Using host aliases, Chapter 13, Ee “using host aliases” on – WatchGuard Technologies FireboxTM System 4.6 User Manual

VPN Manager Guide

85

CHAPTER 13

Creating Aliases and
Implementing Authentication

Aliases are shortcuts used to identify groups of hosts, networks, or users with one
name. The use of aliases simplifies user authentication and service configuration.

User authentication provides access control for outgoing connections. Authentication
dynamically maps an individual username to a workstation IP address, allowing the
tracking of connections based on name rather than static IP address.

For more information on aliases or authentication, see the Network Security Handbook.

Using host aliases

Host aliases provide a simple way to remember host IP addresses, host ranges,
groups, usernames, and network IP addresses. They function in a similar fashion to e-
mail distribution lists–combining addresses and names into easily recognizable
groups. Use aliases to quickly build service filter rules or configure authentication.
Aliases cannot, however, be used to configure the network itself.

WatchGuard automatically adds four host aliases to the basic configuration:

firebox

Addresses assigned to the three Firebox interfaces

trusted

Any host or network routed through the physical Trusted interface

optional

Any host or network routed through the physical Optional interface

external

Any host or network routed through the physical External interface; in

most cases, the Internet

A host alias takes precedence over a Windows NT or RADIUS group with
the same name.