NGFW 6x Qs 701-0003G00 En-Us
NGFW 6x Qs 701-0003G00 En-Us
NGFW 6x Qs 701-0003G00 En-Us
Firewall
Quick Start Guide
6.3 or higher
Revision G
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Overview
This quick start guide provides high-level instructions for setting up pre-installed Forcepoint Next Generation
Firewall (Forcepoint NGFW) appliances. This information includes installation, initial configuration, post-setup
tasks, and updates.
For complete details, see the Forcepoint Next Generation Firewall Installation Guide.
Steps
1) Go to https://support.forcepoint.com/Documentation.
3) Download the NGFW and Forcepoint NGFW Security Management Center (SMC) documentation for your
version, including these documents.
• Forcepoint Next Generation Firewall Product Guide
• Forcepoint Next Generation Firewall Installation Guide
• Forcepoint Next Generation Firewall Release Notes
• Forcepoint NGFW Security Management Center Release Notes
2
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Steps
1) Install any additional hardware components, such as interface modules.
Steps
1) Go to https://support.forcepoint.com, log on to your account, then select the appropriate product and version.
3) Go to https://stonesoftlicenses.forcepoint.com, then generate and download the license files for the SMC
servers.
4) To start the SMC installation, extract and run the setup.exe (Windows) or setup.sh (Linux) file.
3
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Note: Configuring the Web Portal Server is optional and requires an extra license.
6) Log on to the Management Client by using the shortcut icon created during the installation.
7) When prompted, accept the Security Management Center certificate, then install the SMC server licenses.
Note: These steps describe the basic process for creating Single Firewall, Single IPS, and Single
Layer 2 Firewall elements. For cluster or virtual elements, see the installation guide.
Steps
1) Go to https://stonesoftlicenses.forcepoint.com, then generate and download the license files for the
engines.
Note: Each engine requires a separate license. If you use the Plug and Play configuration
method, you do not need to create the licenses manually.
3) In the dialog box that opens, select one or more license files to install, then click Install.
b) Right-click NGFW Engines, select New, then select the type of engine.
c) Enter the name and Log Server information, then configure other options as needed.
4
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Note: Depending on the NGFW appliance model, you might need to configure additional
interfaces such as wireless interfaces, modem interfaces, or an integrated switch. See the
installation guide and the hardware guide for your model.
Note: You cannot add an IP address for modem interfaces. Modem interfaces use DHCP to
retrieve an IP address.
a) Right-click the interface, select New, then select New > IPv4 Address or New > IPv6 Address.
7) If your NGFW appliance has a wireless interface, add an IP address to the interface.
a) Right-click the wireless interface, then select New SSID Interface.
c) Right-click the SSID interface, then select New > IPv4 Address or New > IPv6 Address.
8) If your NGFW appliance has an integrated switch, add an IP address to the port group interface.
a) Right-click the switch, then select New Port Group Interface.
c) Right-click the port group interface, then select New > IPv4 Address or New > IPv6 Address.
9) Configure routing.
b) Right-click the engine, then select Configuration > Save Initial Configuration.
5
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Note: There are more considerations when selecting Plug and Play. For example,
both the SMC and the engines must be registered for Plug and Play configuration
before you configure the engines. See Knowledge Base article 9662.
d) Click OK.
Tip: The software is pre-installed on the NGFW appliances. Do not reinstall the software unless
instructed to do so by Forcepoint support.
Steps
1) Connect a computer or laptop to the NGFW appliance.
• For Plug and Play configuration, Automatic configuration, or configuration using the NGFW Initial
Configuration Wizard on the command line, connect a serial cable to the NGFW appliance.
• For configuration using the NGFW Initial Configuration Wizard in a web browser, connect an Ethernet
cable from the client device to physical port eth0_1 on the NGFW appliance. If the NGFW appliance does
not have a port eth0_1, use port eth1_0. If using non-modular interfaces, use port eth1.
2) If you connected a serial cable to the NGFW appliance, use a terminal console program to connect to the
NGFW appliance with these settings:
• Bits per second — 9600 or 115,200
• Data bits — 8
• Parity — None
• Stop bits — 1.
Note: The serial console port speed is 9600 bps in most NGFW appliances. The speed is
115,200 bps in the latest NGFW appliance models. See the hardware guide for your NGFW
appliance model for more information.
6
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Method Task
Automatic Insert the USB drive, then turn on the NGFW appliance.
The NGFW appliance applies the initial configuration that is saved on the USB
drive.
Steps
1) Go to https://support.forcepoint.com.
2) On the Downloads page, click All Downloads, then browse to the Network Security section.
7
Forcepoint Next Generation Firewall 6.3 or higher | Quick Start Guide
Steps
1) Configure the policy and routing for the engine.
8
© 2019 Forcepoint
Forcepoint and the FORCEPOINT logo are trademarks of Forcepoint.
All other trademarks used in this document are the property of their respective owners.
701-0003G00