Watchguard Firebox X5000 User's Guide download pdf (Page 15)

Migration Guide 11

Documenting Your Security Policy

CHAPTER 2 Installing the WatchGuard System

Manager software

Before you can operate a Firebox with WatchGuard Fireware Pro, you must install the WatchGuard System

Manager v8.0 upgrade on your management station. If the Firebox was a DVCP/CA server, you must move

the configuration properties to the Management Server. If you completed these steps, you can go to XXX

In this chapter, we tell how to:

• Document your security policy

• Back up the WFS configuration file and image

• Install WatchGuard System Manager software on a management station

• Set up WatchGuard servers

Documenting Your Security Policy

A good security policy is not just a firewall configuration file. It is a process which a network administra-

tor documents and which management regularly reviews. Your Fireware Pro migration is a good opportu-

nity to revisit your security policy. Because you must make a new configuration file for the Fireware Pro

appliance software, you should examine which policies you need to do business. Use these guidelines:

• Each policy you open makes your network less secure

• Polices from the Internet into your network are more dangerous than policies from your network

out to the Internet

• Adding specific source and destination addresses makes a policy more secure

Note

To successfully migrate to WatchGuard Fireware you must begin from WFS 7.3.

Installing the management station software

You must install the WatchGuard System Management software before you migrate a Firebox to Fireware

Pro.

1 2 ... 10 11 12 13 14 15 16 17 18 19 20 ... 77 78

No comments

Watchguard Firebox X5000 User's Guide Page 15