Start by installing the firewall as described in chapter 3, Installing Ingate Firewall.
The firewall must have at least one IP address per active network card to work. You must also set a routing, or path, for other networks on the Interface pages.
If you want the firewall to have several IP addresses on one network, specify this under Alias, which is on the Interface pages under Network. When you use NAT, it is a good idea to have several IP addresses on the outside. For example, you can have several web servers that appear to be on these IP addresses but are actually on several machines on the other side of the firewall.
If you want to hide the logical networks in the organization so that only the outside of the firewall is visible, configure NAT on the NAT page under Network.
Once you have set the IP address and routing, it is time to name the networks. Make up good names and enter the network addresses for them. All these settings are configured on the Networks and Computers page under Network.
You must also define several services that you will use on the network. Some examples are WWW, e-mail and file transfer. Many common services are already predefined. You define services on the Services page under Rules and Relays.
The Services are based on protocols, defined on the Protocols page under Rules and Relays. The common protocols TCP, UDP and ICMP are predefined.
You must also define time classes, which will make it possible to define rules that, for example, are active only during weekdays, or parts of a day. You define these on the Time classes page under Rules and Relays.
Once you have defined networks, machines, protocols, time classes and services, you can set up firewall rules for the traffic to be allowed and blocked. Traffic that is not allowed by any rule is blocked. You set firewall rules on the Rules page.
If NAT is on, you must set relays for the services on the NAT:ed network that you want to expose to the outside world. Relays can also be used without NAT. You configure them on the Relays page.
Use logging to analyze the traffic that passes through the firewall. Logging can be set to off, log all, or log only for the rules and relays for which you specified logging. A new Ingate Firewall logs for marked rules and relays; see Rules and Relays. You can choose to log locally on the firewall, send logs to a syslog server or send them by e-mail to an e-mail address. Specify the type of logging you want under Logging. This is also where you view the logs of traffic through the firewall.
When you have completed the configuration, apply it. Go to Administration and select the Save/Load Configuration tab. Select Apply configuration. Now you can test your new configuration and save it permanently if you are satisfied with it. If the configuration is not satisfactory, select Revert or restart the firewall. The old configuration will remain.