Use this dialog box to specify the interfaces that the Windows client uses to communicate with the Smoothwall Filter.
Prerequisites
- Check that you have Microsoft .NET Framework 4.5 installed.
- Add an Active Directory connection. The Windows clients and devices running Connect Filter for Windows must be connected to the same domain as this Smoothwall, or a domain that's trusted by the domain the Smoothwall Filter is in.
- We recommend that you create a Group Policy Objects (GPOs) within your Active Directory configuration to prevent users from changing the device's proxy settings, that could bypass the Smoothwall Filter. Refer to your Active Directory's documentation.
Procedure
- On the GUARDIAN menu, under the Client interfaces submenu, click Connect Filter.
- Click Add interface and from the Interface list, select the relevant interface.
- For the Port:
- This is set to 1080 by default, the registered port for a SOCKS proxy, the type of proxy Connect Filter is. However, you might find your devices are blocked from communicating with the Smoothwall Filter when outside your network and can't access the Internet. Typically, this is because most public networks, such as those found in hotels and wireless network hotspots, block traffic from using port 1080. Make sure that all devices that have the Connect Filter installed can access the configured port number.
- Enter a TCP port number between 1 and 65535, inclusive, which all devices that have the Connect Filter installed can access.
- We recommend that you use port 80 or 443, but you must make sure that the interface and port combination is available and not in use elsewhere on the Smoothwall Filter.
- Do not use these ports:
- 81 and 441: Used to connect to the administration user interface of the Smoothwall Filter and Firewall. To prevent you from being locked out the user interface, you cannot enter these ports.
- 222: Used to connect to the Smoothwall Filter over SSH. To prevent you from being locked out of accessing the Smoothwall Filter, you cannot enter this port number.
- Any port number used in a Guardian authentication policy: The Smoothwall Filter authentication policies are configured on the Web proxy's Authentication Policy wizard page, see Creating authentication policies.
- Additionally, you can use these ports, but you should review your Smoothwall Filter and Firewall hardware appliance and configuration:
- 80 and 443: Used by the User portal, Reverse proxy, and SSL VPNs.
- 800: Default port used by the Smoothwall Filter.
- Enter a descriptive Comment and click Save changes.
Follow-up tasks
- You must turn on the Mobile Proxy feature on your Smoothwall before installing Connect Filter on your devices. This turns on proxy authentication for Connect Filter users, see our help topic, Managing the mobile proxy, see Managing the mobile proxy.
- Add any proxy exceptions, for example, those domains, hosts, or IP addresses that are used by the client devices, but don't need to go through the Smoothwall Filter proxy server, for example, those hosts serving Windows' updates, see Configuring proxy exceptions.
- Install the Connect Filter on each device on your network. Smoothwall support can provide you with the installation file.