No Firewall showing in the rack...

[BadBoyHouse]

I've just inherited a new client that uses Untangle as their router/firewall. I've never used Untangle before so this is all new to me.

I wanted to add a firewall block but noticed that the Firewall app is not in the rack list. If I click on Firewall in the APP list it takes me to a download page. Of course I was expecting the Firewall app to already have been installed and set up by the previous IT company.

Should the Firewall app be there? I don't of course want to just go and download it for fear of causing any connectivity problems for the users.

thanks in advance

[Big D]

Depends, if the UT server is operating in bridge mode the firewall app is usually disabled or not installed, though it will still function under bridge mode (unlike port forwards).

If your UT server is in router mode but the firewall app is not installed then your firewall is essentially set to default pass and your form of protection comes from just the NAT and port forwarders.

Identify if your device is in Bridge mode:

Config > networking > interfaces > internal interface > edit > is this set to bridge to external?

If your in router mode you should have one WAN connection thats static/dynamic and a static internal connection.

[BadBoyHouse]

the internal interface shows STATIC and the external interface shows PPPOE (wan).

still can't understand why there wouldnt' be a darn firewall set up.

[dwasserman]

I disagree Big D, in bridge mode can be useful the firewall app.
For example I have blocked all traffic from inside to ports higher to 1024, with some exceptions of course

[Big D]

@dwasserman
Im not saying the firewall is useless in bridge mode. Just in most cases its not used. I have used it to enforce blocks and log stuff of course. Port forwarders are disabled in bridge mode.

Sounds like it is in router mode so a firewall should have been installed but its not enforced. Unfortunately UT checks your installation and compares it to the distrobution/repository servers to make sure you have the latest updates before downloading packages to your installation.

UT can be fooled to think it has the latest updates but usually the updates are harmless enough UNLESS you have some serious customizations in the installation. I am talking about the core OS and third party software not in UT software/apps themselves.

You have to comment out one of the lines in /etc/apt/sources.list so UT does not find updates when it checks. It is not recommended to mess with sources.list unless instructed to by UT support, General disclaimer.

If you want to know how to do it so you can get the firewall app installed without installing the updates I can try to help you just ask.

[dmorris]

the internal interface shows STATIC and the external interface shows PPPOE (wan).

still can't understand why there wouldnt' be a darn firewall set up.

In this case you probably don't need it.

For the sake of discussion forget the associations with the word "Firewall" and assume the name of the app is "Session Filter"