Options

WSM Management Tunnel feature

invisikinvisik
in Firebox - Management Software

Hi,

Just wondering if there is any reason to use the management tunnel feature if not in the situation it is designed for (when behind router you can't manage)? Does it increase security for the communication between the firewall and the WSM server?

Thanks.

-m

Comments

  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative

    Management tunnels are generally for customers who need to get to devices that wouldn't normally be accessible. (i.e., you don't have access to the public IP.)

    For example, lets say you own a popcorn cart in a mall. You connect to shared tenant wifi via the wireless card on the firewall. You don't have remote access to the firebox on the cart because you don't have direct access to the external IP. You set up a management tunnel to allow you to tunnel back into the firebox.

    It also encrypts the management traffic in the tunnel if you're concerned about it. The calls are already TLS encrypted, but are identifiable as WSM/WebUI connections.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.