: 4701745, 5016009,
5126739, and 5146221 and other patents pending.
Microsoft®, Internet Explorer®, Windows® 95, Windows® 98, Windows NT® and
Windows® 2000 are either registered trademarks or trademarks of Microsoft
Corporation in the United States and/or other countries.
Netscape and Netscape Navigator are registered trademarks of Netscape
Communications Corporation in the United States and other countries.
vi Vclass
RC2 Symmetric Block Cipher, RC4 Symmetric Stream Cipher, RC5 Symmetric Block
Cipher, BSAFE, TIPEM, RSA Public Key Cryptosystem, MD, MD2, MD4, and MD5 are either trademarks or registered trademarks of RSA Data Security, Inc. Certain materials herein are Copyright © 1992-1999 RSA Data Security, Inc. All rights reserved.
RealNetworks, RealAudio, and RealVideo are either a registered trademark or trademark of RealNetworks, Inc. in the United States and/or other countries.
Java and all Jave-based marks are trademarks or registered trademarks of Sun
Microsystems, Inc. in the United States and other countries. All right reserved.
© 1995-1998 Eric Young (eay@cryptsoft). All rights reserved.
© 1998-2000 The OpenSSL Project. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
3. All advertising materials mentioning features or use of this software must display the following acknowledgment: "This product includes software developed by the
OpenSSL Project for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to endorse or promote products derived from this software without prior written permission. For written permission, please contact [email protected].
5. Products derived from this software may not be called "OpenSSL" nor may
"OpenSSL" appear in their names without prior written permission of the OpenSSL
Project.
6. Redistributions of any form whatsoever must retain the following acknowledgment:
"This product includes software developed by the OpenSSL Project for use in the
OpenSSL Toolkit (http://www.openssl.org/)"
THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
This product includes cryptographic software written by Eric Young
([email protected]). This product includes software written by Tim
Hudson ([email protected]).
© 1995-1998 Eric Young ([email protected])
All rights reserved.
This package is an SSL implementation written by Eric Young ([email protected]).
The implementation was written so as to conform with Netscapes SSL.
This library is free for commercial and non-commercial use as long as the following conditions are aheared to. The following conditions apply to all code found in this distribution, be it the RC4, RSA, lhash, DES, etc., code; not just the SSL code. The
SSL documentation included with this distribution is covered by the same copyright terms except that the holder is Tim Hudson ([email protected]).
Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be removed. If this package is used in a product, Eric Young should be given attribution as the author of the parts of the library used. This can be in the form of a
Firebox V10, V60L, V60, V80, V100 Hardware Guide vii
viii textual message at program startup or in documentation (online or textual) provided with the package. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1. Redistributions of source code must retain the copyright notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
3. All advertising materials mentioning features or use of this software must display the following acknowledgement: "This product includes cryptographic software written by Eric Young ([email protected])" The word 'cryptographic' can be left out if the routines from the library being used are not cryptographic related :-).
4. If you include any Windows specific code (or a derivative thereof) from the apps directory (application code) you must include an acknowledgement: "This product includes software written by Tim Hudson ([email protected])"
THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND ANY EXPRESS
OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR
CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
CAUSED AND ON ANY THEORY OF LIABILITY,
WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
The licence and distribution terms for any publicly available version or derivative of this code cannot be changed. i.e. this code cannot simply be copied and put under another distribution licence [including the GNU Public Licence.]
All other trademarks or trade names mentioned herein, if any, are the property of their respective owners.
Part No: 1194-000
Vclass
Contents
Hardware Descriptions ..............................1
Package Contents ............................................................1
WatchGuard Firebox V10 security appliance .......................1
WatchGuard Firebox V60, V60L, and V80 security appliance ..2
WatchGuard Firebox V100 security appliance .....................2
Front and Back Views .......................................................3
The Firebox V10 model ..................................................3
The Firebox V60, V60L and V80 models
.............................5
.................................................8
Firebox V10, V60, V60L, V80, and V100 Components .......11
Index .......................................................................13
Firebox V10, V60L, V60, V80, V100 Hardware Guide ix
x Vclass
CHAPTER 1
Hardware
Descriptions
This chapter provides a visual tour of the external hardware features of the WatchGuard® Firebox® V10,
V60, V80, and V100 security appliances, focusing on the buttons, LEDs, interfaces, ports. Please see the Fire-
box Vclass User Guide for installation instructions.
Package Contents
Each appliance model is packaged with different contents, as described in this section.
WatchGuard Firebox V10 security appliance
• One 12V 1.25A, power supply
• Two green, straight-through, 10/100 BaseT,
Ethernet cables
• A CD containing the WatchGuard Vcontroller application software for use with three different operating systems: Windows 2000/XP, Solaris,
Firebox V10, V60L, V60, V80, V100 Hardware Guide 1
CHAPTER 1: Hardware Descriptions and Linux. The CD also provides electronic versions of the complete user documentation set.
WatchGuard Firebox V60, V60L, and V80 security appliance
• One power cord
• One red, crossover 10/100 BaseT Ethernet cable
• Three green, straight-through, 10/100 BaseT, Ethernet cables
• One console, RJ 45-to-RJ 45, serial cable and DB-9 adapter
• One APC-manufactured, appliance-to-UPS device cable
• A CD containing the WatchGuard Vcontroller application software for use with three different operating systems: Windows 2000/XP, Solaris, and
Linux. The CD also provides electronic versions of the complete user documentation set.
• Rack-mounting hardware. If you are mounting the appliance in a rack, note that Firebox V60L, V60, and
V80 appliances are 1U high.
WatchGuard Firebox V100 security appliance
• One power cord
• One red, crossover, 10/100 BaseT, Ethernet cable
• One green, straight-through, 10/100 BaseT, Ethernet cable
• Two optical, data cables
• One APC-manufactured, appliance-to-UPS device cable
• One console, RJ 45-to-RJ 45, serial cable and DB-9 adapter
• A CD containing the WatchGuard Vcontroller application software for use with three different
2 Vclass
Front and Back Views operating systems: Windows 2000/XP, Solaris, and
Linux. The CD also provides electronic versions of the complete user documentation set.
• Rack-mounting hardware. If you are mounting the appliance in a rack, note that the Firebox V100 is 1 U high.
Front and Back Views
The Firebox V10 model
The front panel of a Firebox V10 appliance contains the indicators shown in the following illustration.
Alarm
Admin
Ready
Power
The LEDs on the front panel are as follows:
Power
Illuminates when the appliance has been turned on.
Ready
Blinks when the appliance is powering up.
Illuminates when the appliance is ready for network traffic.
Firebox V10, V60L, V60, V80, V100 Hardware Guide 3
CHAPTER 1: Hardware Descriptions
Alarm
Illuminates when certain alarms are triggered. For more information on alarms, see the Firebox Vclass
User Guide.
Admin
Illuminates when a system administrator is connected to the appliance by means of the
Vcontroller or the WatchGuard CLI.
The back panel of a Firebox V10 appliance contains the interfaces and ports shown in the following illustration.
1 (Public)
0 (Private)
4
Console Power
0 (Private) and 1 (Public)
Two Ethernet interfaces (RJ-45 connectors) labeled
0 and 1, act as the primary data interfaces.
Incorporated into each Ethernet interface are two indicator lights labeled 10 and 100. These LEDs indicate the speed of traffic being transmitted.
Console
A single RJ-45 interface permits a direct workstation-to-appliance connection. You can use the WatchGuard Command Line Interface (CLI) to configure and administer this appliance. For more information about this administrative option, see the CLI Guide.
Vclass
Front and Back Views
Power Port
This interface serves as the connection to a
100VAC-to-240VAC (50/60Hz) source. Use the power cord supplied in the package to connect this appliance to a UPS device or to a power outlet. The power supply can auto-detect 110/220 voltage.
N OTE
Always connect the power cable to the power port on the back of the V10 before you connect it to the AC outlet.
N
OTE
In the event of a power failure, this security appliance, if left connected to the power source, automatically restarts itself after electrical power has been restored. You do not have to unplug and then reconnect the appliance to the power source.
The Firebox V60, V60L and V80 models
The front panels of the Firebox V60, V60L, and V80 security appliances contain the features shown in the following illustration.
Accelerated Ethernet
Interfaces
0 (Private)
1 (Public)
2 (DMZ)
3 (DMZ)
Console Interface
Ready
Admin
Alarm Power LED
100 10 100 10 100 10 100 10
0 1 2 3
HA
100 10 100 10
HA2 HA1 Console
Ready
Admin
Alarm
High Availability
Status LED
High Availability
(HA Interface)
Reset
Power
Reset port
Accelerated Ethernet Interfaces
Four accelerated, Ethernet interfaces (RJ-45 connectors) labeled 0 (Private), 1 (Public), 2 (DMZ1), and 3 (DMZ2) act as the primary conduits through which passes all of the network data traffic.
Incorporated into each interface are two indicator
Firebox V10, V60L, V60, V80, V100 Hardware Guide 5
CHAPTER 1: Hardware Descriptions lights labeled 10 and 100. These LEDs indicate the speed of traffic being transmitted.
High Availability Status LED
Indicates the current status of this appliance, if it is one of two connected as a high-availability system.
If this is the primary appliance, and the light is on and steady, the system is functional, and this appliance is on-line. If this is the primary appliance and the LED is blinking, a failover has occurred and the secondary appliance is online.
High Availability Interfaces
Two Ethernet interfaces, labelled HA2 and HA1 enable you to connect with a cross-over Ethernet cable to other High Availability-ready Firebox
Vclass appliances for failover (backup) protection.
Incorporated into the two high-availability
Ethernet ports are two indicator lights labeled 10 and 100. These LEDs indicate the speed traffic is transmitted.
Console Interface
A single RJ-45 interface, labeled Console, permits a direct workstation-to-appliance connection. You can use the WatchGuard Command Line Interface
(CLI) to configure and administer this appliance.
For more information about this administrative option, see the CLI Guide.
Ready
Blinks when the appliance is powering up.
Illuminates when the appliance is ready for network traffic.
Admin
Illuminates when a system administrator is connected to the appliance by means of the
Vcontroller or the WatchGuard CLI.
6 Vclass
Front and Back Views
Alarm
Illuminates when certain alarms are triggered. For more information on alarms, see the Firebox Vclass
User Guide.
Reset port
This opening allows you to insert a straight pin or paperclip and press an internal reset switch that restarts the appliance.
Power LED
Illuminates when the appliance has been turned on.
The back panel of a Firebox V60, V60L, or V80 contains the features shown in the following illustration.
Power supply switch
AC Power cord
"UPS" port
AC Power Cord
Enables you to connect the appliance (using the supplied power cord) to a 100 to 240VAC (50/
60Hz) power source.
N OTE
Do not connect Firebox Vclass appliance to a source of power that supplies the wrong voltage. Doing so will damage the appliance and void the warranty.
Power Supply Switch
Allows you to turn the appliance on or off.
UPS Port
Permits connection of the appliance to an
Uninterruptable Power Supply (UPS). This type of connection enables UPS devices to notify the
Firebox V10, V60L, V60, V80, V100 Hardware Guide 7
CHAPTER 1: Hardware Descriptions appliance if the power goes out, prompting the appliance to shut itself down properly.
UPS devices from American Power Company
(APC) are currently supported by the Firebox
Vclass power management firmware. Check the
WatchGuard Web site (www.watchguard.com) for updated information on complete UPS support.
N
OTE
In the event of a power failure, this security appliance, if left connected to the power source, will automatically restart itself after electrical power has been restored. You do not have to press either the Power button on the front or the power supply switch on the back of the appliance.
The Firebox V100 model
The front panel of the Firebox V100 security appliance contains the features shown in the following illustration.
0 (Private)
1 (Public)
Rx
Tx
Link
Rx
Tx
Link
Rx
Tx
Link
Console Interface
Ready
Admin
Alarm Power LED
High Availability
Status LED
Rx
Tx
Link
HA
100 10 100 10
HA2 HA1 Console
Ready
Admin
Alarm
High Availability
(HA Interface)
Reset
Power
Reset port
Gigabit interfaces
Two Gigabit Ethernet interfaces, labeled 0 and 1
(corresponding to Private and Public), act as the primary conduits through which network traffic
8 Vclass
Front and Back Views passes. These interfaces are multi-mode, but they do not support 10/100 communications.
On each side of the two Gigabit interfaces are three
LEDs labeled RX, TX, and Link.
The Link LED is lit when a connection is active.
The RX LED blinks steadily when data packets are being received by the appliance.
The TX LED blinks steadily when data packets are being transmitted.
High Availability Status LED
Indicates the current status of this appliance, if it is one of two connected as a high-availability system.
If this is the primary appliance, and the light is on and steady, the system is functional, and this appliance is online. If this is the primary appliance and the LED is blinking, a failover has occurred and the secondary appliance is online.
For more information on HA setup, see the Firebox
Vclass User Guide.
High Availability Interfaces
Two Ethernet interfaces, labelled HA2 and HA1 enable you to connect with a cross-over Ethernet cable to other High Availability-ready Firebox
Vclass appliances for failover (backup) protection.
Incorporated into the two high-availability
Ethernet ports are two indicator lights labeled 10 and 100. These LEDs indicate the speed traffic is transmitted.
Console Interface
A single RJ-45 interface, labelled Console, supports a direct workstation-to-appliance connection. You can use the WatchGuard Command Line Interface
(CLI) to administer and test this appliance. To learn more about this administrative option, see the CLI
Guide included on the installer CD.
Firebox V10, V60L, V60, V80, V100 Hardware Guide 9
CHAPTER 1: Hardware Descriptions
Ready
Blinks when the appliance is powering up or powering down. It is steadily lit when the appliance is ready for network traffic.
Admin
Illuminates when a user or system administrator is connected to the Firebox Vclass appliance by means of the Vcontroller or the WatchGuard CLI.
Alarm
Indicates when an alarm is activated. For more information on alarms, see the Firebox Vclass User
Guide.
Reset Port
Allows you to insert a straight pin or paperclip and press an internal Reset switch that restarts the appliance. This is an alternative to unplugging and replugging the power cord.
Power LED
Indicates whether the appliance has been fully turned on and is ready for administration or use.
The back panel of a Firebox V100 includes the features shown in the following illustration.l
Power supply switch
AC power cord
"UPS" port
N OTE
Do not connect any Firebox Vclass appliance to a source of power that supplies the wrong voltage. Doing so will damage the appliance and void the warranty.
10 Vclass
Firebox V10, V60, V60L, V80, and V100 Components
AC Power Cord
Enables you to connect the appliance (using the supplied power cord) to a 100 to 240VAC (50/
60Hz) power source. The power supply can autodetect 110/220 voltage.
Power Supply Switch
Allows you to turn the appliance on or off.
UPS Port
Allows you to use the RS-232 cable provided in the package to connect the appliance to an
Uninterruptable Power Supply (UPS). This type of connection enables UPS devices to notify the appliance if the power goes out, prompting the appliance to shut itself down properly.
UPS devices from American Power Company
(APC) are currently supported by the Firebox
Vclass power management firmware. Check the
WatchGuard Web site (www.watchguard.com) for updated information on complete UPS support.
N
OTE
In the event of a power failure, this security appliance, if left connected to the power source, will automatically restart itself after electrical power has been restored. You do not have to press either the Power button on the front or the power supply switch on the back of the appliance.
Firebox V10, V60, V60L, V80, and V100
Components
Every appliance has three sets of components:
RapidCore™ hardware ensemble
A well-integrated chip set and memory system powers every Firebox Vclass appliance in its
Firebox V10, V60L, V60, V80, V100 Hardware Guide 11
CHAPTER 1: Hardware Descriptions primary duties: protecting your network and efficiently managing all legitimate data streams.
WatchGuard Firebox Vclass Operating System™ (OS)
Every Firebox Vclass security appliance is preinstalled with the latest version of the Firebox
Vclass Operating System–which is identified on the packaging by a version number. This operating system includes all the software resources that make the appliance fully functional.
WatchGuard Firebox Vclass administrative client applications
The WatchGuard Vcontroller (or the companion
WatchGuard CPM client software) gives you full control of all the customizable operating system parameters, including basic system configurations, security policies, maintenance, and activity logging.
If you already have one or more operational Firebox Vclass appliances in your network, you can shortcut the installation and configuration process on a new factory-default appliance. First, export a complete configuration file from an operational appliance and then import it into the new appliance. After this is done, you can change a few key settings and have a fully functional appliance in location and ready for use. For more information, see Firebox Vclass User
Guide.
N OTE
This manual refers to the accelerated data interfaces interchangeably as Private , Public , and (where available)
DMZ or with the standard interface numbering (0, 1, etc.):
0 = Private, 1 = Public, 2&3 = DMZ
Where other interfaces are included (a second DMZ or High
Availability), the corresponding interface numbering will be noted at that time.
12 Vclass
Index
A
Admin LED
C certification, FCC
Console interface
L
LEDs
Admin
Alarm
Power
P
power failures 5 power interface 5
Power LED
E
Ethernet interfaces for Firebox V10
for Firebox V60 and V80
R
RapidCore hardware ensemble
Reset switch
F
FCC certification
Firebox V10
front panel
package contents
Firebox V100
package contents
Firebox V60, V60L, V80
package contents
Firebox Vclass Operating System
Fireboxes components of
U
UPS devices supported
UPS interface
V60, V60L, V80
V
Vcontroller
W
WatchGuard Vcontroller
H
HA status LED
Firebox V10, V60L, V60, V80, V100 Hardware Guide 13
advertisement
Related manuals
advertisement