Back to Networking

WatchGuard Firewall

Firebox configuration and policies

WatchGuardFirewall

Initial Configuration

Default Access

  • * Default IP: 10.0.1.1
  • * Web UI: https://10.0.1.1:8080
  • * Default credentials: admin / readwrite

Initial Setup Steps

  1. 1. Connect to Eth1 (trusted) interface
  2. 2. Set your computer to 10.0.1.2/24
  3. 3. Access Web UI and run Setup Wizard
  4. 4. Configure external interface (DHCP or static)
  5. 5. Set admin password and enable feature keys
  6. 6. Update firmware to latest version

Firewall Policies

Policies control traffic flow between zones. Process order matters.

Policy Types

TypeUse Case
Packet FilterBasic allow/deny by IP, port, protocol
ProxyDeep inspection (HTTP, HTTPS, SMTP, etc.)
CustomApplication-specific configurations

Best Practices

  • * Use descriptive policy names
  • * Enable logging on all policies
  • * Place specific rules before general ones
  • * Use aliases for IP groups
  • * Review and clean up unused policies quarterly

Security Services

WatchGuard security subscriptions provide additional protection layers.

Available Services

  • * Gateway AntiVirus: Scan traffic for malware
  • * Intrusion Prevention (IPS): Block known exploits
  • * Application Control: Block/allow applications
  • * WebBlocker: URL/category filtering
  • * spamBlocker: Email spam filtering
  • * APT Blocker: Zero-day threat detection
  • * DNSWatch: DNS-level protection

Related: See WatchGuard VPN for VPN configuration.

Back to Networking