NG Firewall User Guide

From UntangleWiki
Jump to: navigation, search

The Untangle NG Firewall User Guide


Getting Started

If you have not already installed Untangle NG Firewall, read the Installation Guide.


The Administration Interface

The Administration Interface is the main interface used to configure Untangle.

A registration and welcome message is displayed upon the first visit to the administration interface. It will make a suggestion about the suggested applications that may be useful for your network. You can choose to install the recommended apps or to install the apps manually.

There are four main tabs in the administration interface in the main menu:

  1. Dashboard
  2. Apps
  3. Config
  4. Reports (only visible if the Reports app is installed.)

In the sub-menu there are four views:

  1. Sessions
  2. Hosts
  3. Devices
  4. Users

Tip: Using Mozilla Firefox or Google Chrome browsers is recommended for administration.

Dashboard

The Dashboard provides an overview of the state of your NG Firewall. It is extremely useful for quickly viewing or monitoring what is happening on the network and the current status of the Untangle server.

By default the dashboard will show several widgets with varying pieces of information. However, the dashboard is completely customizable. Widgets can be removed and added so the administrator sees exactly the information that is important to them on the dashboard.

There are many different type of widgets available:

Name Information
Information Shows some information about Untangle, like name, model, version, etc.
Resources Shows an overview current memory swap and disk usage.
CPU Load Shows a graph of recent CPU load.
Network Information Shows an overview of the network information like session count and device/host count.
Network Layout Shows an overview of the network layout based on the interface configuration.
Map Distribution Shows the current sessions mapped geolocation on a world map, sized by throughput.
Report Shows any Report Entry from Reports

To change what is displayed on the dashboard click on Manage Widgets at the top. From here you can show or hide the built-in widgets, or add new widgets from Reports by clicking on the Add button.

When adding a Report widget, you must also specify a timeframe (the number of hours worth of data to display) and a refresh interval (how often the widget refreshes on the dashboard).

When viewing a Report Entry in Reports you can also easily add it to your dashboard by clicking on the Add to Dashboard button.

If you see an alert icon near the top of the dashboard, hover over it for more information - these are Administrative Alerts designed to help you keep your Untangle healthy.

Applications

Applications are little plugins that add functionality to your Untangle server - just like "apps" on an iPhone or Android device.

On the Apps tab you'll see the currently installed apps. Across the top there is a dropdown menu to switch to different Policies. Policies can be controlled via the Policy Manager app.

The Apps view of the "Rack" skin

Apps can be installed by clicking the "Install Apps" button at the top. It will display the apps that can currently be installed. To install an app simply click on its icon. You can install as many apps at the same time as you like. After starting the installation of the desired apps you can click the "Done" button at the top to go back to the apps view.

Once installed the applications' settings can be configured by clicking on the Settings button or the icon of app, depending on the skin. Applications install with the suggested configuration which is the default settings and on/enabled in most cases. An application that is off/disabled will not process any network traffic. To enable a disabled application edit the settings and click "Enable" on the first tab inside the settings.

After clicking Settings, you will be presented with tabs for different settings sections, as well as typical buttons marked OK, Cancel and Apply. Apply saves any changes. OK saves any changes and closes the window. Cancel closes the window without saving settings. On the left hand side there is a Remove button which will remove the application from the current policy. The Help button will open the help for the tab currently being viewed.

Untangle has two types of Applications:

  • Filter Applications All the Applications above the Services pane in the interface can have one instance per policy.
  • Service Applications All the Applications below the Services pane are global and exist in all virtual racks.

Many networks only need one policy which means all traffic gets processed by the same apps and same configuration, but multiple policies (sometimes called "racks") are possible for bigger networks. For more information about running multiple racks check out the Policy Manager application.

To learn more about each application use the links below.

Filter Applications

 
WebFilter.png WebMonitor.png VirusBlocker.png VirusBlockerLite.png SpamBlocker.png SpamBlockerLite.png
Web Filter Web Monitor Virus Blocker Virus Blocker Lite Spam Blocker Spam Blocker Lite
 
PhishBlocker.png WebCache.png BandwidthControl.png ApplicationControl.png ApplicationControlLite.png SSLInspector.png
Phish Blocker Web Cache Bandwidth Control Application Control Application Control Lite SSL Inspector
 
CaptivePortal.png Firewall.png IntrusionPrevention.png AdBlocker.png
Captive Portal Firewall Intrusion Prevention Ad Blocker

Service Applications

 
Reports.png PolicyManager.png DirectoryConnector.png WANFailover.png WANBalancer.png
Reports Policy
Manager
Directory
Connector
WAN
Failover
WAN
Balancer
 
CaptivePortal.png IPsecVPN.png OpenVPN.png ConfigurationBackup.png BrandingManager.png
Captive
Portal
IPsec
VPN
OpenVPN Configuration
Backup
Branding
Manager
 
LiveSupport.png
Live
Support

Config

The config tab holds all the settings related to configuration of the Untangle server itself and settings for components of the platform that apps may interact with.

This is an list of all sections available under the Config tab in the Administration UI.

Network

The Network configuration contains all the settings to control how your Untangle server routes and handles network traffic. Properly configuring network settings is critical for proper operation.

The Network Configuration documentation documents how networking in Untangle functions and is commonly configured.

Administration

Administration controls the administration-related functionality of the Untangle server.

Email

Email contains all the email-related configuration of the Untangle server.

Local Directory

Local Directory stores a list of users that can be used by the applications.

Upgrade

Upgrade allows the server to upgrade and contains upgrade-related settings

Upgrade Settings

Upgrade Settings

Upgrades show the currently available upgrades if any. If upgrades are available, an upgrade can be started by pressing the Upgrade button at the top under Status.

To see changes see the Changelogs

After the upgrade begins, it will download the new packages (which may take some time) and then the upgrades will be applied. Do not reboot or power off the server during the upgrade.

If Automatically Install Upgrades is checked, Untangle will automatically check for new versions and upgrade if available.

Automatic Upgrade Schedule configures when Untangle will automatically upgrade if upgrades are available. Untangle will automatically upgrade at the specified time on the days of the week than are checked.


Upgrade FAQs

When will I get the upgrade version?

  • Upgrades are rolled out over time to the existing servers. The rollout can stretch out several weeks. If you want the upgrade immediately, email your box UID to support and request adding your UID to the Early Upgrade List.

How do I know when the new version is available for my Untangle?

  • In the Upgrade page of your Untangle, when a new version is available, the Upgrade button will appear. If automatic upgrade setting is enabled, your Untangle will upgrade automatically once the upgrade is available on day and time specified.

Does the upgrade require a reboot?

  • If a reboot is needed, the upgrade will reboot automatically once the upgrade is installed. There is no need for a manually reboot. Most upgrades will not reboot as there is no kernel change.

How long does the upgrade take?

  • It's difficult to be precise since customer platforms. Internet connection speed and complexity of the upgrade vary. Generally upgrades take less than 20 mins. If the database version is changed as part of the Untangle upgrade, the process will take longer as the database will need to be converted. There are extreme cases of the upgrade taking over an hour.

Do I need to reinstall?

  • No, upgrade process will update all the components on the Untangle seamlessly.

Where can I get what is changed in the new version?

System

System contains settings related to the server

About

About contains system information

Reports

The reports tab is only visible if the Reports app is currently installed. To read more about reports view the reports documentation.