Configure Forcepoint NGFW software using plug-and-play configuration

Connect the Forcepoint NGFW to the network to start the plug-and-play configuration.

Before you begin

The SMC and NGFW Engine must be registered for plug-and-play configuration.

The initial configuration file for the NGFW Engine must be uploaded to the Installation Server.

The Forcepoint NGFW appliance uses specific ports in a specific order when it tries to connect to the Installation Server.
Note: Use these default port settings in the properties of the corresponding engine interfaces that you have defined in the Management Client. The initial configuration fails if the port settings on the physical appliance and the interface definitions in the engine element properties are not the same.

The Forcepoint NGFW appliance first tries to contact the Installation Server through the mobile broadband modem if one is connected to a USB port. The mobile broadband modem and the corresponding Modem interface in the Management Client must have the following settings:

  • Access Point Name — internet
  • Phone number — *99#
  • PIN Code — <empty value>
    Note: PIN code must also be disabled on the mobile broadband modem.

If attempts to connect to the Installation Server through the mobile broadband modem fail, the appliance tries to connect to the Installation Server through Ethernet port 0. If no mobile broadband modem is connected to the appliance, Ethernet port 0 is the only port that can be used.

Steps

  1. (Optional) If you want to view the progress of the plug-and-play configuration, connect the appliance to a computer using the serial cable supplied with the appliance, and use a terminal console program to connect to the NGFW appliance with these settings:
    • Bits per second — 115,200
    • Data bits — 8
    • Parity — None
    • Stop bits — 1.
    Note: The serial console port speed is 115,200 bps in most NGFW appliances. The speed is 9600 bps in older NGFW appliance models. See the hardware guide for your NGFW appliance model for more information.
  2. (Optional) Plug an empty USB drive into one of the USB ports on the appliance if you want to save information about the progress of the plug-and-play configuration on a USB drive.
    Saving the progress information on a USB drive can be useful, for example, for troubleshooting purposes.
  3. Connect the network cables to the appliance. On specific Forcepoint NGFW appliance models with wireless support, connect the antennas.
    Note: The wireless port on Forcepoint NGFW appliances cannot be used for connecting to the Installation Server.
  4. Turn on the NGFW appliance.

Result

The appliance automatically contacts the Installation Server. When the contact succeeds, the appliance downloads the initial configuration file from the Installation Server, then contacts the Management Server.