2
Installing and Initially Configuring EFW
26
If you select the host name, when converted by the Policy Server machine to an IP
address, it must be resolvable by all machines that host embedded firewalls in this
EFW domain. If there is only one IP address offered on this screen, this address is the
converted host name. To test whether a computer to host an EFW NIC can resolve
this IP address, you must obtain a response from the Policy Server host computer
when you ping this IP address from the NIC host. If there is more than one IP address
listed as a choice, it is not suggested to use the host name. Instead, select an IP
address using the guidelines noted above.
3
Select one of the following options:
■
Join an existing domain
—This option adds the Policy Server to an existing domain.
Select this option if you have existing Policy Servers, and you want to allow this Policy
Server to be a backup server for an existing server (or vice versa). You may also select
this option if you have existing Policy Servers, and you want to be able to view data
(for example, EFW devices, policies, audit) in a single display for all of your servers.
However, you cannot join an existing EFW domain that already has three Policy
Servers assigned to it without first removing one of the other Policy Servers.
In the Policy Server Host field, enter the DNS name or IP address of an existing
Policy Server in the domain that the new Policy Server is joining. If your Policy
Servers are on two different networks, you must enter a name for the existing
Policy Server that is resolvable on the foreign network (such as it’s fully qualified
DNS name or IP address). In the Administrator Login field, enter an EFW login name
and password in the appropriate fields.
■
Creating a new EFW domain
—This option creates a new domain for the Policy
Server you are creating. If this installation is your first Policy Server installation, you
must select this option because there are not any existing EFW domains.
In the Domain Name field, enter a name for the new domain. The domain name
can be any name you choose. It is used only for reference to differentiate EFW
domains. Its value appears under the
Main -> Domain Settings
menu option.
4
Click
OK
. A Policy Server Startup window appears as described in step 4 under
“Starting and Stopping System Components” on page 24.
Starting and Logging in to the Management Console
To start the Management Console, follow the steps below.
1
Select one of the following options. (The option you choose depends on how you
installed the console and the platform on which you installed.)
■
To start the Management Console, from the Windows Start menu, select
Programs
->
3Com Embedded Firewall Management
->
3Com Embedded Firewall
Management Console
. The 3Com Embedded Firewall Login window appears.
■
To start the MMC Management Console, from the Windows Start menu, select
Programs
->
3Com Embedded Firewall Management
->
3 Com MMC Embedded
Firewall Management Console
. The 3Com Embedded Firewall MMC Management
Console window appears. Double-click the
Embedded Firewall Management
Console
option. The 3Com Embedded Firewall Login window appears.
NOTE:
If your Management Console is installed on the same machine as your
Policy Server, you must have Windows administrative privileges to use the console.