Applies To: Cloud-managed Fireboxes, Locally-managed Fireboxes, WatchGuard Cloud-managed Access Points
You can add your Fireboxes, FireClusters, and WatchGuard access points to WatchGuard Cloud.
- Add a Firebox to WatchGuard Cloud
- Add a FireCluster to WatchGuard Cloud
- Add an Access Point to WatchGuard Cloud
Add a Firebox to WatchGuard Cloud
To monitor or manage Fireboxes from WatchGuard Cloud, you add the Firebox to your WatchGuard Cloud account.
When you add a Firebox to WatchGuard Cloud, you select how you want to manage the Firebox:
Cloud Management
With this option, you use WatchGuard Cloud for all Firebox configuration management, monitoring, and reporting.
When you add a cloud-managed Firebox, you create a new configuration in WatchGuard Cloud. You cannot migrate an existing device configuration to WatchGuard Cloud. For information about how to change an existing Firebox from local management to cloud management, see Change a Locally-Managed Firebox to Cloud Management.
For details about how to add a cloud-managed Firebox to WatchGuard Cloud, see Add a Cloud-Managed Firebox to WatchGuard Cloud.
For details about how to add a cloud-managed FireboxV to WatchGuard Cloud, see Add FireboxV to WatchGuard Cloud (Cloud-Managed).
For details about how to add a cloud-managed Firebox Cloud instance to WatchGuard Cloud, see Add Firebox Cloud to WatchGuard Cloud (Cloud-Managed).
Local Management
With this option, you use WatchGuard Cloud for monitoring and reporting, and you use Fireware Web UI or WatchGuard System Manager to manage the device configuration. You can use this option to monitor any existing Firebox without the need to create a new configuration.
For information about how to add a locally-managed Firebox to WatchGuard Cloud, see Add a Locally-Managed Firebox to WatchGuard Cloud.
For information about how to use this option to do RapidDeploy from WatchGuard Cloud, see RapidDeploy from WatchGuard Cloud.
After you add a device to WatchGuard Cloud, you can upgrade the firmware from WatchGuard Cloud. For more information, see Upgrade Firmware in WatchGuard Cloud.
Add a FireCluster to WatchGuard Cloud
Some of the features described in this topic are only available to participants in the WatchGuard Cloud Beta program. If a feature described in this topic is not available in your version of WatchGuard Cloud, it is a beta-only feature.
To monitor or manage FireClusters from WatchGuard Cloud, you add the FireCluster to your WatchGuard Cloud account.
When you add a FireCluster to WatchGuard Cloud, you select how you want to manage the Firebox:
Cloud Management
With this option, you use WatchGuard Cloud for all FireCluster configuration management, monitoring, and reporting.
For information about how to add a locally-managed FireCluster to WatchGuard Cloud, see Add a Cloud-Managed FireCluster.
Local Management
With this option, you use WatchGuard Cloud for monitoring and reporting, and you use Fireware Web UI or WatchGuard System Manager to manage the device configuration. You can use this option to monitor any existing FireCluster without the need to create a new configuration. You can also upgrade, reboot, and fail over a locally-managed FireCluster in WatchGuard Cloud.
For information about how to add a locally-managed FireCluster to WatchGuard Cloud, see Add a Locally-Managed FireCluster to WatchGuard Cloud.
Add an Access Point to WatchGuard Cloud
To manage a WatchGuard access point from WatchGuard Cloud, you must add the access point to WatchGuard Cloud as a cloud-managed device. For details about how to add an access point to WatchGuard Cloud, see Add an Access Point to WatchGuard Cloud.
Before you add an access point to WatchGuard Cloud, make sure that:
- You have activated the access point in your WatchGuard Portal account. For more information, see Activate an Access Point.
- The access point has a current WatchGuard Standard or USP Wi-Fi license. For more information, see About Wi-Fi in WatchGuard Cloud Access Point Licenses.
- The access point is allocated to a Subscriber account (Service Providers only). For more information, see Access Point Allocation.
Required Ports
The access points use TCP port 443 to connect to WatchGuard Cloud.
Access points must also be able to connect to these destinations:
- *.watchguard.io for product activation and feature key updates
- *.watchguard.com for WatchGuard Cloud registration and connections
If you set up an access point behind a firewall that performs inspection on HTTPS traffic, you must add *.watchguard.io to the content inspection exception / bypass list to enable the access point to receive a feature key from WatchGuard servers. On the WatchGuard Firebox, this is enabled by default for cloud-managed Fireboxes in WatchGuard Cloud.
See Also
About Firebox WatchGuard Cloud Licenses
About Wi-Fi in WatchGuard Cloud Access Point Licenses