manualshive.com logo in svg

Netgate SG-5100, Product Manual

The Netgate SG-5100 is a high-performance firewall appliance designed for secure network deployments. It provides advanced security features and intuitive management. Access the comprehensive product manual for free download at manualshive.com, empowering users with detailed instructions and insights for optimal configuration and utilization.

Share
Download
background image

CHAPTER

ONE

I/O PORTS

1.1 Rear Side

1.2 Ethernet Ports

Interface Name

Port Name

Port Type

Port Speed

WAN

IGB0

RJ-45

1 Gbps

LAN

IGB1

RJ-45

1 Gbps

OPT1

IX0

RJ-45

1 Gbps

OPT2

IX1

RJ-45

1 Gbps

OPT3

IX2

RJ-45

1 Gbps

OPT4

IX3

RJ-45

1 Gbps

Note:

All Ethernet ports of the pfSense appliance support auto-MDIX and are capable of utilizing either straight-

through or crossover ethernet cables.

2

Summary of Contents for SG-5100

Page 1: ...Product Manual SG 5100 Netgate Sep 21 2018 ...

Page 2: ...CONTENTS 1 I O Ports 2 2 Getting Started 4 3 Connecting to Console Port 15 4 Additional Resources 22 5 Warranty and Support Information 23 6 Safety and Legal 24 7 Reinstalling pfSense 32 i ...

Page 3: ...00 Firewall Appliance This appliance provides a powerful reliable cost effective solution Quick Start Guide The Quick Start Guide covers the first time connection procedures and will provide you with the information you need to get your appliance up and running CONTENTS 1 ...

Page 4: ...ort Speed WAN IGB0 RJ 45 1 Gbps LAN IGB1 RJ 45 1 Gbps OPT1 IX0 RJ 45 1 Gbps OPT2 IX1 RJ 45 1 Gbps OPT3 IX2 RJ 45 1 Gbps OPT4 IX3 RJ 45 1 Gbps Note All Ethernet ports of the pfSense appliance support auto MDIX and are capable of utilizing either straight through or crossover ethernet cables 2 ...

Page 5: ...2x USB 3 0 Status LED Description Top LED Add on storage activity does not show eMMC activity Middle LED Activity Bottom LED Power 1 4 Front Side 1 Receessed Reset Button 2 Power Button 3 Power 12VDC with threaded locking connector Center Pin Positive 1 3 Other Ports and Indicators 3 ...

Page 6: ...ovided by the ISP might have multiple LAN ports If so they are usually numbered For the purpose of this installation please select port 1 The next step is to connect the LAN port shown in the I O Ports section of the pfSense appliance to the computer which will be used to access the firewall console Connect one end of the second ethernet cable to the LAN port shown in the I O Ports section of the ...

Page 7: ...icating a problem with website security Below is a typical example in Google Chrome If this message or similar message is encountered it is safe to proceed At the login page enter the default pfSense password and username Username admin Password pfsense Click Login to continue 2 3 Wizard Upon successful login the following is displayed 2 2 Logging Into the Web Interface 5 ...

Page 8: ...ell as http 192 168 1 1 2 6 Domain If an existing DNS domain is in use within the local network such as a Microsoft Active Directory domain use that domain here This is the domain suffix assigned to DHCP clients which should match the internal network For networks without any internal DNS domains enter any desired domain name The default localdomain is used for the purposes of this tutorial 2 7 DN...

Page 9: ...Next after filling in the fields as appropriate 2 8 Time Server Configuration 2 9 Time Server Synchronization Setting time server synchronization is quite simple We recommend using the default pfSense time server address which will randomly select an NTP server from a pool 2 10 Setting Time Zone Select an appropriate time zone for the location of the firewall For purposes of this manual the Timezo...

Page 10: ...ress of the old firewall may be entered here if it can be determined This can help avoid issues involved in switching out firewalls such as ARP caches ISPs locking to single MAC addresses etc If the MAC address of the old firewall cannot be located the impact is most likely insignificant Power cycle the ISP router and modem and the new MAC address will usually be able to get online For some ISPs i...

Page 11: ...ically require a DHCP Hostname entry Unless the ISP requires the setting leave it blank 2 15 Configuring PPPoE and PPTP Interfaces Information added in these sections is assigned by the ISP Configure these settings as directed by the ISP 2 14 Configuring DHCP Hostname 9 ...

Page 12: ...rivate networks The following inbound address Ranges are blocked by this firewall rule 10 0 0 1 to 10 255 255 255 172 16 0 1 to 172 31 255 254 192 168 0 1 to 192 168 255 254 127 0 0 0 8 100 64 0 0 10 fc00 7 Bogons are public IP addresses that have not yet been allocated so they may typically also be safely blocked as they should not be in active use Check Block RFC1918 Private Networks and Block B...

Page 13: ... 1 0 24 IP addresses within the 172 16 0 0 12 RFC1918 private address block are the least frequently used We recommend selecting a block of addresses between 172 16 x x and 172 31 x x for least likelihood of having VPN connectivity difficulties An example of a conflict would be If the local LAN is set to 192 168 1 x and a remote user is connected to a wireless hotspot using 192 168 1 x very common...

Page 14: ...bConfigurator make the selection as highlighted The Dashboard display will follow 2 21 Backing Up and Restoring At this point basic LAN and WAN interface configuration is complete Before proceeding backup the firewall con figuration From the menu at the top of the page browse to Diagnostics Backup Restore 2 19 Save Changes 12 ...

Page 15: ...0 Click Download Configuration and save a copy of the firewall configuration This configuration can be restored from the same screen by choosing the backup file under Restore configuration 2 21 Backing Up and Restoring 13 ...

Page 16: ...There are times when accessing the console is required Perhaps GUI console access has been locked out or the password has been lost or forgotten See also Connecting to Console Port Connect to the console Cable is required 2 22 Connecting to the Console 14 ...

Page 17: ...e console through the serial interface Microsoft Windows no longer includes HyperTerminal in Versions 7 and up PuTTY is free and can be downloaded from http www chiark greenend org uk sgtatham putty download html 3 1 2 Configuring Serial Terminal Emulator PuTTY must be configured to communicate with the pfSense appliance In order to do so you must first know what COM Port your computer has assigne...

Page 18: ...uld install automatically for Windows 7 and above Open PuTTY and locate the Session display as shown below For the Connection type select Serial Set Serial line to the COM Port that is displayed in Windows Device Manager COM3 for this example and the Speed to 115200 bits per second the speed of the BIOS in this case 3 1 Simple Configuration 16 ...

Page 19: ...B Mini b 5 pin port on the front of the case There are several steps required to access the system console via this port 3 2 1 Install the Driver Install an appropriate PL2303 USB to UART Bridge VCP virtual COM port driver on the workstation used to connect with the system if needed There are drivers available for Windows Mac OS X and Linux available in the Download Software section of the Prolifi...

Page 20: ...ion when the cable is fully engaged 3 2 3 Locate the Console Port Device The appropriate device to attach the terminal program to each platform varies by platform and must be located before attempting to connect to the console Windows To locate the device name on Windows open Device Manager and expand the section for Ports COM LPT Look for an entry with a title such as Prolific USB to Serial Comm ...

Page 21: ...g systems Some other choices of terminal programs Linux screen PuTTY minicom dterm Mac OS X screen ZTerm cu Windows PuTTY SecureCRT Do not use Hyperterminal FreeBSD screen cu The settings to use within the terminal program are Speed 115200 baud Data bits 8 Parity none Stop bits 1 Flow Control Off or XON OFF Hardware flow control RTS CTS must be disabled Client Specific Examples PuTTY Launch PuTTY ...

Page 22: ... terminal For example on OS X this is commonly required sudo screen U dev cu usbserial 115200 Adding the U parameter to the screen command line arguments forces it to use UTF 8 for character encoding 3 2 5 Troubleshooting No Serial Output If there is no output at all check the following items Ensure the cable is correctly attached and fully inserted Ensure the terminal program is using the correct...

Page 23: ... terminal program is configured for the correct speed for the installed operating system See No Serial Output above Ensure the installed operating system is configured to activate the serial console Ensure the installed operating system is configured for the proper console e g ttyS1 in Linux Consult the various operating install guides on this site for further information If booting from a USB fla...

Page 24: ...al services html for more details 4 2 Netgate Training Netgate training offers training courses for increasing your knowledge of pfSense products and services Whether you need to maintain or improve the security skills of your staff or offer highly specialized support and improve your customer satisfaction Netgate training has got you covered Check us out at https www netgate com training 4 3 Comm...

Page 25: ...RT INFORMATION One year manufacturer s warranty Please contact Netgate for warranty information or view our Product Lifecycle page All Specifications subject to change without notice For support information view our support plans 23 ...

Page 26: ...onformity Disputes Applicable Law Site Policies Modification and Severability Miscellaneous Limited Warranty 6 1 Safety Notices 1 Read follow and keep these instructions 2 Heed all warnings 3 Only use attachments accessories specified by the manufacturer Warning Do not use this product in location that can be submerged by water Warning Do not use this product during an electrical storm to avoid el...

Page 27: ... installation prior to connecting the equipment d Protective grounding earthing is provided by Listed AC adapter Building installation shall provide appro priate short circuit backup protection e Protective bonding must be installed in accordance with local national wiring rules and regulations 6 3 FCC Compliance Changes or modifications not expressly approved by the party responsible for complian...

Page 28: ...tädtischen Entsorgungsdienste oder an den Händler bei dem Sie das Produkt erworben haben 6 7 3 Español La Directiva 2002 96 CE de la UE exige que los equipos que lleven este símbolo en el propio aparato y o en su embalaje no deben eliminarse junto con otros residuos urbanos no seleccionados El símbolo indica que el producto en cuestión debe separarse de los residuos domésticos convencionales con v...

Page 29: ...mi p íslu n mi ustanoveními sm rnice 1999 5 ES 6 8 2 Dansk Danish Undertegnede NETGATE erklærer herved at følgende udstyr NETGATE device overholder de væsentlige krav og øvrige relevante krav i direktiv 1999 5 EF 6 8 3 Nederlands Dutch Hierbij verklaart NETGATE dat het toestel NETGATE device in overeenstemming is met de essentiële eisen en de andere relevante bepalingen van richtlijn 1999 5 EG Bij...

Page 30: ...er ar eru í tilskipun 1999 5 EC 6 8 11 Italiano Italian Con la presente NETGATE dichiara che questo NETGATE device è conforme ai requisiti essenziali ed alle altre disposizioni pertinenti stabilite dalla direttiva 1999 5 CE 6 8 12 Latviski Latvian Ar o NETGATE deklar ka NETGATE device atbilst Direkt vas 1999 5 EK b tiskaj m pras b m un citiem ar to saist tajiem noteikumiem 6 8 13 Lietuviškai Lithu...

Page 31: ...as disposições da Directiva 1999 5 CE 6 8 21 Româna Romanian Prin prezenta NETGATE declara ca acest dispozitiv NETGATE este în conformitate cu cerint ele esent iale s i alte prevederi relevante ale Directivei 1999 5 CE 6 9 Disputes ANY DISPUTE OR CLAIM RELATING IN ANY WAY TO YOUR USE OF ANY PRODUCTS SERVICES OR TO ANY PRODUCTS OR SERVICES SOLD OR DISTRIBUTED BY RCL OR ESF WILL BE RESOLVED BY BINDI...

Page 32: ...rts located in Austin Texas or any other court having jurisdiction over you 6 11 Site Policies Modification and Severability Please review our other policies such as our pricing policy posted on our websites These policies also govern your use of Products Services We reserve the right to make changes to our site policies service terms and these terms and conditions of use at any time 6 12 Miscella...

Page 33: ...T THAT THE PRODUCTS SERVICES INFORMA TION CONTENT MATERIALS PRODUCTS INCLUDING SOFTWARE OR OTHER SERVICES INCLUDED ON OR OTHERWISE MADE AVAILABLE TO YOU THROUGH THE PRODUCTS SERVICES RCL S OR ESF S SERVERS OR ELECTRONIC COMMUNICATIONS SENT FROM RCL OR ESF ARE FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS RCL AND ESF WILL NOT BE LIABLE FOR ANY DAMAGES OF ANY KIND ARISING FROM THE USE OF ANY PRODUCTS ...

Page 34: ...e appropriate console port options 6 The installer will automatically launch once the boot process completes and offer the choice of a Quick Easy Install Custom Install and several other options Select Quick Easy Install and press Enter Another screen will prompt for confirmation Select OK and press Enter to continue 7 pfSense will be installed to the first available disk in the system If the syst...

Page 35: ...Product ManualSG 5100 33 ...

Reviews:

No comments

Related manuals for SG-5100

NETGEAR FVG318v1 - ProSafe 802.11g Wireless VPN Firewall Switch Network Setup Manual preview
FVG318v1 - ProSafe 802.11g Wireless VPN Firewall Switch
Brand: NETGEAR Pages: 8
Juniper SRX5600 Hardware Manual preview
SRX5600
Brand: Juniper Pages: 483
PaloAlto Networks PA-400 Series Quick Start Manual preview
PA-400 Series
Brand: PaloAlto Networks Pages: 2
Stonesoft SSL-3200 Series Appliance Installation Manual preview
SSL-3200 Series
Brand: Stonesoft Pages: 50
Stonesoft StoneGate FW-5000 Series Appliance Installation Manual preview
StoneGate FW-5000 Series
Brand: Stonesoft Pages: 51
Allied Telesis AlliedWare Plus AR Series Technical Manual preview
AlliedWare Plus AR Series
Brand: Allied Telesis Pages: 43
Allied Telesis AR Router Series Hardware Reference Manual preview
AR Router Series
Brand: Allied Telesis Pages: 111
Atlante Informatica Nano Cluster APU2 First Configuration preview
Nano Cluster APU2
Brand: Atlante Informatica Pages: 2

Brands by name

Popular brands

Load more brands