after you have set up ip addressing, add the following services to policy manager to give your firebox some basic functionality.

    the watchguard service is particularly important. if you omit it from your configuration or misconfigure it, you will lock yourself out of the firebox.

    1 on the policy manager toolbar, click the add services icon (shown at right).

    2 click the plus (+) sign to the left of the packet filters and proxies folder to expand them.

    a list of pre-configured filters or proxies appears.

    3 under packet filters, click watchguard.

    4 click the add button at the bottom of the dialog box.

    5 click ok in the add service dialog box.

    6 click ok to close the properties dialog box.

    7 repeat steps 3—7 for the ping, ftp, and outgoing services.

    at this stage, do not change the default settings for any of these basic services. the default settings allow all traffic outbound and deny all traffic inbound. later, you can go back and modify the services in policy manger to best fit your security needs.

    if you need more detailed information on how to add services, see “adding a service” on page 97.