About Firebox Security Services Settings

Applies To: Cloud-managed Fireboxes

Firebox security services protect your network from intrusions, phishing attempts, malware, ransomware, and other types of attacks. Three levels of security services packages are available for your Firebox:

Standard Support

Standard Support licenses are included with all WatchGuard devices. Standard Support includes full VPN capabilities and built-in SD-WAN. With a Standard Support license, you can add your Firebox to WatchGuard Cloud as a cloud-managed or locally-managed device. Live Status is available. There is no data retention or reporting available with Standard Support.

Basic Security Suite

In addition to the services available with Standard Support, the Basic Security Suite includes:

  • IPS
  • Gateway AntiVirus
  • WebBlocker
  • Application Control
  • spamBlocker
  • Reputation Enabled Defense

With the Basic Security Suite, you can add your Firebox to WatchGuard Cloud as a cloud-managed device, or as a locally-managed device with cloud reporting.

Total Security Suite

The Total Security Suite includes all services offered with the Basic Security Suite plus:

  • IntelligentAV
  • Threat Detection and Response
  • APT Blocker
  • DNSWatch

With the Total Security Suite, you can add your Firebox to WatchGuard Cloud as a cloud-managed device, or as a locally-managed device with cloud reporting.

For information on how to add a device to WatchGuard Cloud, see Get Started — Add a Device to WatchGuard Cloud.

Security Services in the Total Security Suite

Available with an active Total Security Suite, security services work together with policies to control which traffic the Firebox allows or denies between networks. In the Security Services settings, you enable and configure security services. Security services enable the Firebox to block network threats and specific content types.

For a cloud-managed Firebox, you can configure these security services settings:

  • Content Scanning (APT Blocker, Gateway AntiVirus, IntelligentAV)
  • Network Blocking (Blocked Ports, Blocked Sites, Botnet Detection, Intrusion Prevention Service, Tor Exit Node Blocking)
  • Exceptions
  • Geolocation
  • Content Filtering (Application Control, WebBlocker)
  • TLS Encryption

On the Device Configuration page for a Firebox, the Security Services section shows a summary of configured settings. Security services are enabled on cloud-managed Fireboxes by default with recommended settings.

Screen shot of WatchGuard Cloud Configure Security Services (cloud-managed)

To see and configure these settings, click a tile in the Security Services section.

The Basic Security Suite and Standard Support licenses include fewer services. Unsupported security services are read-only in WatchGuard Cloud.

For more information, see:

For Content Scanning, Content Filtering, Geolocation, and Tor Exit Node Blocking to apply to traffic through the Firebox, you must also enable these services in firewall policies. For information about policy settings, see Configure Security Services in a Firewall Policy.

Related Topics

About Security Services Precedence (Total Security Suite)

Add a Cloud-Managed Firebox to WatchGuard Cloud

(Video) Cloud-Managed Firebox: Configuration Overview