Manualshelf

User guide

ManualsBrandsWatchguard ManualsComputer equipmentFirebox X1000
11121314151617181920
xii WatchGuard Firebox System
Adding a proxy service for HTTP .................................. 121
Configuring a caching proxy server ............................... 122
Configuring the DNS Proxy Service ............................... 123
Adding the DNS Proxy Service ..................................... 124
CHAPTER 10 Creating Aliases and Implementing
Authentication ....................................... 127
Using Aliases ............................................................... 128
Adding an alias ......................................................... 128
How User Authentication Works .................................... 130
Authentication Server Types ......................................... 131
Defining Firebox Users and Groups for Authentication .... 132
Configuring Windows NT Server Authentication ............. 134
Configuring RADIUS Server Authentication .................... 135
Configuring CRYPTOCard Server Authentication ............ 137
Configuring SecurID Authentication .............................. 139
CHAPTER 11 Protecting Your Network From
Attacks ................................................... 141
Default Packet Handling ............................................... 142
Blocking spoofing attacks ........................................... 142
Blocking port space and address space attacks ............... 143
Stopping IP options attacks ......................................... 144
Stopping SYN Flood attacks ........................................ 144
Changing SYN flood settings ....................................... 145
Integrating Intrusion Detection ..................................... 146
Using the fbidsmate command-line utility ...................... 147
Blocking Sites .............................................................. 149
Blocking a site permanently ........................................ 150
Creating exceptions to the Blocked Sites list ................... 152
Changing the auto-block duration ................................ 152
Logging and notification for blocked sites ...................... 152
Blocking Ports .............................................................. 153
Avoiding problems with legitimate users ........................ 155
Blocking a port permanently ....................................... 155
Auto-blocking sites that try to use blocked ports ............. 156