Applies To:

Show Versions Show Versions

Manual: FirePass Controller Handbook, version 5.4.1
Manual

Original Publication Date: 08/29/2013


Table of Contents


Legal Notices

Introducing the FirePass Controller

The FirePass controller remote access solution

The FirePass controller models

An overview of the FirePass controller

Security

Availability

Ease of use, deployment, maintenance, and management

FirePass controller features

About this handbook

Audience

Stylistic conventions

Finding help and technical support resources

Installing the FirePass Controller

Overview of installing the FirePass controller

Summary of tasks for installing and configuring the FirePass controller

Configuring a firewall

Overview of the firewall configuration process

Reviewing network traffic and the FirePass controller

Understanding traffic between a remote user's browser and the controller

Understanding traffic between the controller and network services

Understanding traffic between the controller and application services

Understanding traffic between the controller and the Desktop Access client

Understanding name resolution issues with private IP addresses

Installing the FirePass controller

Contents of the FirePass controller package

Mounting the FirePass controller in an equipment rack

Connecting the FirePass controller to an isolated network

Configuring the FirePass controller

Overview of the initial configuration process

About the FirePass controller preconfigured settings

Using the Quick Setup wizard

Installing a FirePass controller license

Testing network connectivity

Troubleshooting connections to the controller

Using the Administrative Console

Logging onto the Administrative Console

Displaying a list of current settings

Changing the superuser password

Accessing the Maintenance Console from the Administrative Console

Using the Administrative Console to configure the controller

Logging out of the Administrative Console

Using the Maintenance Console

Using Server Certificates

Overview of SSL Server Certificates

Server certificates and the FirePass controller

Certificate Authority-signed SSL server certificates

Self-signed SSL server certificates

Managing certificates on the FirePass controller

Displaying information on installed certificates

Generating a Certificate Signing Request

Installing a server certificate

Generating and installing a self-signed certificate

Installing a self-signed certificate on client computers

Updating installed certificates

Deleting installed certificates

Configuring Network Access

Overview of Network Access

FirePass Network Access

Configuring Network Access settings

Configuring global Network Access settings

Configuring Network Access resource settings

Configuring Network Access master group settings

Installing the standalone VPN client

Using Groups with FirePass Controllers

Overview of FirePass controller groups

Master groups

Resource groups

Understanding master groups

Working with master groups

Creating master groups

Configuring a master group

Understanding resource groups

Working with resource groups

Creating resource groups

Configuring resource group favorites

Understanding group mapping

How dynamic group mapping works

Master groups and group mapping

Configuring dynamic group mapping

Resource groups and group mapping

Using Macintosh or Linux clients with FirePass Controller

Overview of using Macintosh and Linux clients with FirePass controller

Supported Network Access features

Supported Linux platforms

Configuring the starting of applications on Macintosh or Linux clients

Client installation on Linux systems

The FirePass Standalone VPN Client

Overview of the standalone VPN client for Windows

Standalone VPN functionality

Installing the standalone VPN client

Using FirePass Controllers for Failover

Overview of FirePass controller failover pairs

Configuring FirePass controller failover pairs

Configuring FirePass controllers for failover

Overview of the configuration process

Configuring the active FirePass controller

Enabling failover on the active controller

Configuring the active controller with a virtual IP address

Configuring Web services for the virtual IP address

Configuring Web services for the active controller's physical IP address

Configuring the standby FirePass controller

Enabling failover on the standby controller

Configuring the standby controller with a virtual IP address

Configuring Web services for the virtual IP address

Configuring Web services for the standby controller's physical IP address

Post-configuration tasks

Starting failover controllers

Verifying the failover configuration

Manually triggering failover

Using FirePass Controllers in Clusters

Overview of FirePass controller clusters

Installing FirePass controllers as a cluster

Starting FirePass controller clusters

Configuring FirePass controller clusters

Overview of cluster configuration

Enabling clustering

Configuring the primary FirePass controller

Configuring a secondary node FirePass controller

Verifying the cluster configuration

Configuring load balancing

Managing a cluster configuration

Accessing a secondary controller's configuration from a primary controller

Displaying statistics for a FirePass controller cluster

Using the Web Applications Engine Trace

Overview of the Web Applications engine trace

Using the Web Applications engine trace

About the trace files

Analyzing Web Application engine traces

Fixing common problems