Manualshelf

User guide

ManualsBrandsWatchguard ManualsNetworkingFirebox X5-W
61626364656667686970
User Guide 53
Changing Your Network Settings
Using static IP addresses for trusted computers
You can use static IP addresses for some or all of the computers on your trusted network. If you disable
the Firebox X Edge DHCP server and you do not have a DHCP server on your network, you must manu-
ally configure the IP address and subnet mask of each computer. For example, this is necessary when a
client-server software application must use a static IP address for the server. Static IP addresses must be
on the same network as the Edge trusted interface. Computers on the trusted network with static IP
addresses must use the Edge trusted interface IP address for the default gateway.
To disable the Firebox X Edge DHCP server, clear the Enable DHCP Server on the Trusted Network
check box on the Trusted Network Configuration page and click Submit.
Note
Computers on the trusted network must use the Firebox X Edge trusted interface IP address as the
default gateway. If a computer does not use the Edge as the default gateway, it usually cannot get to the
external network or the Internet.
Adding computers to the trusted network
You can connect as many as three computers to the trusted interface of the Firebox X Edge e-Series if
you connect each computer to one of the Edge’s Ethernet ports 0 through 2. You can use 10/100 BaseT
Ethernet hubs or switches with RJ-45 connectors to connect more than three computers. It is not neces-
sary for the computers on the trusted network to use the same operating system.
To add more than three computers to the trusted network:
1 Make sure that each computer has a functional Ethernet card.
2 Connect each computer to the network. For more information, see “Connecting the Edge to more
than four devices” on page 15.
Configuring the Optional Network
The optional network is an isolated network for less secure public resources. By default, a Firebox® X
Edge does not allow traffic from the optional network to get to the trusted network. The factory default
settings do allow traffic that starts from the trusted network to get to the optional network, but you can
restrict that traffic. For more information, see “Services for the Optional Network” on page 86.
Because traffic that is started from the optional network is usually not allowed to the trusted network,
you can use the optional network for servers that other computers can connect to from the Internet,
such as a web, e-mail, or FTP server. We recommend you isolate your private network from these servers
because the public can connect to them. If a server on the optional network is attacked from the Inter-
net, the attacker cannot get to the computers on the trusted network. The trusted network is the most
secure location for your private network.
If your computer is on the optional network, you can connect to the Firebox X Edge system configura-
tion pages using the optional interface IP address. The default URL for the System Status page from the
optional network is: https://192.168.112.1
You can use the Firebox X Edge DHCP server or you can use static IP addresses for computers on the
optional network. You also can change the IP address range of the optional network.