Login to the Kerio Control Administration interface (use username Admin
and the password defined in the product activation wizard). Upon the first login, the Configuration Assistant dialog is displayed automatically.
First, run the Connectivity Wizard (the first link in the Configuration Assistant). Set the following parameters using the Wizard:
Internet connection types (the wizard, page1) — select persistent connection with a single Internet line.
Internet interface (the wizard, page2) — select an adapter connected to the Internet.
Interface for the local network (the wizard, page3) — select an adapter connected to the local network.
Once connectivity is configured, run the Traffic Policy Wizard (the second link in the Configuration Assistant). Set the following parameters using the Wizard:
Access to Kerio Control services — allow all the services: Kerio VPN (for connection of networks in the headquarters and other offices, and for connection of remote clients — see chapter 4 Interconnection of the headquarters and branch offices), Clientless SSL-VPN (remote access to shared folders and files in the network via web browser) and Kerio Control Administration (remote administration of Kerio Control).
Mapping other services — add SMTP service mapping on the firewall.
In this step you can also define mapping for other hosted services such as an FTP server. This will be better understood through the second method — custom rule definition. For details, see chapter 2.15 Enabling access to local services from the Internet.
There is no reason for allowing any services on firewalls of branch offices (branch office servers use dynamic IP address).