Logging all allowed outbound traffic – WatchGuard Technologies WatchGuard Firebox SOHO 6 User Manual

Chapter 6: Configure the Firewall Settings

70

WatchGuard Firebox SOHO 6.1

• For the SOCKS proxy, enter the URL or IP address of the

SOHO 6 trusted network. The default IP address is
192.168.111.1.

Disabling SOCKS on the SOHO 6

Once you use a SOCKS-compliant application through the
SOHO 6, the primary SOCKS port is available to anyone on your
trusted network. You can close this security gap between uses of
SOCKS applications.

1

Enable the checkbox labeled Disable SOCKS proxy.

This disables the SOHO 6 from acting as a SOCKS proxy.

2

Click Submit.

When you need to use SOCKS again, follow this procedure:

1

Disable the checkbox labeled Disable SOCKS proxy.

This enables the SOHO 6 to act as a SOCKS proxy.

2

Click Submit.

The SOHO 6 is enabled again as a Proxy server and ready to pass SOCKS

packets.

Logging all allowed outbound traffic

By default, the SOHO 6 logs only particular events and not all
traffic passing through it. For the most part, the SOHO 6 records
denied traffic. However, the SOHO 6 is able to record all allowed
outbound traffic.

N

OTE

This option will record an extensive amount of log entries. For this
reason, WatchGuard recommends that you use it for diagnostic purposes
only.