Parameter	Mandatory	Default	Description
BranchName	Yes		Description: Enter the name for the remote location where the RED will be set up. BranchName confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Device	No		Description: Select the client type depending on the type of RED device you want to connect. Device confines to: Type is 'SCALAR'. Only 'RED15', 'RED15W', 'red20', 'RED50', 'red60', 'RED_FIREWALL_SERVER', 'RED_FIREWALL_SERVER_LEGACY', 'RED_FIREWALL_CLIENT', 'RED_FIREWALL_CLIENT_LEGACY' are allowed.
REDDeviceID	Yes		Description: Enter the RED ID. REDDeviceID confines to: Type is 'SCALAR'. Datatype is 'STRING'.
TunnelID	No		Description: Specify 'tunnel_id' TunnelID confines to: Type is 'SCALAR'. Datatype is 'STRING'.
UnlockCode	No		Description: Enter the unlock code. UnlockCode confines to: Type is 'SCALAR'. Datatype is 'STRING'.
UTMHostName	Yes		Description: Enter the hostname of the UTM. UTMHostName confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Connection	Yes	DHCP	Description: Select the connection type for the uplink. Connection confines to: Type is 'SCALAR'. Only 'DHCP', 'Static' are allowed.
Address	No		Description: Enter an IPv4 address. Address confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'. Maximum characters allowed are 15. IP Class other than 'UNSPECIFIED' is allowed.
Netmask	No	/24 (255.255.255.0)	Description: Enter Netmask. Netmask confines to: Type is 'SCALAR'. Datatype is 'STRING'. Maximum characters allowed are 15. IPv4 Address should be between: [128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255]
DefaultGateway	No		Description: Enter gateway IP address. DefaultGateway confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'. Maximum characters allowed are 15. IP Class other than 'UNSPECIFIED' is allowed.
DNS	No		Description: Enter DNS Server IP. DNS confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'.
SecondUTMHostName	No		Description: Enter the second hostname of the UTM. SecondUTMHostName confines to: Type is 'SCALAR'. Datatype is 'STRING'. Not allowed for first character: (# ,). Not allowed: Comma (,)
SecondUplinkMode	No	Failover	Description: Turn on active load balancing between the uplinks. SecondUplinkMode confines to: Type is 'SCALAR'. Only 'balance', 'failover' are allowed.
Use2ndIPHostNameFor	No	Failover	Description: Enable to distribute traffic equally between, the primary and the secondary hosts. Use2ndIPHostNameFor confines to: Type is 'SCALAR'. Only 'Loadbalancing', 'Failover' are allowed.
Connection	Yes	DHCP	Description: Specify the use for the second uplink. Connection confines to: Type is 'SCALAR'. Only 'DHCP', 'Static' are allowed.
Address	No		Description: Enter the IP address of the RED device. Address confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'. Maximum characters allowed are 15. IP Class other than 'UNSPECIFIED' is allowed.
Netmask	No	/24 (255.255.255.0)	Description: Enter the netmask. Netmask confines to: Type is 'SCALAR'. Datatype is 'STRING'. Maximum characters allowed are 15. IPv4 Address should be between: [128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255]
DefaultGateway	No		Description: Specify a default gateway. DefaultGateway confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'. Maximum characters allowed are 15. IP Class other than 'UNSPECIFIED' is allowed.
Description	No		Description: Enter a description for the RED settings. Description confines to: Type is 'SCALAR'. Datatype is 'STRING'.
OperationMode	Yes	Standard/Unified	Description: Specify how the remote network must be integrated into your local network. OperationMode confines to: Type is 'SCALAR'. Only 'Standard', 'Split', 'Transparent' are allowed.
Network	No		Description: Add one or more split networks. Network confines to: Type is 'ARRAY'. Datatype is 'STRING'. Multiple values are allowed.
DNS	No		Description: Add an DNS Server. DNS confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Domain	No		Description: Add one or more split domains. Domain confines to: Type is 'ARRAY'. Datatype is 'STRING'. Multiple values are allowed.
IPAddress	Yes		Description: Enter the IP address of the RED device. IPAddress confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'.
NetMask	Yes		Description: /24 (255.255.255.0) NetMask confines to: Type is 'SCALAR'. Datatype is 'STRING'. IPv4 Address should be between: [128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255]
Zone	Yes		Description: Select the requested zone. Zone confines to: Type is 'SCALAR'. Datatype is 'STRING'. Allowed first characters: Alphanumeric characters (A-Za-z1-9) and not a zero (0). For other characters: (A-Za-z0-9_)
DHCPRange	No		Description: Enter the DHCP range RED is allowed to use. DHCPRange confines to: Type is 'ARRAY'. Datatype is 'STRING'. Multiple values are allowed.
FilterType	No		Description: Select the MAC filtering type to restrict the MAC addresses that can be connected to the RED device. FilterType confines to: Type is 'SCALAR'. Only 'None', 'Whitelist', 'Blacklist' are allowed.
MACAddress	No		Description: The list of MAC addresses used to restrict access to the RED device. MACAddress confines to: Type is 'SCALAR'. Datatype is 'STRING'.
DeploymentMode	No	Automatically via Provisioning Service	Description: Select the requested deployment method. DeploymentMode confines to: Type is 'SCALAR'. Only 'AutoDeployment', 'ManualDeployment' are allowed.
UMTS3GFailover	No	Disable	Description: Enable/disable the 3G/UMTS failover function. UMTS3GFailover confines to: Type is 'SCALAR'. Only 'Disable', 'Enable' are allowed.
Username	No		Description: Enter a username for the mobile network. Username confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Password	No		Description: Enter password for the mobile network. Password confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Pin	No		Description: Enter the PIN of the SIM card if a PIN is configured. Pin confines to: Type is 'SCALAR'. Datatype is 'STRING'. Maximum characters allowed are 15.
MobileNetwork	No	GSM	Description: Select the mobile network type. MobileNetwork confines to: Type is 'SCALAR'. Only 'GSM', 'CDMA' are allowed.
APN	No		Description: Enter provider's access point name information. APN confines to: Type is 'SCALAR'. Datatype is 'STRING'.
DialString	No	*99#	Description: Enter the dial string used by your provider. DialString confines to: Type is 'SCALAR'. Datatype is 'STRING'.
LANPortMode	No	Switch	Description: Configure the LAN ports to use as simple switches or for intelligent VLAN use. LANPortMode confines to: Type is 'SCALAR'. Only 'Switch', 'VLAN' are allowed.
Cert	No		Description: Enter the certificate of the firewall appliance Cert confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Vids	No		Description: Specify the VLAN IDs. Vids confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Authorized	No	1	Description: Enter weather the device should be authorized or not Authorized confines to: Type is 'SCALAR'. Only '0', '1' are allowed.
Vids	No		Description: Specify the VLAN IDs. Vids confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Mode	No		Description: Configure the LAN ports individually. Mode confines to: Type is 'SCALAR'. Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Unused' are allowed.
Vids	No		Description: Specify the VLAN IDs. Vids confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Mode	No		Description: Configure the LAN ports individually. Mode confines to: Type is 'SCALAR'. Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Unused' are allowed.
Vids	No		Description: Specify the VLAN IDs. Vids confines to: Type is 'SCALAR'. Datatype is 'STRING'.
REDMTU	Yes	1500	Description: Enter the MTU of the RED device. REDMTU confines to: Type is 'SCALAR'. Datatype is 'INTEGER'. Range 576 to 1500 is allowed.
TunnelCompression	No	Disable	Description: Enable/Disable the tunnel compression. TunnelCompression confines to: Type is 'SCALAR'. Only 'Disable', 'Enable' are allowed.
Mode	No		Description: Configure the LAN ports individually. Mode confines to: Type is 'SCALAR'. Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Unused' are allowed.
Status	No		Description: Shows the RED Device Status. Status confines to: Type is 'SCALAR'. Only 'Disable', 'Enable' are allowed.
Key	No		Description: Enter the private key of the RED device Key confines to: Type is 'SCALAR'. Datatype is 'STRING'.
CA	No		Description: Enter the CA-certificate that RED uses CA confines to: Type is 'SCALAR'. Datatype is 'STRING'.
Mode	No		Description: Configure the LAN ports individually. Mode confines to: Type is 'SCALAR'. Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Disabled' are allowed.
DNS	No		Description: Enter the IP address of the DNS server. DNS confines to: Type is 'SCALAR'. Datatype is 'IPADDRESS'.

Parameter

Mandatory

Default

Description

BranchName

Yes

Description:
Enter the name for the remote location where the RED will be set up.
BranchName confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Device

Description:
Select the client type depending on the type of RED device you want to connect.
Device confines to:

Type is 'SCALAR'.
Only 'RED15', 'RED15W', 'red20', 'RED50', 'red60', 'RED_FIREWALL_SERVER', 'RED_FIREWALL_SERVER_LEGACY', 'RED_FIREWALL_CLIENT', 'RED_FIREWALL_CLIENT_LEGACY' are allowed.

REDDeviceID

Yes

Description:
Enter the RED ID.
REDDeviceID confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

TunnelID

Description:
Specify 'tunnel_id'
TunnelID confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

UnlockCode

Description:
Enter the unlock code.
UnlockCode confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

UTMHostName

Yes

Description:
Enter the hostname of the UTM.
UTMHostName confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Connection

Yes

DHCP

Description:
Select the connection type for the uplink.
Connection confines to:

Type is 'SCALAR'.
Only 'DHCP', 'Static' are allowed.

Address

Description:
Enter an IPv4 address.
Address confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.
Maximum characters allowed are 15.
IP Class other than 'UNSPECIFIED' is allowed.

Netmask

/24 (255.255.255.0)

Description:
Enter Netmask.
Netmask confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.
Maximum characters allowed are 15.
IPv4 Address should be between: [128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255]

DefaultGateway

Description:
Enter gateway IP address.
DefaultGateway confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.
Maximum characters allowed are 15.
IP Class other than 'UNSPECIFIED' is allowed.

DNS

Description:
Enter DNS Server IP.
DNS confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.

SecondUTMHostName

Description:
Enter the second hostname of the UTM.
SecondUTMHostName confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.
Not allowed for first character: (# ,). Not allowed: Comma (,)

SecondUplinkMode

Failover

Description:
Turn on active load balancing between the uplinks.
SecondUplinkMode confines to:

Type is 'SCALAR'.
Only 'balance', 'failover' are allowed.

Use2ndIPHostNameFor

Failover

Description:
Enable to distribute traffic equally between, the primary and the secondary hosts.
Use2ndIPHostNameFor confines to:

Type is 'SCALAR'.
Only 'Loadbalancing', 'Failover' are allowed.

Connection

Yes

DHCP

Description:
Specify the use for the second uplink.
Connection confines to:

Type is 'SCALAR'.
Only 'DHCP', 'Static' are allowed.

Address

Description:
Enter the IP address of the RED device.
Address confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.
Maximum characters allowed are 15.
IP Class other than 'UNSPECIFIED' is allowed.

Netmask

/24 (255.255.255.0)

Description:
Enter the netmask.
Netmask confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.
Maximum characters allowed are 15.
IPv4 Address should be between: [128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255]

DefaultGateway

Description:
Specify a default gateway.
DefaultGateway confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.
Maximum characters allowed are 15.
IP Class other than 'UNSPECIFIED' is allowed.

Description

Description:
Enter a description for the RED settings.
Description confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

OperationMode

Yes

Standard/Unified

Description:
Specify how the remote network must be integrated into your local network.
OperationMode confines to:

Type is 'SCALAR'.
Only 'Standard', 'Split', 'Transparent' are allowed.

Network

Description:
Add one or more split networks.
Network confines to:

Type is 'ARRAY'.
Datatype is 'STRING'.
Multiple values are allowed.

DNS

Description:
Add an DNS Server.
DNS confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Domain

Description:
Add one or more split domains.
Domain confines to:

Type is 'ARRAY'.
Datatype is 'STRING'.
Multiple values are allowed.

IPAddress

Yes

Description:
Enter the IP address of the RED device.
IPAddress confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.

NetMask

Yes

Description:
/24 (255.255.255.0)
NetMask confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.
IPv4 Address should be between: [128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255].[0,128,192,224,240,248,252,254,255]

Zone

Yes

Description:
Select the requested zone.
Zone confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.
Allowed first characters: Alphanumeric characters (A-Za-z1-9) and not a zero (0). For other characters: (A-Za-z0-9_)

DHCPRange

Description:
Enter the DHCP range RED is allowed to use.
DHCPRange confines to:

Type is 'ARRAY'.
Datatype is 'STRING'.
Multiple values are allowed.

FilterType

Description:
Select the MAC filtering type to restrict the MAC addresses that can be connected to the RED device.
FilterType confines to:

Type is 'SCALAR'.
Only 'None', 'Whitelist', 'Blacklist' are allowed.

MACAddress

Description:
The list of MAC addresses used to restrict access to the RED device.
MACAddress confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

DeploymentMode

Automatically via Provisioning Service

Description:
Select the requested deployment method.
DeploymentMode confines to:

Type is 'SCALAR'.
Only 'AutoDeployment', 'ManualDeployment' are allowed.

UMTS3GFailover

Disable

Description:
Enable/disable the 3G/UMTS failover function.
UMTS3GFailover confines to:

Type is 'SCALAR'.
Only 'Disable', 'Enable' are allowed.

Username

Description:
Enter a username for the mobile network.
Username confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Password

Description:
Enter password for the mobile network.
Password confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Description:
Enter the PIN of the SIM card if a PIN is configured.
Pin confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.
Maximum characters allowed are 15.

MobileNetwork

GSM

Description:
Select the mobile network type.
MobileNetwork confines to:

Type is 'SCALAR'.
Only 'GSM', 'CDMA' are allowed.

APN

Description:
Enter provider's access point name information.
APN confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

DialString

*99#

Description:
Enter the dial string used by your provider.
DialString confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

LANPortMode

Switch

Description:
Configure the LAN ports to use as simple switches or for intelligent VLAN use.
LANPortMode confines to:

Type is 'SCALAR'.
Only 'Switch', 'VLAN' are allowed.

Cert

Description:
Enter the certificate of the firewall appliance
Cert confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Vids

Description:
Specify the VLAN IDs.
Vids confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Authorized

Description:
Enter weather the device should be authorized or not
Authorized confines to:

Type is 'SCALAR'.
Only '0', '1' are allowed.

Vids

Description:
Specify the VLAN IDs.
Vids confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Mode

Description:
Configure the LAN ports individually.
Mode confines to:

Type is 'SCALAR'.
Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Unused' are allowed.

Vids

Description:
Specify the VLAN IDs.
Vids confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Mode

Description:
Configure the LAN ports individually.
Mode confines to:

Type is 'SCALAR'.
Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Unused' are allowed.

Vids

Description:
Specify the VLAN IDs.
Vids confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

REDMTU

Yes

1500

Description:
Enter the MTU of the RED device.
REDMTU confines to:

Type is 'SCALAR'.
Datatype is 'INTEGER'.
Range 576 to 1500 is allowed.

TunnelCompression

Disable

Description:
Enable/Disable the tunnel compression.
TunnelCompression confines to:

Type is 'SCALAR'.
Only 'Disable', 'Enable' are allowed.

Mode

Description:
Configure the LAN ports individually.
Mode confines to:

Type is 'SCALAR'.
Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Unused' are allowed.

Status

Description:
Shows the RED Device Status.
Status confines to:

Type is 'SCALAR'.
Only 'Disable', 'Enable' are allowed.

Key

Description:
Enter the private key of the RED device
Key confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Description:
Enter the CA-certificate that RED uses
CA confines to:

Type is 'SCALAR'.
Datatype is 'STRING'.

Mode

Description:
Configure the LAN ports individually.
Mode confines to:

Type is 'SCALAR'.
Only 'Tagged', 'Untagged', 'Untagged DropTagged', 'Disabled' are allowed.

DNS

Description:
Enter the IP address of the DNS server.
DNS confines to:

Type is 'SCALAR'.
Datatype is 'IPADDRESS'.

Operation	Status	Message
Add RED Device	200
Add RED Device	500
Add RED Device	501
Add RED Device	502
Add RED Device	503
Add RED Device	504
Add RED Device	512
Add RED Device	513
Add RED Device	514
Add RED Device	515
Add RED Device	516
Add RED Device	517
Add RED Device	518
Add RED Device	519
Add RED Device	520
Add RED Device	521
Add RED Device	522
Add RED Device	526
Add RED Device	541
Add RED Device	542
Add RED Device	544
Add RED Device	543
Add RED Device	545
Add RED Device	546
Add RED Device	547
Update RED Device	200
Update RED Device	500
Update RED Device	501
Update RED Device	502
Update RED Device	503
Update RED Device	504
Update RED Device	512
Update RED Device	513
Update RED Device	514
Update RED Device	515
Update RED Device	516
Update RED Device	517
Update RED Device	518
Update RED Device	519
Update RED Device	526
Update RED Device	541
Update RED Device	542
Update RED Device	544
Update RED Device	543
Update RED Device	545
Update RED Device	546

Operation

Status

Message

Add RED Device

200

Add RED Device

500

Add RED Device

501

Add RED Device

502

Add RED Device

503

Add RED Device

504

Add RED Device

512

Add RED Device

513

Add RED Device

514

Add RED Device

515

Add RED Device

516

Add RED Device

517

Add RED Device

518

Add RED Device

519

Add RED Device

520

Add RED Device

521

Add RED Device

522

Add RED Device

526

Add RED Device

541

Add RED Device

542

Add RED Device

544

Add RED Device

543

Add RED Device

545

Add RED Device

546

Add RED Device

547

Update RED Device

200

Update RED Device

500

Update RED Device

501

Update RED Device

502

Update RED Device

503

Update RED Device

504

Update RED Device

512

Update RED Device

513

Update RED Device

514

Update RED Device

515

Update RED Device

516

Update RED Device

517

Update RED Device

518

Update RED Device

519

Update RED Device

526

Update RED Device

541

Update RED Device

542

Update RED Device

544

Update RED Device

543

Update RED Device

545

Update RED Device

546

Sophos Firewall is registered trademarks of Sophos Firewall Limited and Sophos Firewall Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.

Operation:	Add RED Device / Update RED Device
Description:	To configure RED.To configure RED.