Category Archives: Smoothwall

::::::6 Policy Objects:::::: 1.Category Groups: Guardian » Policy objects » Category groups: (collection of blocked list categories)(categories and sub-categories) (can be used for block or allow) (it is a convenience feature, instead of adding individual categories, group of categories can be added) advanced view to drill down each category to fine tune each category(5 components):Continue reading “Smoothwall’s 6 different policy objects”

:::::Web filter policies::::: (policy enteries can be moved up and down to set the sequence and priority, as they are read from top to bottom) (changing anything in the web filter, does not require restart of proxy) 1.Manage Policy: 2.Policy Wizard: (first 4 steps are building the policies using the objects that we defined) 1.who:(usersContinue reading “Smoothwall Webfilter policies”

::::::DNS Services::::::: Services » DNS » Static DNS (will create entries on the host file) (overrides public DNS lookups on the UTM system) (can be useful when public DNS lookups points to an IP address either not avaiable from internal network locations or a host or domainname which will normally resolve to a public IPContinue reading “DNS Services on Smoothwall”

:::::System Administration::::: System » Administration » External access: (to control admin access to the system services from an external or internal network) System » Administration » Administrative users->Add user (to create and edit the user account for administring the smoothwall system) (e.g: create a user to run only the reports i.e. logs and real-time logsContinue reading “System administration on Smoothwall”

:::::Important IPs, URLs and ports::::: 1. http://guardian:81 – web management interface 2. https://guardian:441 – web management interface 3. https://swurl.smoothwall.net/login -SWURL 4. https://192.168.56.99:442/login -SSL login page 5. http://192.168.110.1:81 -default IP and port for web interface after install 6. https://192.168.110.1:441 -default IP and port for web interface after install 7. http://v6.netexam.com – training videos (farzand.ali@smoothwall.net) 8. https://mail.google.com/mail/u/0/#inboxContinue reading “Smoothwall (URLs/Tshoot tools,logs and reports/Updates and Licenses/Backups and Archives/Policies and Policy objects)”

:::::Linux Commands (Debian)/CLI Tools (SSH client – Putty/port 222/root user login):::: #ifconfig (all active network interfaces and some interface statistics)(add or change IP addresses) #clear (to clear the screen) #ping 192.168.1.1 #traceroute 192.168.1.1 #reboot #ethtool ethA (for example to change the MTU size on the fly for testing purposes) #setup (to change the default interfaceContinue reading “Linux Commands on Smoothwall (Debian Distribution) – Putty SSH client (port 222)”

:::::Hardware failover::::: (two UTM devices as a hardware failover pair) (essential in a high avaiability environment) (Master system – active state failover system – passive state) (these two devices communicate using the heartbeat interface) (all configuration changes made on the master system gets replicated to the failover system) (if the master system fails, the failoverContinue reading “Smoothwall Hardware Failover and Redundancy (Heartbeat)(Master and Slave)(Active and Passive Modes)”

http://www.youtube.com/watch?v=a97lW680hFM   ::::3 types of VPN:::: 1.IPSec 2.L2TP 3.SSL ::::2 ways to connect VPNs:::: 1.subnets i.e. site to site 2.roadwarrior i.e. client to site/remote access vpn ::::4 options on smoothwall for VPNs:::: 1.IPSec subnets (for site to site vpn) 2.IPSec roadwarrior (for client to site/remote access vpn)(windows/MacOSX/linux) 3.L2TP roadwarrior (for client to site/remote access vpn)(windows/iOS/Android)Continue reading “Smoothwall (VPNs)”

http://www.youtube.com/watch?v=Kw-u-38Zpyc http://www.youtube.com/watch?v=UfzmZUWpG3E http://www.youtube.com/watch?v=yw8Qpp3VAKM

::::Different types of Engines used by the Smoothwall system:::: 1. Two web filter engines: 1.Guardian3               2.Web proxy 2.Anti-malware – VIPRE 3.Anti-spam – MailShell 4.IPS – SNORT :::::IP address format on smoothwall:::::: single IP: 192.168.1.1 range: 192.168.1.1-192.168.1.9 subnet: 192.168.1.0/24 (CIDR) or 192.168.1.0/255.255.255.0  ::::Updates:::::: (latest update to date is updateContinue reading “Smoothwall (Types of Engines/IP Address format)(New Guardian3 Module)(Updates)”