after you finish setting up the management station and cabling the firebox, use the quicksetup wizard to create a basic configuration file.

    the firebox loads this primary configuration file when it boots. this enables the firebox to function as a simple but immediately effective firewall.

    the quicksetup wizard also writes a basic configuration file called wizard.cfg to the hard disk of the management station. if you later want to expand or change the basic firebox configuration using policy

    manager, use wizard.cfg as the base file to which you make changes.

    for more information on changing a configuration file, see chapter 5, “using policy manager to configure your network.” you can also run the quicksetup wizard again at any time to a create new, basic configuration file.

    rerunning the quicksetup wizard completely replaces the configuration file, writing over any prior version. to make a backup copy of the configuration file on the flash disk, see the firebox system area chapter in the reference guide.

    if the quicksetup wizard is not already launched, launch it from the windows desktop by selecting start =] programs =] watchguard =] quicksetup wizard.

    provide the information as prompted by the quicksetup wizard, referring to the tables and network diagrams in “gathering network information” on page 22.

    the quicksetup wizard takes you through the following steps:

    select a configuration mode

    specify whether you want a routed or a drop-in configuration mode. if you have high availability installed, it is recommended that you set this up using policy manager instead of the quicksetup wizard. for more information on routed or drop-in, see “selecting a firewall configuration mode” on page 25. for information on high availability, see the high availability guide.

    external interface configuration

    (routed configuration only.) specify static, dhcp, or pppoe, as explained in “dynamic ip support on the external interface” on page 31.

    enter the firebox interface ip address or addresses based on whether you specified routed or drop-in mode, enter the

    ip address or addresses for the firebox interfaces. you can also add a secondary network to your trusted interface by selecting the additional private network behind the firebox checkbox.

    enter the firebox default gateway

    (not applicable if using dhcp or pppoe on the external interface.) enter the ip address of the default gateway, which is usually the ip address of your internet router. this ip address must be on the same network as the firebox external interface. if the ip address is not on the same network, the quicksetup wizard will warn you and ask whether you want to continue.

    configure public servers

    (not applicable if using dhcp or pppoe on external interface.)

    select the checkbox and enter the ip address of any public servers on your network.

    firebox name

    (dhcp or pppoe only.) specify the name used for logging and identification of a dynamic firebox. all characters are allowed except blank spaces and forward or back slashes (/ or \). this name does not have to be a dns or host name.

    create passphrase

    passphrases are case-sensitive and must be at least seven characters long. they can be any combination of letters, numbers, and special characters. you will create two passphrases. the status passphrase is used to establish a read-only connection to the firebox. the configuration passphrase is used to establish a read/write connection to the firebox.

    select connection method

    select the cabling method used and enter a temporary ip address for the firebox so that the management station can communicate with it to finish the installation process. this must be an unused ip address on the same network as the management station.