Get Started with WatchGuard Dimension

You can install WatchGuard Dimension in a VMWare or in a Hyper-V environment, on a virtual machine with a 64-bit OS. Dimension is distributed as an .OVA file for installation on VMWare ESXi 5.x and as a .VHD file for installation on Hyper-V.

Before you install Dimension, see Install WatchGuard Dimension and read the Determine System Memory Allocation section.

For installation instructions for VMware and Hyper-V, see:

• Install Dimension on VMware
• Install Dimension on Hyper-V

After you install and start the WatchGuard Dimension VM, connect to Dimension and run the WatchGuard Dimension Setup Wizard to configure the initial settings for Dimension.

Before you start the wizard, make sure you have this information for your Dimension system, which you will add as you run the Setup Wizard:

• Host name
• IPv4 address and settings for the Eth0 interface
• Administrator passphrase
• Logging Authentication Key Tip!The allowed range for the logging Authentication Key is 8–32 characters. You can use all characters except spaces and slashes (/ or \).
• (Optional) External log database location
• (Optional) Public FQDNs or IP addresses

To start the wizard:

1. Open a web browser and type https://<IP address of Dimension>.
   The WatchGuard Dimension login page appears.
2. In the User Name text box, type admin.
3. In the Passphrase text box, type readwrite.
4. Click Log In.
   The WatchGuard Dimension Setup Wizard appears.

After you start the Setup Wizard, make sure you do not power off your Dimension system before the wizard completes.

To add your Fireboxes to Dimension for management:

1. Log in to Dimension.
   The Devices page appears.
2. Click Add.
   The Add Managed Device wizard appears.
3. Complete the wizard and download the management settings file (.WGD file) for your Firebox.
4. Log in to Fireware Web UI for the Firebox.
5. Select System > Managed Device.
   The Managed Device page appears.
6. Select the Enable Centralized Management check box.
7. From the Manage Device with drop-down list, select Dimension Command.
8. Import the .WGD file to the Firebox.

After you import the .WGD file to the Firebox, Dimension establishes a management connection to your Firebox.

For more information about how to add your Fireboxes to Dimension, see Add a Firebox to Dimension for Management.

To configure your Fireboxes to send log messages to Dimension:

1. Connect to your Firebox with Fireware Web UI or Policy Manager.
2. In the Web UI, select System > Logging.
   In Policy Manager, select Setup > Logging.
   The logging settings appear.
3. Add the IP address for this instance of Dimension, and the Log Server Authentication Key you specified in the Setup Wizard, to the WatchGuard Log Server list.
4. Make sure the Dimension IP address is the first address in the list.

For more information about how to configure your Fireboxes to send log messages to Dimension, see:

• Fireware Web UI  — Send Log Messages to a WatchGuard Log Server
• Policy Manager — Define Where the Device Sends Log Messages (WSM), Add a Log Server, and Set Log Server Priority

After you configure your Firebox to send log messages to Dimension, you must enable logging in your policies to generate log messages from your Firebox. If your Firebox runs Fireware OS v11.10.5 or higher, for a packet filter policy that allows traffic, you must select two options to generate log messages that appear in Traffic Monitor and log messages that are used to generate reports.

From Fireware Web UI:

1. Add or edit a policy.
2. On the Settings tab, select the Send log messages check box.
3. For a packet filter policy that allows traffic, to generate a log message that is used for reports, select the Send a log message for reports check box.
4. Click Save.

For more information, see Configure Logging and Notification for a Policy.

From Policy Manager:

1. Add or edit a policy.
2. Select the Properties tab.
3. Click Logging.
4. Select the Send log messages check box.
5. For a packet filter policy that allows traffic, to generate a log message that is used for reports, select the Send a log message for reports (Fireware OS v11.10.5 or higher) check box.
6. Save the configuration file to the Firebox.

For more information, see Configure Logging and Notification for a Policy.

You must independently configure each WatchGuard server to send log messages to Dimension.

1. Open WatchGuard Server Center on the computer where you installed the WatchGuard server.
2. From the Servers tree, select the server.
3. Select the Logging tab.
4. Select the Send log messages to WatchGuard Log Server(s) check box.
5. Add the IP address for this instance of Dimension and the Log Server Authentication Key you specified in the Setup Wizard, to the WatchGuard Log Server list.
6. Make sure the Dimension IP address is the first address in the list.

For more information, see Configure Logging Settings for Your WatchGuard Servers.

After you have installed Dimension and enabled your Fireboxes and WatchGuard servers to send log messages to Dimension, you can view the log messages in Dimension. You can also view the reports that Dimension automatically generates from the log messages, or schedule reports to send as a .PDF to a specific location.

For more information, see these topics:

• View Log Messages
• View Reports
• Schedule Reports