Contents

Related Topics

Configure APT Blocker Server Settings

By default, the Firebox sends APT Blocker requests to the nearest cloud-based Lastline server. In the APT Blocker Advanced settings you can configure APT-blocker to send requests to a server in a specific region, or to send requests to a local on-premise server.

Set the APT Blocker Server Region

By default, APT Blocker sends APT Blocker requests to the nearest cloud-based server. You can also configure APT Blocker to always send requests to a server in a specific region.

To set the APT Blocker Server Region, from Fireware Web UI: Closed
  1. Select Subscription Services > APT Blocker.
  2. Select the Advanced tab.
  3. Select Send APT Blocker requests to a location-specific server.

Screenshot of APT Blocker configuration - Advanced tab in Fireware Web UI

  1. From the Server Region drop-down list, select the server region.
  2. Click Save.
To set the APT Blocker Server Region, from Policy Manager: Closed
  1. Select Subscription Services > APT Blocker.
  2. Select the Advanced tab.
  3. Select Send APT Blocker requests to a location-specific server.

Screenshot of APT Blocker configuration - Advanced tab in Policy Manager

  1. From the Server Region drop-down list, select the server region.
  2. Save the configuration.

Enable a Local On-Premises Server

In large enterprise networks, some organizations use a local on-premises server instead of Lastline cloud services for security and data privacy purposes. You can configure APT Blocker to send requests to a local Lastline On-Premises server, if you have one installed on your network.

The Lastline On-Premise server is available from Lastline as a physical appliance, installation media, or VMware image. For more information, or to order a Lastline On-Premises server, see https://www.lastline.com/contact.

To find your license key and API token information, see the information sent to you with your Lastline On-Premise server product.

To enable APT Blocker to use a local Lastline On-Premises server, from Fireware Web UI:Closed
  1. Select Subscription Services > APT Blocker.
  2. Select the Advanced tab.
  3. Select Send APT Blocker requests to a local on-premises server.

Screenshot of APT Blocker configuration - Advanced tab in Fireware Web UI

  1. In the Server address text box, type the IP address or host name of the Lastline On-Premise server.
  2. In the License key text box, type the license key for the Lastline On-Premise server.
  3. In the API token text box, type the API token for the Lastline On-Premise server.
  4. In the User Name text box, type an optional user name for the Lastline On-Premise server.
  5. Click Save.
To enable APT Blocker to use a local Lastline On-Premises server, from Policy Manager:Closed
  1. Select Subscription Services > APT Blocker.
  2. Select the Advanced tab.
  3. Select Send APT Blocker requests to a local on-premises server.

Screenshot of APT Blocker configuration page Advanced tab in Policy Manager

  1. In the Server address text box, type the IP address or host name of the Lastline On-Premise server.
  2. In the License key text box, type the license key for the Lastline On-Premise server.
  3. In the API token text box, type the API token for the Lastline On-Premise server.
  4. In the User Name text box, type an optional user name for the Lastline On-Premise server.
  5. Save the configuration.

When you use a Lastline On-Premise server, you must also import a self-signed CA certificate from Lastline to the Firebox.

To import the certificate:

  1. Download the certificate from Lastline at https://update.lastline.com/updates/distros/lastline-ca.crt.
  2. Complete the process to import the certificate to the Firebox, as described in:
  3. When you specify the Certificate Function option, select IPSec, Web Server, Other.

See Also

About APT Blocker

Configure APT Blocker

Give Us Feedback     Get Support     All Product Documentation     Technical Search

© 2018 WatchGuard Technologies, Inc. All rights reserved. WatchGuard, the WatchGuard logo, WatchGuard Dimension, Firebox, Core, Fireware, and LiveSecurity are registered trademarks or trademarks of WatchGuard Technologies in the United States and/or other countries.