Follow these steps to install the ThreatSTOP Roaming firewall. Before you can proceed, you need to register for a ThreatSTOP account, and create a device via our Web Admin Portal:
- either using the Guided Setup and selecting the Roaming Protection option
- or create a Roaming Firewall device through the Device Management screen
Both options will provide you with a product activation key required to install ThreatSTOP’s TSRoaming application.
Installation
TSRoaming is an application for Windows 8, Windows 10 and OS X (El Capitan through High Sierra) that protects your machine by filtering DNS Requests and preventing dangerous domains and IP addresses from being resolved.
It provides similar functionality to our DNS Firewall, which protects endpoints in a corporate network by filtering DNS. The filtering is implemented on the roaming device itself, keeping a policy up-to-date locally. DNS lookups are still performed through the DNS server(s) configured on the device, typically by DHCP.
You need an account with Administrator privileges to install the application. You will also need the Product key created by adding a Roaming device to your account in the Admin Portal.
Downloads
- Windows installer (Win 8, Win 10)
- OS X Installer (Yosemite - High Sierra)
Network Connectivity
To retrieve its configuration and policy, the machine needs the following connectivity:
- DNS over TCP
- IP Range: 192.124.129.0/24
- TCP Port 53
- DNS over TLS
- hostname: ts-ctp.threatstop.com
- IP range: 204.68.97.208/28
- TCP port 5353
- HTTPs
- Hostname: rest.threatstop.com
- IP range: 204.68.99.208/28
- TCP port 443
Installing on Windows
- Double-click the installer (MSI format) after downloading it to your workstation.
- Proceed with the installer. Windows might prompt to grant the permission to install. Click Yes to grant access.
- After the installation completes, right-click on the TSRoaming on your desktop and Run the application as Administrator.
- Load the Product key downloaded during the guided setup or device creation in the Admin portal.
- TSRoaming will download its configuration (most importantly, the policy configuration) and retrieve the policy. This should complete within a couple of minutes.
- Proceed to the Using TSRoaming section below.
Windows uninstall
You can uninstall TSRoaming by launching Windows’ “Change or Remove a Program” Control Panel feature and selecting TSRoaming.
Installing on OS X
- Double-click the installer (pkg format) after downloading it to your workstation.
- Proceed with the installer. OS X will prompt to grant the permission to install. Enter your password to continue.
- After the installation completes, start TSRoaming on the Applications folder.
- Load the Product key downloaded during the guided setup or device creation in the Admin portal.
- TSRoaming will download its configuration (most importantly, the policy configuration) and retrieve the policy. This should complete within a couple of minutes.
- Proceed to the Using TSRoaming section below.
OS X uninstall
You can uninstall TSRoaming by launching “Uninstall TSRoaming”. It is located in Applications after installing TSRoaming.
Using TSRoaming
- The data and time of the last policy update is displayed on the settings page.
- Once the initial policy has been retrieved, DNS requests will be filtered.
- At this time, the application can generate test traffic via the TSRoaming => System Info => Generate Test Traffic menu. This will generate a few DNS requests for test domains and IP addresses contained in your policy.
- Logs will be uploaded and visible in the Admin Portal reports within a couple of minutes.
- From this point on, all DNS requests made by your workstation will be checked against the policy. You can view detailed reports in the Admin Portal or a summary of recent events in the TSRoaming Events and Report tabs.
- You can also issue test DNS requests by running nslookup
in your workstation's shell. - If the policy hasn’t been retrieved within 5 minutes, perform a Health Check via the TSRoaming > System Info menu to check on connectivity issues.