Netgate pfSense XG-1540 Скачать руководство пользователя страница 13

Страница: 13 / 39

Product Manual, SG-1000

The following inbound address Ranges are blocked by this firewall rule:

•

10.0.0.1

10.255.255.255

•

172.16.0.1

172.31.255.254

•

192.168.0.1

192.168.255.254

•

127.0.0.0/8

•

100.64.0.0/10

•

fc00::/7

Bogons are public IP addresses that have not yet been allocated, so they may typically also be safely blocked as they
should not be in active use.

Check

Block RFC1918 Private Networks

and

Block Bogon Networks

Click

to continue.

1.2.17 Configuring LAN IP Address & Subnet Mask

A static IP address of

192.168.1.1

and a subnet mask (CIDR) of

was chosen for this installation. If there are

no plans to connect this network to any other network via VPN, the

192.168.1.x

default is sufficient.

Click

to continue.

Note:

If a Virtual Private Network (VPN) is configured to remote locations, choose a private IP address range more

obscure than the very common

192.168.1.0/24

. IP addresses within the

172.16.0.0/12

RFC1918 private

address block are the least frequently used. We recommend selecting a block of addresses between

172.16.x.x

and

172.31.x.x

for least likelihood of having VPN connectivity difficulties. An example of a conflict would be If

the local LAN is set to

192.168.1.x

and a remote user is connected to a wireless hotspot using

192.168.1.x

(very common), the remote client won’t be able to communicate across the VPN to the local network.

1.2. Getting Started

Содержание pfSense XG-1540

Страница 1: ...Product Manual SG 1000 Netgate Dec 07 2017...

Страница 2: ...wall OS firmware 30 2 2 How do I reset to factory defaults 31 2 3 Is the CPU temperature too high 32 2 4 What should my speed test results be 32 2 5 Is booting from USB OTG supported 32 2 6 What packa...

Страница 3: ...ll provide you with the information you need to get your appliance up and running Premium Documentation Included with the purchase of an eligible appliance is access to The pfSense Book 700 pages of p...

Страница 4: ...CHAPTER ONE SG 1000 QUICK START GUIDE This Quick Start Guide covers first time connection procedures for a new appliance 2...

Страница 5: ...Power Internal The Micro SD card socket uses a sliding lock cover not a push style mechanism To install a Micro SD card Gently slide the cover toward the network interface port to unlock it Raise the...

Страница 6: ...Product Manual SG 1000 Fig 1 1 Installing a Micro SD card in the SG 1000 1 1 I O Ports 4...

Страница 7: ...is to connect the LAN port shown in the I O Ports section of the pfSense appliance to the computer which will be used to access the firewall console Connect one end of the second ethernet cable to the...

Страница 8: ...SG 1000 At the login page enter the default pfSense password and username Username admin Password pfsense Click Login to continue 1 2 3 Wizard Upon successful login the following is displayed 1 2 Get...

Страница 9: ...such as a Microsoft Active Directory domain use that domain here This is the domain suffix assigned to DHCP clients which should match the internal network For networks without any internal DNS domain...

Страница 10: ...ool 1 2 10 Setting Time Zone Select an appropriate time zone for the location of the firewall For purposes of this manual the Timezone setting will be set to America Chicago for US Central time 1 2 11...

Страница 11: ...annot be located the impact is most likely insignificant Power cycle the ISP router and modem and the new MAC address will usually be able to get online For some ISPs it may be necessary to call them...

Страница 12: ...e these settings as directed by the ISP 1 2 16 Block Private Networks and Bogons When enabled all private network traffic originating on the internet is blocked Private addresses are reserved for use...

Страница 13: ...f there are no plans to connect this network to any other network via VPN the 192 168 1 x default is sufficient Click Next to continue Note If a Virtual Private Network VPN is configured to remote loc...

Страница 14: ...istrator Password and enter it twice then click Next to continue 1 2 19 Save Changes Click Reload to save configuration 1 2 20 Basic Firewall Configured To proceed to the webConfigurator make the sele...

Страница 15: ...g Up and Restoring At this point basic LAN and WAN interface configuration is complete Before proceeding backup the firewall con figuration From the menu at the top of the page browse to Diagnostics B...

Страница 16: ...G 1000 Click Download Configuration and save a copy of the firewall configuration This configuration can be restored from the same screen by choosing the backup file under Restore configuration 1 2 Ge...

Страница 17: ...system other than Windows then please skip forward to Advanced Configura tion Serial Terminal Emulation Client A serial terminal emulation program is required to access the pfSense appliance console...

Страница 18: ...roduct Manual SG 1000 Open PuTTY and locate the Session display as shown Set the COM Port to that which is displayed in Windows Device Manager and the Speed to 115200 1 3 Connecting to Console Port 16...

Страница 19: ...in PuTTy to 115200bps Select Serial as shown and configure the COM Port and Serial Speed as displayed Select Open and the conolse screen will be displayed 1 3 2 Advanced Configuration A Silicon Labs C...

Страница 20: ...the serial console has a Micro USB B connector on one end and a regular USB Type A plug on the other end These cables are commonly used with smaller USB peripherals such as GPS units cameras and so o...

Страница 21: ...aching in the system log files or by running dmesg Launch a Terminal Program Use a terminal program to connect to the system console port PuTTY is a popular terminal program that is available on vario...

Страница 22: ...points Window Colours Indicate bolded text by changing The colour GNU screen In many cases screen may be invoked simply by using the proper command line Mac OS X sudo screen dev cu SLAB_USBtoUART 115...

Страница 23: ...ing items Ensure the terminal program is configured for the correct speed for the installed operating system See No Serial Output above Ensure the installed operating system is configured to activate...

Страница 24: ...ailable to those with an active Gold subscription https www netgate com our services gold membership html 1 5 Warranty and Support Information One year manufacturer s warranty Please contact Netgate f...

Страница 25: ...in serious injury or death c Contact a qualified electrician or the manufacturer if there are questions about the installation prior to connecting the equipment d Protective grounding earthing is pro...

Страница 26: ...usammen mit unsortiertem Gemeindeabfall entsorgt werden darf Das Symbol weist darauf hin dass das Produkt von regul rem Haushaltm ll getrennt entsorgt werden sollte Es liegt in Ihrer Verantwortung die...

Страница 27: ...oniche mediante le specifiche strutture di raccolta indicate dal governo o dagli enti pubblici locali Il corretto smaltimento ed il riciclaggio aiuteranno a prevenire conseguenze potenzialmente negati...

Страница 28: ...Alul rott NETGATE nyilatkozom hogy a NETGATE device megfelel a vonatkoz alapvet k vetelm nyeknek s az 1999 5 EC ir nyelv egy b el r sainak slenska Icelandic H r me l sir NETGATE yfir v a NETGATE devi...

Страница 29: ...ara que este NETGATE device est conforme com os requisitos essenciais e outras disposi es da Directiva 1999 5 CE Rom na Romanian Prin prezenta NETGATE declara ca acest dispozitiv NETGATE este n confor...

Страница 30: ...es also govern your use of Products Services We reserve the right to make changes to our site policies service terms and these terms and conditions of use at any time 1 6 12 Miscellaneous If any provi...

Страница 31: ...CTRONIC COMMUNICATIONS SENT FROM RCL OR ESF ARE FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS RCL AND ESF WILL NOT BE LIABLE FOR ANY DAMAGES OF ANY KIND ARISING FROM THE USE OF ANY PRODUCTS SERVICES OR...

Страница 32: ...the installation media from https portal pfsense org firmware sg 1000 Remove the power cable from the SG 1000 From there there are two potential paths 1 If the SG 1000 eMMC contains a pfSense 2 4 ima...

Страница 33: ...move the power cable from the SG 1000 If the SG 1000 was booted from USB OTG unplug the USB OTG cable If the SG 1000 was booted from SD card remove the SD card by reversing the procedure above and the...

Страница 34: ...the speed may be higher or lower depending on the firewall configuration enabled features environment and testing methods 2 5 Is booting from USB OTG supported Yes provided that the eMMC contains a p...

Страница 35: ...outed RRD_Summary Service_Watchdog Shellcmd siproxd softflowd squid squidGuard Status_Traffic_Totals sudo syslog ng System_Patches tftpd tinc zabbix agent zabbix proxy This list is subject to change N...

Страница 36: ...stem board and Micro SD cards are a removable type of MMC The boot environment might state bad device but that only indicates that the device is not bootable it is not a comment about the status of th...

Страница 37: ...1000 may not be able to boot from a Micro SD card In this case with a bootable Micro SD card installed short the SD BOOT header using a jumper not provided The SD BOOT jumper header is located next t...

Страница 38: ...cannot be found elsewhere such as the AWS VPN Wizard 2 Write the image to a USB memstick Locating the image and writing it to a USB memstick is covered in detail under Writing Flash Drives 3 Connect...

Страница 39: ...Product Manual SG 1000 37...

Результаты поиска

Содержание pfSense XG-1540

Отзывы:

Похожие инструкции для pfSense XG-1540

Бренды по названию

Популярные бренды

Netgate pfSense XG-1540, Руководство по эксплуатации продукта

Результаты поиска

Содержание pfSense XG-1540

Отзывы:

Похожие инструкции для pfSense XG-1540

Бренды по названию

Популярные бренды