GajShield Knowledge Base

All the documents you require to help you configure and manage GajShield firewalls.

DOCUMENT FAQs

Browse by document category.

Setup

Questions related to setup of GajShield firewall.

URL Filtering

Questions on URL filtering, content filtering, mime blocking..

VPN

This section answers question on IPSEC, PPTP and L2TP VPN..

LATEST DOCUMENTS IN FAQS


Q. Can I block files of a particular type?
A. GajShield supports file-block by mime-types. You can configure the required mime types to block for a group. This can be done at BROWSING->MimePolicy. If a group has been configured to block mime-types by default, you can specify the mime-types who w.....
Q. A particular URL is not categorised by GajShield, can I send it to you?
A. Please send the URL to support@gajshield.com along with the Category, you feel that it belongs to. Our team will review it and update the relevant category......
Q. How often is the URLs added into the database?
A. URL are categories round the clock at the GajShield data centre. They are updated every 5 minutes......
Q. Does GajShield support category based blocking?
A. Yes, GajShield does support URL categories, some of which are Advertisements And Pop-Ups Alcohol And Tobacco Anonymizers Arts Botnets Business Chat Child Abuse Images Compromised Computers And Technology Criminal Activity Cults Dating And.....
Q. Can one club number of services together & use it as single service at particular instance? How?
A. Services can be grouped together to create service groups. These can then be used to setup firewall policies. You can create service groups at FIREWALL->Services->Service Groups. You can also add multiple services while creating firewall policies......
Q. Does GajShield support WAN failover?
A. GajShield is the only UPTM which not only supports global WAN failover, but policy based failover. For e.g. you can now configure your HTTP traffic to flow through ISP1 as primary link and ISP2 as seconday. Your SMTP traffic to flow through ISP2 as prim.....
Q. Does GajShield UPTM come with built-in name server?
A. Yes. All GajShield UPTMs come with a built-in name server. You should use the local server for better performance. In addition to the local server, you can also provide other servers. You can add other name server at NETWORK->Basic->Nameservers.....
Q. What are aliases?
A. GajShield UPTM can be used to NAT servers behind the firewall. This can be done using proxyarp or by reverse NATs. If you configure the firewall to provide reverse NAT, you will need to assign the external IP address to the firewall as an alias. This ca.....
Q. Does GajShield support PPPOE?
A. Yes, you can configure any interface as PPPOE. You will need to provide the following information Interface Name: indicates the default function of the interface (for example, Secure, Insecure, DMZ) Interface Type: indicates whether PPPoE is to.....
Q. How can one configure interfaces?
A. All GajShield's UPTM interfaces can be configured using NETWORK->Basic->Interfaces. You can assign the required IP, give it a name, type. If this interface is connected to your Internet, you should also provide the gateway or router to which it is.....
Q. GajShield is managed fine from any computer in the LAN but not from the other systems in DMZ, Why?
A. The default policy of GajShield allows systems from the LAN interface to configure the UPTM. You can change the policy to allow other systems to configure the firewalls by adding their IPs in FIREWALL->Policies->Admin Ips.....
Q. Users on the LAN are unable to reach the Internet after installing GajShield. The Internet connection was working fine before GajShield was installed. What is wrong?
A. Make sure to restart the Internet router after installing GajShield. There is a possibility that the arp address in the router has not been refreshed and is still pointing to the old system. Also, try to ping the router from the GajShield UPTM using the.....
Q. A proxy server firewall was removed when GajShield was installed. Now clients on the LAN are unable to access any Internet services. What is going wrong?
A. Proxy servers require the client software be configured to connect to the proxy, breaking the basic client-server model of the Internet. To allow client access to the Internet without the proxy, disable the proxy setting in each client application. .....

POPULAR DOCUMENTS IN FAQS


Q. What are aliases?
A. GajShield UPTM can be used to NAT servers behind the firewall. This can be done using proxyarp or by reverse NATs. If you configure the firewall to provide reverse NAT, you will need to assign the external IP address to the firewall as an alias. This ca.....
Q. GajShield is managed fine from any computer in the LAN but not from the other systems in DMZ, Why?
A. The default policy of GajShield allows systems from the LAN interface to configure the UPTM. You can change the policy to allow other systems to configure the firewalls by adding their IPs in FIREWALL->Policies->Admin Ips.....
Q. Does GajShield UPTM support ISP failover?
A. GajShield UPTMs not only support global ISP failover, but can be configured to support policy based ISP failover. For example, you can have HTTP traffic flowing through ISP1 as primary link, and ISP2 as secondary whereas SMTP traffic can flow through IS.....
Q. Does GajShield UPTM come with built-in name server?
A. Yes. All GajShield UPTMs come with a built-in name server. You should use the local server for better performance. In addition to the local server, you can also provide other servers. You can add other name server at NETWORK->Basic->Nameservers.....
Q. Does GajShield support WAN failover?
A. GajShield is the only UPTM which not only supports global WAN failover, but policy based failover. For e.g. you can now configure your HTTP traffic to flow through ISP1 as primary link and ISP2 as seconday. Your SMTP traffic to flow through ISP2 as prim.....
Q. Can one club number of services together & use it as single service at particular instance? How?
A. Services can be grouped together to create service groups. These can then be used to setup firewall policies. You can create service groups at FIREWALL->Services->Service Groups. You can also add multiple services while creating firewall policies......
Q. I would like to block all URLs for a group of users and allow only a few. Can I do that with GajShield?
A. Yes, you can create user groups which are allowed to only browse a certain sites. To do that, create groups with a Site policy as 'Default Block'. This can be done in the group creation form......
Q. I have blocked 'Mail' category for a particular group. But I would like them to have access to Yahoo mail.
A. You can add sites that you wish to allow for a particular group at Browsing->Category->White List. These sites will be allowed even though they belong to a particular category which is blocked......
Q. Can I limit the size of downloads?
A. You can limit the size of downloaded files by stating the 'Maximum Download Size' while creating groups......
Q. What is 'Trusted Domain'?
A. If you have enabled http virus scanning and if you wish to bypass the virus scanning engine for particular domains, you can do that by adding these domains in 'Trusted Domain'.....
Q. A particular URL is not categorised by GajShield, can I send it to you?
A. Please send the URL to support@gajshield.com along with the Category, you feel that it belongs to. Our team will review it and update the relevant category......
Q. How often is the URLs added into the database?
A. URL are categories round the clock at the GajShield data centre. They are updated every 5 minutes......
Q. I would like to allow our users to only browse during non-peak hours. How do I do that in Gajshield?
A. Go to Browsing->Site Policy->Schedule. Enable only the time you wish a group to browse. By default, all groups are allowed to browse at all times. After modifying the schedule for a group, restart proxy at Browsing->Setup->Start Proxy......