Get quick answers to commonly asked questions about GajShield firewall products. This section helps with basic setup doubts, feature behaviour, troubleshooting, upgrades, licensing queries, and general product usage.
A service group can be created at Definitions : Protocols and Services : Service Groups This added service group can be then used in firewall rules.
DC Firmwre Version: 2.0 and above TimeSet in GajShield allow administrators to define the time period for which various policies should be active, which include Firewall / Application Filtering / Data…
Firmware Version Supported: 4.5 and above PPPoE Connection 1. To configure PPPoE interface, Go to Configuration Devices Interfaces . click on the icon to open the interface configuration. 2. Select PP…
Q. Does GajShield support user authentication for URL filtering? A. GajShield supports Local Database, LDAP, Radius, TACACS+ and Microsoft Active Directory user authentication. All GajShield UPTMs can…
Q. Do I need to reconfigure my browser to use the URL filtering provided in GajShield? A. GajShield supports two modes of operations Transparent Mode Proxy Mode In Transparent Mode, you do not have to…
Problem Seen: Exact Error message : " Traceback most recent call last : File "/usr/local/https/cgi bin/pyc exec", line 26, in ? "pyc", mode , imp.PY COMPILED File "confservicegroups.py", line 41, in ?…
Maximum Transmission Unit MTU MTU of any interface on GajShield at Configuration : Device : Interfaces . Select the interface for which you want to change the MTU
Note: It is assumed that SSL deep inspection is enabled on the firewall. If SSL deep inspect is not enabled, the below is only valid for http traffic If you are encountering an "Access Denied" popup w…
FQDN hosts are resolved even for multiple addresses for a single domain or host. To use FQDN on GajShield firewall, do the following Configure a FQDN by adding it at Definitions : FQDN hosts You can t…
Firmware Vesrion: 4.25+ To check the Dos reports, click on the 'Reports button' on the GajShield Management console. A new tab or window would be open which will display various reports. Click on the …
support@gajshield.com
A. Proxy servers require the client software be configured to connect to the proxy, breaking the basic client-server model of the Internet. To allow client access to the Internet without the proxy, di…
A. GajShield gives a very detailed report on each user. You can get the top users by download, by url hits and categories visited by the organisation. This give an insight on where the traffic is bein…
A. You can limit the size of downloaded files by stating the 'Maximum Download Size' while creating groups.
A. Yes. You can load balance your internet traffic through 2 ISPs. There is no limitation on GajShield UPTM on the number of ISPs you can load balance the traffic. It will be limited by the number of …
A. Services can be grouped together to create service groups. These can then be used to setup firewall policies. You can create service groups at FIREWALL->Services->Service Groups. You can also…
GajShield Name Server functions as a recursive resolver for domain queries and is not intended to act as an authoritative name server for hosting domain zones.
A. Yes, you can configure any interface as PPPOE. You will need to provide the following information Interface Name: indicates the default function of the interface for example, Secure, Insecure, DMZ …
A. Yes, you can configure GajShield to log on a remote syslog server. This can be done at REPORT->System->Syslog Options.
A. GajShield not only supports global WAN failover, but policy based failover. For e.g. you can now configure your HTTP traffic to flow through ISP1 as primary link and ISP2 as seconday. Your SMTP tra…
How to Configure an Interface on a GajShield Firewall Configuring an interface on a GajShield firewall is a fundamental step in setting up network connectivity. This includes assigning IP addresses, d…
A. You can configure the number of days to keep the logs at ADMIN->Settings->Misc Options.
A. Yes, you can create user groups which are allowed to only browse a certain sites. To do that, create groups with a Site policy as 'Default Block'. This can be done in the group creation form.
A. No, GajShield is installed between the router and LAN and configures itself to intercept and pass traffic destined for the Internet router. No client configuration is required, unlike for proxy ser…
A. Make sure to restart the Internet router after installing GajShield. There is a possibility that the arp address in the router has not been refreshed and is still pointing to the old system. Also, …
A. The 'Site Block Logs' gives a detailed report on the sites which have been blocked by the firewall. It also provides the category for which these sites have been blocked. You can click on any of th…
A. If you have enabled http virus scanning and if you wish to bypass the virus scanning engine for particular domains, you can do that by adding these domains in 'Trusted Domain'
GajShield offers support for multiple VPN protocols, including IPSEC, PPTP, and L2TP over IPSEC. This versatility allows users to connect various devices and operating systems seamlessly to the GajShi…
A. Make sure to set the IP address of the computer being used for initial configuration to the same subnet address of the GajShield.. During initial configuration, it is suggested that this address be…
If a URL is not accessible through a GajShield firewall, it could be due to several reasons: URL Filtering: The URL might be blocked by the firewall's URL filtering policy. To investigate further clic…