5,562
edits
Changes
→Preconditions
== The TrutzBox<sup>®</sup> ==
<!-- ==================================================== -->
<!-- ====================== Chapter 1 ====================== -->
<!-- ==================================================== -->
Comprehensive background information and technical details that go beyond setting up and using the TrutzBox<sup>®</sup> are provided by the ''Comidio Compendium''', see https://comidio.de/trutzbox-kompendium/.
(To hide the search line: click on "x" on the right side in the search line.
=== Before you turn to the TrutzBox... updates! ===
Please make sure that the following '''Updates are done''' and that you can access your '''access your Internet router''' user interface.
<table border=1 width="700">
<tr>
<tr>
<td>'''Browser'''</td>
<td>Bitte achten Sie darauf, dass jeder Ihr Please make sure that your '''Browser mit dem neusten Updateeach of your browsers is up to date with the latest update''' versehen auf dem neusten Stand ist.<br/>
Only in this way can you be sure that you are optimally protected by the latest updates. In addition, TrutzBox is set up with its own updates to work with the latest browser updates. If the browser is not equipped with the latest update, the TrutzBox may not work and therefore does not offer optimum protection.
<br/><br/>
<tr>
<td width="80">'''ATTENTION:'''
'''We can only provide support if you first go through Quick Start'''
*'''Step-by-step'''
*'''completely'''
[[#top|-> <u> Table of Contents </u> (of this manual)]]
<br/><br/>
=== TrutzBox with or without (own) WLAN? ===
<br/>
=== Phases, users and administrator ===
This manual describes two roles in these words:<br/><br/>
'''”User”User'''<br/>Anyone using TrutzBox functions is referred to in this manual as "'''User'"''.
<br/><br/>
'''Administrator '''<br/>
'''<span style="color: green">Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane </span>'''
----
==<span style="color: green">Fast Lane (for TrutzBox<sup>®</sup> Administrator)</span>==
<!-- ==================================================== -->
<!-- ====================== Chapter 2 ====================== -->
<!-- ==================================================== -->
Chapter 2 contains information for technically affine users:
Now 9 screen pages follow one after the other for the initial setup of your TrutzBox:
*Page 1: '''<span style="color: green">Welcome (Willkommen)</span style>''': TrutzBox self-tests whether it has access to the Internet,*Page 2: '''<span style="color: green">License terms (Lizenzbedingungen)</span style>''': accept the license agreement,*Page 3: '''<span style="color: green">Import Root-Zertificate(Root-Zertifikat importieren)</span style>'''
<table border=1 width="600">
<tr>
<td width="110">Schritt Step 1:</td>
<td width="490">Download Root-Zertificate</td>
</tr>
<td>Start test</td></tr></table>
*Page 4: '''<span style="color: green"> Set admin password (Admin-Passwort setzen)</span style>''': Setting the administrator password for your TrutzBox,*Page 5: '''<span style="color: green"> Register TrutzBox (TrutzBox registrieren)</span style>''': Enter TrutzLegitimierung (TrutzKennung und TrutzSchlüssel),*Page 6: '''<span style="color: green">Create TrutzMail Adresse(TrutzMail Adresse anlegen)</span style>''': Create name, e-mail address and password,*Page 7: '''<span style="color: green"> WLAN settings (WLAN Einstellungen)</span style>''': Setting the WLAN name (SSID) and the WLAN password (can be done later in case of later WLAN setup),*Page 8: '''<span style="color: green"> source packages (Quellpakete)</span style>''': Determine memory release or storage of source packages, and*Page 9: '''<span style="color: green"> recap (Zusammenfassung)</span style>''': Presentation of the entries, and if OK: "Start initial setup".
<nowiki>*</nowiki>IE = Internet Explorer
[[#top|-> <u> Table of Contents </u> (of this manual)]]
<br/>
====<span style="color: green"> Enter TrutzBox as a proxy in your browser (Step D)</span style>====
[[#top|-> <u> Table of Contents </u> (of this manual)]]
<br/>
==TrutzBox<sup>®</sup> Setup (for TrutzBox<sup>®</sup> Administrator)==
<!-- ==================================================== -->
<!-- ====================== Chapter 3 ====================== -->
<!-- ==================================================== -->
This chapter includes
*Start-up of the TrutzBox<sup>®</sup>
[[File:20170131 FritzBox immer gleiche IP Adresse ur.PNG|700px|link=]]
<br/><br/>
*'''tart Start up the TrutzBox<sup>® </sup> at the beginning in proxy mode (see chapter "Using the TrutzBox<sup>®</sup> -> for users). When you have experience with TrutzBox<sup>® </sup>, you can gradually connect devices without proxy directly to TrutzBox<sup>® </sup> (transparent mode).'''
<br/><br/>
</tr>
Here you can read the license conditions.<BR/>
If you agree, click on "Lizenzbedingungen akzeptieren" (Accept license terms" ) (1).
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
[[File:20151015-Ersteinrichtung-0061.png|700px|link=]]
<BR/><BR/>
Since we are currently using Firefox, click on "hier" (here" ) in step 1 of (a)(1)
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
[[File:20151015-Ersteinrichtung-00713_2_2_SetUp_Einrichtung_060.png|700px|link=]]
<BR/><BR/>
In the trust query, set the two upper check marks mark (1)+(2).<BR/>Click on "Weiter" (32).
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
Continue to "Part III: Completion of the setup".
<BR/><BR/>
==== Part IIb: Setup with Non-Firefox ====
<BR/><BR/>
Here you can read the license conditions.<BR/>
If you agree, click on "Lizenzbedingungen akzeptieren" (Accept license terms" ) (1).
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
[[File:325 IPv6 Unterstützung deaktivieren 021.png|700px|link=]]
<BR/><BR/>
In the FRITZ!box user interface, call up "Internet".
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/><BR/>
[[File:SSD EinbauAustauschAnleitung 010.png|700px|link=]]
<BR/><BR/>
Loosen the 4 screws (1) and remove the housing cover (2).
<BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/><BR/>
== Use of the TrutzBox<sup>®</sup> (-> for users)==
<!-- ==================================================== -->
<!-- ====================== Chapter 4 ====================== -->
<!-- ==================================================== -->
The TrutzBox<sup>® </sup> is delivered by Comidio with security settings suitable for everyday use, so that even inexperienced users can email and surf immediately protected and without a trace.
* '''TrutzMail''': End-to-end email service with encrypted content and encrypted metadata.
* '''TrutzContent''': Maximum protection for children and young people by using filter lists to block inappropriate websites.
* '''TrutzRTC''': Real-time communication with '''TrutzChat''' (Messaging) and '''TrutzMeeting''' (Audio and Video Conferencing Service).* '''TrutzBase''': Use of modern virus protection, firewall and intrusion detection systems.
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br />
==== TrutzBrowse for experts ====
The TrutzBox<sup>®</sup> offers two different basic functions for this purpose:
'''1. TrutzContent:'''
* An Internet device unnoticedly calls up a web page in the background without a user deliberately initiating it. These can be TVs, washing machines or game consoles (if they are connected to the Internet), or even the standard Internet browser of the user's PC, which in turn contacts Mozilla or Google or the server of a plug-in provider independently, for example.
The TrutzBox<sup>®</sup> checks if the contact to such a server is allowed and blocks the connection to this server if necessary.
'''2. TrutzBrowse:'''
If the„'''FoxyProxy Standard'''“ add-on is implemented, the user can activate and deactivate the "Trutzbox" proxy and thus the TrutzBrowse function by clicking the Proxy Switcher button (orange fox head) in the browser header.:
* to '''switch on''': by clicking on the symbol "crossed out, orange fox head" the FoxyProxy selection window appears; there click on the green line "'''Use proxy Trutzbox for all URLs (ignore patterns)''''" and the proxy is switched on and the symbol "orange fox head" appears.
* to '''turn off''': by clicking on the symbol "orange fox head" the FoxyProxy selection window appears; click on the red line "'''Turn Off All Proxies'''" and the proxy is switched off and the symbol "crossed out, orange fox head" appears.
<br />
The"'''FoxyProxy Standard'''" add-on is installed as follows:
[[File:04 01 03 01 220.png|700px|link=]]
<BR/><BR/>
*Ganz nach unten scrollen Scroll all the way down (1).
* Click on "Sehen Sie sich weitere Add-ons an!" (2).
<BR/>
<BR/><BR/>
* In the symbol line, the symbol "FoxyProxy switched off" (crossed out logo) indicates that the proxy is switched off (1).
* Durch RefreshThe page is refreshed or called up again, bzwe. erneutes Aufrufen, also zg.B. Klick auf by clicking on (2), wird die Seite neu aufgebaut.
<BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
[[File:20151203 Chrome Proxy switch 05-6 V01.png|700px|link=]]
<br />
<br /><br />
[[File:TrutzMail Konto in Outlook 020.png|700px|link=]]
Click on "NewNeu" to add a new email account.
<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>
[[File:TrutzMail Konto in Outlook 030.png|700px|link=]]<br />
Click on "E-Mail-Konto" and on: "Weiter".
<br /><br />
[[File:TrutzMail Konto in Outlook 040.png|700px|link=]]<br />
Enter the relevant data (email address and password can be obtained from the administrator).
<br /><br />
[[File:TrutzMail Konto in Outlook 200.png|700px|link=]]<br />
TrutzMail supports IMAP; please click on "POP or IMAP".
<br />
[[File:TrutzMail Konto in Outlook 203.png|700px|link=]]<br />
Enter the data accordingly (1.) and click on "NextWeiter" (2.).
[[#top|-> <u>Table of Contents </u> (of this manual)]]<br /><br />
* The same certificates and keys are used to encrypt messages and authenticate the TrutzBox of the communication partner as for TrutzMail.
<br/>
Once created, TrutzMail addresses can also be used directly for chat/messaging. This does not require any configuration on the TrutzBox.
<br/><br/>
[[File:TrutzRTC 010a.png|700x700px|link=]]
===== preconditions: Preconditions =====
In order to use the TrutzChat service, a '''TrutzMail address''' and an '''XMPP-enabled program'' on the mobile device (PC or mobile) are required. Chat programs that support the XMPP protocol are available for all common operating systems with different features.
The individual selection depends partly on requirements, partly on taste.<br/><br/>
Comidio recommends uses the following chat programs for the respective operating systemclients:
<table border=1 width="700">
<tr>
<td width="160">Apple MacintoshMacOS</td><td width="540">Adium (https://adium.im) oder Swift (https://swift.im)</td>
</tr>
<tr>
<td>Microsoft Windows</td>
<td>PSI (http://psi-im.org) oder Swift (https://swift.im)</td>
</tr>
<tr>
Several TrutzMail addresses can also be configured in one client.
<br/><br/>
<br/><br/>
[[File:TrutzRTC 020a.png|700x700px|link=]]
Depending on the functionality of the messaging client, the XMPP server on the TrutzBox supports the following XMPP standard functions:
* Instant-Messaging: Text messages incl. formatting and emoticons
* Create and manage communication groups, group chats (multi-user chat - MUC ), also cross-but currently only for communication participants who are logged on to the same TrutzBox.
* Audio/Video Communication: Telephone Calls
* File transfer: Send files to the communication partner(s)
There is no need to open additional ports on the Internet router at home.
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/>
===== Setting up and using chat rooms ======
The TrutzBox is also used by clubs, groups of friends, schools, industrial projects etc. to communicate with each other safely. Such closed user groups can not only hold video conferences and exchange secure e-mails with several users simultaneously, but also communicate together via one (or more) chat rooms. Such chat rooms are also called Multi User Chat (MUC).
<br/><<br/>
To do this, it is possible to create a chat room on my own TrutzBox, i.e. the TrutzBox, where I have a TrutzMail address, and then invite any number of participants with their TrutzMail address.<br/><<br/>For example, to create a new room in the chat program Adium, call the menu „Ablage“ -> „gehe zu Chat..“ auf:<br/><br/>[[File:20180515 XMPP Chat beitreten.png|500x500px|link=]]<br/><br/>The fields have the following meaning:<br/><br/>'''Konto''': select here the TrutzMail account under which the "chat room" is to be createdl<br/>'''Raumname''': define a room name (here myroom) and append the user account (without @comidio.email) behind it in parentheses. The room name must not contain any special characters<br/>'''Server''': do not change anything <br/>'''Handle''': do not change anything <br/>'''Passwort''': an optional access password can be entered here<br/>'''Kontakte einladen''': here you can separate participants by commas and invite them to the room. Participants can also be invited or unloaded separately at a later date<br/>'''Einladungstext''': here you can enter any text that is displayed with the invitation. <br/><br/> Once the room has been created in this way, further contacts (in the contact list with the right mouse button - menu "Invite to chat") can be invited into the room. <br/><<br/>The chat room is then located on the TrutzBox on which the room was created. Participants from another TrutzBox are automatically notified with the invitation and connect to this room. ==== TrutzMeeting: Audio- and Video-Conference Service ====Using the XMPP server and the correct messaging client, it is possible to establish an audio/video connection, but only with one other participant, and it is necessary that all participants use a client that supports the same audio/video code. Therefore, standard XMPP clients are not an optimal solution for telephone or video conferences.<br> To provide TrutzBox users with a secure solution for multiparty telephone or video conferencing, the TrutzBox offers a WebRTC-enabled conference server that allows audio/video conferencing directly from a standard Internet browser, without the need for additional software.<br>Around the TrutzBox user also a secure solution for telephone or video WebRTC is a living standard defined in phases, which is gradually implemented by the browser manufacturers. This means that there are no uniform functionalities across all browsers and the WebRTC functions run differently stable.<br>For example, the screensharing function is not yet implemented stably.We will update with appropriate browsers. ===== preconditions =====During the later operating phase, the maximum number of video conference participants will correspond to the TrutzMail addresses booked.
'''There is no participant limit in the current beta test phase.'''
<br><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/>
== Administrating the TrutzBox<sup>®</sup> (for TrutzBox<sup>®</sup> Administrator) ==
<!-- ==================================================== -->
<!-- ====================== Chapter 5 ====================== -->
<!-- ==================================================== -->
The TrutzBox<sup>® </sup> is delivered by Comidio with security settings suitable for everyday use, so that even inexperienced users can email and surf immediately protected and without a trace.
[[Main Page#Nutzung eines Mail-Client (Bsp. MS Outlook)|-> <u>Nutzung eines Mail-Client </u> (in diesem Handbuch)]]
<br/><br/>
==== Add new user ====
Here you can change the password for the registered user.
==== Delete user =====
[[File:20150705 Accounts 501 Ben löschen.png|600x600px|link=]]
[[#top|-> <u>Table of Contents </u> (of this manual)]]
With this functionality, TrutzBox owners can '''additionally''' exchange PGP-encrypted e-mails with non-trutzBox owners in addition to TrutzMail (automatic exchange of content and metadata of encrypted e-mails between TrutzBoxes).
*The first section describes the transmission options.<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
===== send Send emails =====
If an email is to be ''sent''' via the TrutzBox, the TrutzBox first checks whether the recipient is a TrutzBox …
*<span style="color: green">'''(Se1)'''</span> if yes, <span style="color: green" >email content and metadata are automatically encrypted by the TrutzBox </span> and sent to the recipient TrutzBox via TrutzMail,
If the TrutzBox knows a public key for a mail recipient whose mail address does not end with @comidio.email, this e-mail is encrypted with it.
<br/>
If an e-mail is to be ''received''' via the TrutzBox (i.e. the target address ends with @comidio.email), there are three differentiations:
*span style="color: green">''''(Em1)''''</span> sent by a TrutzBox: <span style="color: green">fully encrypted (incl. metadata)</span> directly to the receiver TrutzBox (see first case above Se1)
<br/><br/>
===== Identification of e-mails in the subject line ======='"Send ''Sending e-mails'''<br/>
All e-mails sent via the TrutzBox are automatically encrypted by the TrutzBox. If the recipient is a TrutzBox (and thus the mail address ends with @comidio.email), then the TrutzBox automatically obtains the required public key of the recipient. If the recipient does not have a TrutzBox (and therefore a normal e-mail address has been addressed), the TrutzBox administrator must first inform the TrutzBox of the public key of the recipient. For security reasons, it is not possible to send an e-mail to a recipient if the recipient's public key is unknown.<br/>
'''Receiving emails'''<br/>
All encrypted e-mails received by the TrutzBox are automatically decrypted by the TrutzBox and made available for retrieval of an e-mail program. The TrutzBox can also receive e-mails from normal e-mail servers. These can be either encrypted or unencrypted. To show the recipient of the e-mail whether the e-mail was encrypted or unencrypted and whether the TrutzBox was able to check the sender's signature, the TrutzBox adjusts the mail subject field in the e-mail.<br/>The TrutzBox places text in square brackets before the mail subject as <u>first the letter </u>
*U - for unsigned (the TrutzBox could not confirm the sender), or
<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/>
The two lists show the top 100 most used (and thus blocked!) trackers and the top 100 websites with the highest (and thus blocked!) number of trackers since the last reset. By pressing "Reset" the statistic is set to 0 and starts again.
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/>
=== TrutzMail ===
[[File:TrutzMail 70 Webmail.png|600px|link=]]
<br/>
Here you can access TrutzMail directly via webmail. For general information on TrutzMail, see chapter "Using the TrutzBox -> Encrypted Mailing - TrutzMail". Users can access TrutzMail directly via <nowiki>https://trutzbox/mail</nowiki>.
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
[[#top|-> <u>Table of Contents </u> (of this manual)]]
==== remote Remote access ====
[[File:20160114 TB UI 55200.png|600px|link=]]
=== System ===
==== System-Updates und and -Reset ====
Under this menu item
*update-logs can be downloaded,
#Download TrutzBox<sup>®</sup> certificate from TrutzBox<sup>®</sup> according to the Wiki manual (6.1.1).
#Import and confirm TrutzBox<sup>®</sup> certificate from PC into browser according to Wiki manual (6.1.2).
#Download and confirm TrutzBox<sup>®</sup> certificate upon request by e-mail client.
<br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
==== Switch on/off ====
[[File:20160114 TB UI 56400.png|600px|link=]]<br>
Situations may occur in which shutting down and then restarting the TrutzBox<sup>®</sup> makes sense.
Click on "Datei speichern" (1).
<br><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:05-07-06-VPN-Client-Win10-050.png|600x600px|link=]]
<br>
Click on the (blue) download arrow and then on the file you just downloaded (1).
<br><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:05-07-06-VPN-Client-Win10-060.png|400x400px|link=]]
<br>
Click on "Next" (1).
<br><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:05-07-06-VPN-Client-Win10-070.png|400x400px|link=]]
<br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>Structure and use of certificate management systems[[File:05-07-06-VPN-Client-Win10-150.png|600x600px|link=]]<br/><<br/>First, Copy the VPN configuration file received from your TrutzBox certificate via TrutzMail ('''trutzbox.cer'''1) is downloaded from the TrutzBox to the PC intended for use. Unless set otherwise by the user, the download takes place in the "Download" directory of the PC. <br/>In principle there are ''2 certificate management systems'''' on one PC, one in the '''operating system''', here Windows 10 for example, and - if Firefox is used - a second one of '''Firefox'''. <br/><br/><br/><!-- ***************************************************************************************** -[[#top|-><!-- ******************************* 1. Bildchen Zertifikate ******************************* --u>Table of Contents <!-- ***************************************************************************************** --/u><table border width="700"><tr><td>'''A Import certificate (trutzbox.cerof this manual) into certificate management system ''']]<br></td></tr></table><br/>[[File:Zertifikatsverwaltung1105-07-06-VPN-Client-Win10-160.png|700px600x600px|link=]]<br/><table width="700"><tr><td width="180"> In the Firefox certificate management system, the TrutzBox certificate is imported via the Firefox browser.</td><td width="50"></td><td width="470"> In the operating system certificate management system, the TrutzBox certificate ''one-time''' is imported directly from .. into the operating system or via any other browser, except the Firefox browseropened configuration file folder.</td></trbr></table><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/><!-- ***************************************************************************************** --><!-- ******************************* 2. Bildchen Zertifikate ******************************* [[File:05-07-><!06-VPN- ***************************************************************************************** Client-Win10-><table border width="700"><tr><td>'''B. Use of the certificate (from all browsers)'''<br></td></tr></table><br/>[[File:Zertifikatsverwaltung21170.png|700px400x400px|link=]]<br/><table width="700"><tr><td width="180"> When using the Firefox browser, it accesses Then click on the TrutzBox certificate in its own certificate interface management during operation.</td><td width="50OpenVPN GUI"></td><td width="470"> All other browsers access the TrutzBox certificate in the operating system certificate management system during operation(1).</td></tr></table><br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/><![[File:05-07- ***************************************************************************************** 06-VPN-><!Client-Win10- ******************************* 3. Bildchen Zertifikate ******************************* --><!-- ***************************************************************************************** --><table border width="700"><tr><td>'''C. Opening or deleting the TrutzBox certificate '''<br></td></tr></table><br/>[[File:Zertifikatsverwaltung31180.png|700px400x400px|link=]]<br/><br/><table width="700"><tr><td width="180"> Accessing or deleting This will display the TrutzBox certificate OpenVPN GUI icon in Firefox certificate management systems is done via Firefox browserthe lower right corner.</tdbr><td width="50"></td><td width="470">The TrutzBox certificate can be opened or deleted in the operating system certificate management systems ''once only''' via the operating system or any other browser, except the Firefox browserDouble-click on it (1) ...</td></trbr></table><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>==== Download certificate from TrutzBox<sup>®</sup> to PC ====[[File:20150730 Zertifikate 01005-07-06-VPN-Client-Win10-190.png|500px600x600px|link=]]<br/>Open ... establishes the VPN connection to your TrutzBox user interface in your browser with "trutzbox". Enter <br>Once the administrator password (1connection has been successfully established, the message "CONNECTED.) SUCCESS" and click on "Login " (2.)..<br><br>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/>[[File:20150730 Zertifikate 02105-07-06-VPN-Client-Win10-200.png|400px400x400px|link=]]<br/><br/>Click on "TrutzBox Filter" ... the successful connection establishment is briefly displayed (1).) -<br> "Configure filter" (2The previously colorless OpenVPN GUI icon changes to blue.) and right-click on the button "Download root certificate" (3.).<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:20150730 Zertifikate 03105-07-06-VPN-Client-Win10-210.png|400px400x400px|link=]]<br/><br/>Start the download of the certificate by clicking on "Save target as".<br/><br/>[[File:20150730 Zertifikate 041.png|700px|link=]]<br/><br/>The certificate . and is saved displayed in the download area of the PC blue during an existing VPN connection (1.). <br/><br/>[[File:20150730 Zertifikate 051.png|700px|link=]]<br/> Log out by clicking on "Logout“ (1.)<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>'''In step 1, the certificate was saved to the device[[File:05-07-06-VPN-Client-Win10-220.'''png|400x400px|link=]]<br/><br/> ==== TrutzBox<sup>®</sup> Certificate activate in ... ==== In step 2, Status information is displayed when the certificate symbol is imported from passed over with the PC into the respective browsermouse.<br/><<br/>Import the TrutzBox<sup>®</sup> root certificate into any browser on any PC. With every browser call the TrutzBox<sup>®</sup> generates a new certificate, which is then accepted by the browser.<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/> ===== {{anchor|Zertifikat Importieren Mozilla Firefox}} Mozilla Firefox (Microsoft Windows + Apple OS X; Zertifikat in Firefox) ===== [[File:20150730 Zertifikate 110.png|300px|link=]]<br/>Open '''Disconnecting the browser (in the example Mozilla Firefox) and click on "Extras" (1link ..).'''<br/><br/>[[File:20150730 Zertifikate 12005-07-06-VPN-Client-Win10-230.png|600px400x400px|link=]]<br/>Click on „Erweitert“ (2.) -> Zertifikate“ (3.) und „Zertifikate anzeigen“ (4.).<br/><br/>[[File:20150730 Zertifikate 130.png|500px|link=]]<br/>Click by double-clicking on „Zertifizierungsstellen“ the OpnVPN GUI icon (51) .) and on „Importieren …“ (6.).<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:20150730 Zertifikate 14005-07-06-VPN-Client-Win10-240.png|500px600x600px|link=]]<br/>Now go to the directory where the certificate was downloaded. In the standard case this is the "Download" directory.Click on the certificate (7.) and confirm with "Open“ (8.).<br/><br/>[[File:20150730 Zertifikate 150.png|500px|link=]]<br/>Mark the two upper boxes (9. + 10.) by clicking and confirm „OK“ (11.).<br/>This loads the root certificate into the browser and all certificates generated temporarily by the TrutzBox<sup>®</sup> are automatically recognized by the browser (without constant single query).<br/>This Click on "download-certificate-to-browserTrennen" must be done once for each browser (Mozilla Firefox, Google Chrome, Internet Explorer, Safari, Opera) on each connected device (e.g. laptops, PCs1).<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
<br/><br/>
<br/>
<br/>
<br/>
<nowiki>*</nowiki> Non-FireFox browsers include Internet Explorer, Google Chrome, Safari<br/><br/>[[File:Zertifikat aktivieren 030 in Windowsverwaltung 080.png|400px#top|link=-> <u>Table of Contents </u> (of this manual)]]<br/><br/>Structure and use of certificate management systems<br/><<br/>First, the TrutzBox certificate ('''trutzbox.cer''') is downloaded from the TrutzBox to the PC intended for use. Unless set otherwise by the user, the download takes place in the "Download" directory of the PC.
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
<br/><br/>
<br/><br/>
<br/>
<br/>
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/> ===== iOS SmartphoneDownload certificate from TrutzBox<sup>®</Tablet: Browser Safari with Apple iOS sup> to PC ====[[File:20150730 Zertifikate 010.png|500px|link=]]<br/>Open the TrutzBox user interface in your browser with "trutzbox". Enter the administrator password (1.) and click on "Login " (2.).
<br/><br/>
<br/><br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 030.png#top|300px|link=]]-> <u>Table of Contents <br/u>... click on "Öffnen".(of this manual)]]
<br/><br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 04020150730 Zertifikate 031.png|300px400px|link=]]<br/>Click on "Fortfahren".<br/><br/>[[#top|-> <u>Table of Contents </u> (Start the download of this manual)]]<br/>[[File:Zertifikat aktivieren 050 iPhone iPad 051.png|300px|link=]]<br/>Click the certificate by clicking on "VertrauenSave target as".
<br/><br/>
<br/><br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 08020150730 Zertifikate 051.png|300px700px|link=]]<br/>and click on "Anmelden".<br/><br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/>'''In step 1, the certificate was saved to the device.'''<br/><br/> ==== TrutzBox<sup>®</sup> Certificate activate in ... ==== In step 2, the certificate is imported from the PC into the respective browser.<br/><<br/>Import the TrutzBox<sup>®</sup> root certificate into any browser on any PC. With every browser call the TrutzBox<sup>®</sup> generates a new certificate, which is then accepted by the browser.<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/> ===== {{anchor|Zertifikat Importieren Mozilla Firefox}} Mozilla Firefox (Microsoft Windows + Apple OS X; Zertifikat in Firefox) ===== [[File:20150730 Zertifikate 110.png|300px|link=]]<br/>Open the browser (in the example Mozilla Firefox) and click on "Extras" (1.).<br/><br/>[[File:20150730 Zertifikate 120.png|600px|link=]]<br/>Click on „Erweitert“ (2.) -> Zertifikate“ (3.) und „Zertifikate anzeigen“ (4.).<br/><br/>[[File:20150730 Zertifikate 130.png|500px|link=]]<br/>Click on the menu selection „Zertifizierungsstellen“ (5.) and on „Importieren …“ (6.).
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:Zertifikat aktivieren 050 iPhone iPad 12020150730 Zertifikate 140.png|300px500px|link=]]<br/>Now go to the directory where the certificate was downloaded. In the standard case this is the "Download" directory.Click on the certificate (7.) and confirm with "Open“ (8.).<br/><br/>[[File:20150730 Zertifikate 150.png|500px|link=]]<br/>Mark the two upper boxes (9. + 10.) by clicking and confirm „OK“ (11.).
<br/>
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
===== {{anchor|Zertifikat Importieren Microsoft Windows}} Internet Explorer / Google Chrome (Microsoft Windows) ===== The certificate does not have to be imported into the browsers "Internet Explorer" and "Google Chrome":<br/>by importing the TrutzBox<sup>®</sup> certificate from the download directory to the Windows certificate management, the TrutzBox<sup>®</sup> certificate is automatically available to Internet Explorer and Google Chrome browsers.<br/> This chapter describes how to import the root certificate already downloaded from TrutzBox<sup>®</sup> into the Windows certificate management.<br/><br/>[[File:Zertifikat aktivieren 050 iPhone iPad 160030 in Windowsverwaltung 010.png|300px700px|link=]]<br/>Click * Find out in which directory (usually "Downloads") the TrutzBox<sup>®</sup> certificate "trutzbox.cer" has been downloaded (1).* Make a double click on the file "Installierentrutzbox.cer"(2).<br/>[[File:Zertifikat aktivieren 030 in Windowsverwaltung 020.png|300px|link=]]<br/>Click on "Öffnen" der Datei.
<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 170030 in Windowsverwaltung 030.png|300px|link=]]
<br/>
Click on "FertigZertifikat installieren".
<br/><br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 180030 in Windowsverwaltung 040.png|300px400px|link=]]
<br/>
<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>
<br/><br/>
[[File:6 1 2 4 Zertifikat importieren 200aktivieren 030 in Windowsverwaltung 060.PNGpng|300px400px|link=]]<br/> If necessary, switch Click on the "TrutzBox Root CADurchsuchen ..." via:<br/>"Einstellungen" -> "Allgemein" -> "Info" -> "Zertifikatsvertrauenseinstellungen"<br/>.
<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
<br/><br/>
[[File:060 Zertifikat importieren 030aktivieren 040 Macintosh 020a.png|600px500px|link=]]
<br/>
<br/>
<br/><br/>
[[File:060 Zertifikat importieren aktivieren 040Macintosh 040a.png|400px|link=]]
<br/>
<br/>
<br/>
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br>
===== iOS Smartphone/Tablet: Browser Safari with Apple iOS =====
Download certificate using the iPhone as an example.
<br/><br/>
Open the Smartphone Browser (Safari) and enter in the input field: <nowiki>http://trutzbox</nowiki>.<br/><br/>[[File:060 Zertifikat importieren 060aktivieren 050 iPhone iPad 030.png|700px300px|link=]]
<br/>
<br/><br/>
[[File:060 Zertifikat importieren 070aktivieren 050 iPhone iPad 040.png|600px300px|link=]]
<br/>
Click on "JaFortfahren".<br/><br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>[[File:Zertifikat aktivieren 050 iPhone iPad 051.png|300px|link=]]
<br/>
Click on "Vertrauen".
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br>
[[File:Zertifikat aktivieren 050 iPhone iPad 070.png|300px|link=]]
<br/>
Enter TrutzBox Administrator password ...
<br/><br/>
[[File:060 Zertifikat importieren aktivieren 050 iPhone iPad 080.png|400px300px|link=]]<br/>and click on "Anmelden".<br/><br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/> [[File:Zertifikat aktivieren 050 iPhone iPad 090.png|300px|link=]]<br/>Click on the menu selection ...<br/><br/>[[File:Zertifikat aktivieren 050 iPhone iPad 100.png|300px|link=]]
<br/>
<br/>
Click on "Filter-Konfigurieren".
<br/><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 120.png|300px|link=]]
<br/>
Click on "Download Root Certificate".<br/>
<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 130.png|300px|link=]]
<br/>
Click on "Installieren".
<br/><br/>
<br/><br/>
[[File:20150730 Zertifikate 220Zertifikat aktivieren 050 iPhone iPad 160.png|400px300px|link=]]<br/>Click on "Zertifikat installieren Installieren"..." <br/><br/>[[#top|-> <u>Table of Contents </u> (1.of this manual) und bestätigen Sie (2]]<br/>[[File:Zertifikat aktivieren 050 iPhone iPad 170.)png|300px|link=]]<br/>Click on "Fertig".
<br/><br/>
[[File:Zertifikat aktivieren 050 iPhone iPad 180.png|300px|link=]]<br/>If necessary, click "User Logout" to log out.<br/><br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/><br/><br/>'''If the certificate is not accepted, please check whether the "TrutzBox Root CA" is switched on.'''
<br/><br/>
[[File:20150730 Zertifikate 2306 1 2 4 Zertifikat importieren 200.pngPNG|500px300px|link=]]<br/>Click If necessary, switch on the "TrutzBox Root CA" via:<br/>"Einstellungen" -> "Allgemein" -> "Info" -> "WeiterZertifikatsvertrauenseinstellungen"<br/><br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/> ===== Android Smartphone/Tablet: Standard Browser unter Google Android ===== Load certificate in Android browser; depending on the Android device the screens may differ slightly.
<br/><br/>
<br/><br/>
<br/><br/>
[[File:20150730 Zertifikate 250Zertifikat aktivieren 080 Smartphone Android 090.png|500px300px|link=]]<br/>Click on "Fertig stellen".<br/><br/>[[File:20150730 Zertifikate 260.png|500px|link=]]<br/>To answer the question, click on "Ja".<br/><br/> [[File:20150730 Zertifikate 270scroll down and ..png|300px|link=]]<br/>Click on "OK" to end the successful import.
<br/><br/>
[[File:Zertifikat aktivieren 080 Smartphone Android 100.png|300px|link=]]
<br/>
... select „von Speicher installieren“.
<br/><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br/>
[[File:Zertifikat aktivieren 080 Smartphone Android 121.png|300px|link=]]
<br/>
Assign the name "TrutzBox" for the certificate, and finally select "OK”.
<br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
==== Creating profiles in FireFox = {{anchor|Zertifikat Importieren Microsoft Windows10}} Microsoft Windows 10 Zertifikatsverwaltung =====If you want to surf protected from In the same PC (e.g. a laptop) both at home (via your own TrutzBox) and on user interface in the move (via another TrutzBox), you need navigation menu go to have imported the certificate valid for the respective : TrutzBox in your browser.Filter -> Filter-Konfigurieren<br/>In this case FireFox offers the possibility to create and use different profiles, which can also use different certificates for each profileThere click on "Root Zertifikat herunterladen".<br/><br/>The following shows how to create another profile in addition to the standard profile[[File:060 Zertifikat importieren 010.png|700px|link=]]<br/>Click on "Öffnen".
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/>[[File:20160525 FireFox Profil einrichten V01060 Zertifikat importieren 020.png|900px400px|link=]]<br/>
<br/>
<br/>
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/>
<br/>
<br/><br/>
[[File:Proxy einrichten 010 Firefox auf PC 010060 Zertifikat importieren 070.png|500px600px|link=]]
<br/>
Click on "ExtrasJa" and "Einstellungen".<br/><br/>[[File:Proxy einrichten 010 Firefox auf PC 020.png|700px|link=]]
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:Proxy einrichten 010 Firefox auf PC 030060 Zertifikat importieren 080.png|700px400px|link=]]
<br/>
Click on "NetzwerkOK" and "Einstellungen".<br/><br/>[[File:Proxy einrichten 010 Firefox auf PC 040.png|700px|link=]]
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:Proxy einrichten 020 Chrome auf PC 06120150730 Zertifikate 230.png|700px500px|link=]]<br/>Check Click on "Skript für automatische Konfiguration verwenden" and enter the address Weiter".<br/><nowikibr/>http[[File://trutzbox/api/proxy/pac20150730 Zertifikate 240.png|500px|link=]]<br/nowiki>Belassen Sie die Markierung auf "Zertifikatspeicher automatisch auswählen"(1. ) und Click on "OKWeiter" to confirm(2.).<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:Proxy einrichten 020 Chrome auf PC 08020150730 Zertifikate 250.png|700px500px|link=]]<br/>Click on "Fertig stellen".<br/><br/>[[File:20150730 Zertifikate 260.png|500px|link=]]<br/>Open a new tab for testingTo answer the question, click on "Ja".<br/><br/> [[File:20150730 Zertifikate 270.png|300px|link=]]<br/>Click on "OK" to end the successful import.<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
<br/>
[[File:20160525 FireFox Profil einrichten V01.png|900px|link===== (]]<br/><br/># Click on Windows PC: Browser Internet Explorer Start-Button# Right click on FifreFox Logo# Click on Microsoft "Eigenschaften"# Click into the line "Ziel"Press #<ctrl> a to highlight the entire destination addressPress #<ctrl> c to copy the destination address#Re-click Windows 7Start button# Click on "Eingabeaufforderung"# Right click in the middle of the prompt window# Click on "Einfügen"# Position the cursor to the right of the quotation mark and enter <space> and "-p# Press return key# Click on "Create Profile"# Click on "Next >"# Enter new profile name# Click on "Finish"# The first time FireFox is started, the profile to be used is selected. (Each profile can use a different certificate.) =====<br/>Here you can download the manual: https://comidio.de/wiki/images/9/97/20160525_FireFox_Profil_einrichten_V01.png<br/><br/>
=== Connect device with TrutzBox<sup>®</sup> ===
There are basically two ways to connect devices to the TrutzBox<sup>®</sup>:#PC 1 is connected to the Internet router via WLAN or network cable (dashed yellow).# PC 2 is connected to the TrutzBox<sup>®</sup> via WLAN or network cable (green dashed). <table border=1 width="700"><tr><td width="80">''' case 1:'''</td><td width="620">In order for Internet traffic (surfing) via the TrutzBox<sup>®</sup>, the TrutzBox<sup>®</sup> must be entered as proxy (= deputy, quasi "doorman") in the respective browser of the PC.The entry must be made separately for each browser.<br> This mode is called '''"Proxy mode"'''.</td></tr><tr><td>''' case 2:'''</td><td> All Internet traffic (surfing) automatically passes through the TrutzBox<sup>®</sup>.This mode is called <br>'''"Transparent mode'''".</td></tr></table><br> In both cases, TrutzBox<sup>®</sup> controls both incoming and outgoing Internet communication. '''The aim is to connect as many or all devices as possible in the home network directly via the TrutzBox<sup>®</sup> (i.e. in "transparent mode").'''<br>It is advisable to reach this state step by step.<br>Therefore you should start "small" at the beginning and gain experience in "proxy mode". You can also surf in a browser (e.g. Firefox) in proxy mode while surfing in a second browser (e.g. Chrome) without protection.For example, you can track the influence the security slider has on unprotected access in various positions (e.g. effects on advertising offers shown). Once you have gained sufficient experience in proxy mode, you can gradually connect devices in transparent mode by connecting the devices directly to the TrutzBox® via WLAN (or network cable).<br><br> '''To change from transparent mode to proxy mode or vice versa, proceed as follows: '''*Shut down PC or device*If previously connected to TrutzBox, now connect to the Internet router or vice versa*Switch on/restart the device (now the device automatically receives an IP address valid in this network area)<br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/>
The following sections describe how to configure the proxy configuration URL in your browser. Once entered, the browser "remembers" it and the browser then accesses the Internet in a controlled manner through the TrutzBox. You can later simply switch on and off the TrutzBox by clicking on"No proxy" andAutomatic proxy configuration URL" or "Use script for automatic configuration"<.br> <br/> ===== Windows PC: Browser Mozilla Firefox on Microsoft Windows 7 =====<br/>Open the browser.<br/><br/>[[File:Proxy einrichten 010 Firefox auf PC 010.png|500px|link=]]<br/>Click on "Extras" and "Einstellungen".
<br/><br/>
[[File:Proxy einrichten 100 iOS Smartphone Tablet 010 Firefox auf PC 020.png|300px700px|link=]]
<br/>
Click on "WLANErweitert".
<br/><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br/>
[[File:Proxy einrichten 100 iOS Smartphone Tablet 010 Firefox auf PC 030.png|300px700px|link=]]
<br/>
Click on "iNetzwerk" and "Einstellungen" of the WLAN connection of the active Internet router.
<br/><br/>
[[File:Proxy einrichten 100 iOS Smartphone Tablet 010 Firefox auf PC 040.png|300px700px|link=]]
<br/>
<br/><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br/>===== Windows PC: Browser Google Chrome on Microsoft Windows 7 =====[[File:Proxy einrichten 100 iOS Smartphone Tablet 050020 Chrome auf PC 010.png|300px700px|link=]]
<br/>
<br/><br/>
[[File:Proxy einrichten 100 iOS Smartphone Tablet 060020 Chrome auf PC 020.png|300px700px|link=]]
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/> ===== Android Smartphone/Tablet[[File: Standard Browser on Google Android Proxy einrichten 020 Chrome auf PC 030.png|700px|link===== Setting up a proxy under Android. The screens may vary slightly depending on the Android device.]]
<br/>
<br/><br/>
[[File:Proxy einrichten 080 Smartphone Android 010020 Chrome auf PC 040.png|300px700px|link=]]<br/>Scroll down until "Network" appears.Click on "Proxy-Einstellungen ändern".<br/><br>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br><br/>[[File:Proxy einrichten 020 Chrome auf PC 050.png|700px|link=]]
<br/>
<br/><br/>
[[File:Proxy einrichten 080 Smartphone Android 020Chrome auf PC 061.png|300px700px|link=]]<br/>Check "Skript für automatische Konfiguration verwenden" and enter the address "<nowiki>http://trutzbox/api/proxy/pac</nowiki>". Click "OK" to confirm.<br/><br>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br><br/>[[File:Proxy einrichten 020 Chrome auf PC 070.png|700px|link=]]
<br/>
<br/><br/>
[[File:Proxy einrichten 020 Chrome auf PC 080 Smartphone Android 030.png|300px700px|link=]]
<br/>
<br/>
<br/><br/>
[[File:Proxy einrichten 080 Smartphone Android 050020 Chrome auf PC 100.png|300px700px|link=]]<br/><br/>On "PAC-URL" enter: <nowiki>http://trutzbox/api/proxy/pac</nowiki> Then click on "SPEICHERN".<br/><br/>===== Microsoft Windows 10 ===== Configure Automatisches Proxy-Script for Microsoft Windows 10 in Edge:<br/>In Edge, select "Einstellungen" and go all the way down.<br/><br/>[[File:080 Proxy einschalten 010.png|300px|link=]]<br/>Click on „Erweiterte Einstellungen anzeigen".
<br/>
The TrutzBurg appears in the upper right corner.
This shows that the TrutzBox is active.
<br/><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:080 Proxy einschalten 020.png|300px|link=]]<br/>Click on "Proxyeinstellungen öffnen".<br/>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br/><br/>[[File:080 Proxy einschalten 030.png|700px|link=]]<br/>Set the „Setupscript verwenden“ switch to „Ein“.<br/>In the field „Scriptadresse" enter <nowiki>"http://trutzbox/api/proxy/pac"</nowiki> and click on „Save“.<br/>
===== Apple Mac: Browser Safari on Apple iOS =====
[[File:Proxy einrichten 050 Safari auf Mac 010.png|700px|link=]]
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br/>
==== Firewall = Apple Mac: Browser Firefox on Apple iOS =====A Statefull-Inspection Firewall has been installed to provide additional protection for both the TrutzBox® and the internal network connected to it. This not only protects the TrutzBox® itself from unauthorised access to the network side, but also blocks external attackers. In addition, the firewall protects all connected network devices against uncontrolled network access via appropriate port shares. <br/><<br===== iOS Smartphone/>The firewall used is a Stateful Packet Inspection Firewall (SPI), i.e. each data packet is assigned to a specific active connection (session)Tablet: * All devices connected to the internal network are bridged so that they can communicate with each other without restriction. * All connected devices can establish connections to "extern" (LAN-Ext) Browser Safari on all ports. If a device on the internal network wants to access a device on the Internet router (external network), then a fully qualified host name must be used (e.g..fritz.box must be appended). All connections via port 80/443 are automatically routed via the TrutzBox® Proxy (filter), which then controls incoming and outgoing data. * An external connection to the TrutzBox® is only enabled for special ports* Establishing a connection from the external network to the internal network is not enabled and is therefore not permitted.Apple iOS =====
[[File:Proxy einrichten 100 iOS Smartphone Tablet 010.png|300px|link=]]
<br/>
<br/><br/>
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:05-07-06-VPN-Client-Win10-080Proxy einschalten 020.png|400x400px300px|link=]]<br/>Click on "NextProxyeinstellungen öffnen" (1).<br><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:05-07-06-VPN-Client-Win10-090080 Proxy einschalten 030.png|400x400px700px|link=]]<br/>Click on Set the „Setupscript verwenden“ switch to „Ein“.<br/>In the field „Scriptadresse"Installenter <nowiki>" (1)http://trutzbox/api/proxy/pac"</nowiki> and click on „Save“.<br/><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>[[File:05==== Connect the device directly via WLAN (or LAN) with TrutzBox<sup>®</sup> (Transparent-07-06-VPN-Client-Win10-100.png|400x400px|linkModus) ====]] Now connect your PC and, if necessary, other Internet-enabled devices via wired network (LAN) or wireless network (WLAN) with the TrutzBox<sup>®<br/sup>.The green bar shows the progress of the installation.<br><br/>[[#top|-> Switch WLAN connection from PC to Internet router to PC to TrutzBox<usup>Table of Contents ®</usup> (of this manual)]]: <br><br/>[[File:05-07-06-VPN-Client-Win10-11020150624 Bild TrutzBox WLAN Wechsel V02.png|400x400px700x700px|link=]]<br/><br />Click To do this, click the WLAN icon in the notification area on "Next" the right of the task bar (1.).When selecting wireless network connections, click (2.) on your TrutzBox<brsup>®<br/sup>SSID (WLAN name assigned under 4.6 when setting up). Then click on "Connect" (3.) and enter the WLAN password in the window that appears (4.). By clicking on "OK" (5.) the confirmation (6.) appears. [[#topFile:Umschalten auf WLAN2.png|700px|-> link=]] From now on you use TrutzBrowse, TrutzContent and TrutzBase. === TrutzBox<usup>Table of Contents ®</usup> -network === To ensure maximum security for the devices connected to the TrutzBox®, the TrutzBox® sets up its own network separate from the Internet router. A DHCP server gives the connected devices a new IP address from the range 192.168.195.50 to 192.168.195.199. A separate DNS server (dnsmask) forwards the name resolution for the connected devices to the DNS server of this manualthe Internet router. The TrutzBox® takes over the routing between the TrutzBox® internal network (WLAN, LAN-Int1 and LAN-Int2) and the TrutzBox® external network (Lan connection "LAN-Ext")]]. The TrutzBox® itself has the IP address 192.168.195.200 in the internal network. The IP address of the TrutzBox® is obtained from the Internet router when it is started. <br/><br/>[[File:05-07-06-VPN-Client-Win10-12063 Netzwerk 010.png|400x400px700px|link=]]<br/><br/>Click on "Finish" A permanently assigned (1static)IP address from the range 192.168.195.50 to 192.168.195.199. can also be assigned to a connected device. Subnet mask is then 255.255.255.0, the router and DNS server IP address is 192.168.195.200.<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
==== Firewall ====A Statefull-Inspection Firewall has been installed to provide additional protection for both the TrutzBox® and the internal network connected to it. This not only protects the TrutzBox® itself from unauthorised access to the network side, but also blocks external attackers. In addition, the firewall protects all connected network devices against uncontrolled network access via appropriate port shares. <br/><<br/>The firewall used is a Stateful Packet Inspection Firewall (SPI), i.e. each data packet is assigned to a specific active connection (session): * All devices connected to the internal network are bridged so that they can communicate with each other without restriction. * All connected devices can establish connections to "extern" (LAN-Ext) on all ports. If a device on the internal network wants to access a device on the Internet router (external network), then a fully qualified host name must be used (e.g..fritz.box must be appended). All connections via port 80/443 are automatically routed via the TrutzBox® Proxy (filter), which then controls incoming and outgoing data. * An external connection to the TrutzBox® is only enabled for special ports* Establishing a connection from the external network to the internal network is not enabled and is therefore not permitted. <br/>[[File:05-07-06-VPN-Client-Win10-13063 Netzwerk 020.png|600x600px700px|link=]]<br/><br/>The TrutzBox® Administrator can open additional ports as required.<br/><<br/>The opened firewall is based on the open source firewall "Readme fileiptables" explains that . In addition, the configuration file must be loaded into the folder "C:\Program Files\OpenVPN\conigShorewall Firewall package is provided as an add-on to provide experts with additional functions such as simplified user guidance or zone setup.<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br>
[[File:20170130 Wenn TrutzBox Symbol nicht gezeigt wird Diagramm V02... by double-clicking on the OpnVPN GUI icon (1) ...png|700px|link=]]<brBR/><brBR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/> <table border="1" width="690"><tr><td width="230">1. Check if TrutzBrowse works correctly </td><td width="230"> Opening in TrutzBox User Interface: TrutzBox Filter -> Status<BR/>If the call '''xyz.de''' is displayed for the device used?</td><td width="230"> No, so call did not go via TrutzBrowse; continue with 2.<BR/>Yes, with level 1-9; continue with 4.<BR/>Yes, with level 10; continue with 5.<BR/></td></tr><tr><td>2. Does the current device access in "Transparentmodus" or in "Proxymodus"?</td><td>Determination of operating mode<BR/>*„transparent mode“:<BR/>Device is directly connected to TrutzBox via (W)LAN <BR/>*„proxy mode“:<BR/>The device is connected to the Internet Router and the TrutzBox is entered in the browser as a proxy (= quasi detour).</td>In transparent mode the TrutzBox is switched on quasi automatically and should work, then with 6.<BR/>If the device is or should be connected to the Internet Router (proxy mode), continue with 3.</td></tr><tr><td>3. is TrutzBox activated as a proxy in the browser?</td>dd>Proxy Activation Detection*Is the TrutzBox "pac file" entered and activated in the browser?(see manual 6.2.1)*Is the corresponding software switch set up and switched on?</td><td>If TrutzBox is activated as a proxy in the browser, continue with 6.<BR/>If TrutzBox is not activated as a proxy in the browser, this is recommended (see manual 6.2.1), and then page '''xyz.de''' should be called again.</td></tr><tr><td>4. Displayed in "Status" with level 1-9<BR/><BR/>Intention:<BR/>Show tracker</td><td>In Status:<BR/>Click on link call ('''xyz.de''') right of security level<BR/><BR/>(Same effect as usual click on the TrutzBox icon and after displaying the security slider: click on "Details".)</td><td>In a few exceptions the display of the TrutzBox symbol with sign and number of trackers cannot be shown on the respective website.<BR/>Nevertheless, protection exists and the results (calls and tracker display and blocking) are correct.<BR/><BR/>When calling from another website the expected display of the TrutzBox symbol should appear again in the upper right corner.</td></tr><tr><td>5. Displayed in "Status" with level 10<BR/><BR/>Intention a:<BR/>none<BR/><<BR/>Intention b:Set level to level 1-9</td><td>Case b: in Status:<BR/>Click on blue icon left of security level of ''xyz.de'''<BR/>Click on "Change slider settings"<BR/>Set the desired level in "Slider Position" using the pull-down menu (right).</td>In SecuritySlider level 10 the TrutzBox is bypassed and therefore the TrutzBox symbol is not displayed.<BR/>This may be necessary for certain applications (e.g. smartphone apps), so that the app works as desired (but unprotected).<BR/>Level 10 can be set:<BR/>*by user: Call the SecuritySlider of the corresponding page and click on the green button "TrutzBrowse".*by administrator: set the level to 10 in "Status" or in "Slider Einstellungen”*automatic: if under "TrutzBox Filter" -> "Geräte" the check mark " Falls SSL-Fehler auftreten, Filtering für angesteuerte Domain automatisch ausschalten " is set<BR/>If level 10 is no longer set, but 1-9, the TrutzBurg should reappear when ''xyz.de''' is called up.</td></tr><tr><td>6. xyz.de''' is not displayed in "Status"<BR/><BR/>Restarting the TrutzBox</td><td>restart via:"System" ->"Ein-/Ausschalten"<BR/>*Click on "Neu starten".Only if user interface is not accessible:<BR/>*Cold start by disconnecting the power supply unit*Wait 10 seconds and*Reconnecting the power supply unit</td><td> The "proxy part" of the TrutzBox does not seem to work or does not work properly.<BR/>First restart or, in an emergency, perform a cold start.<BR/><BR/>Continue with 7.</td></tr><tr><td>7. xyz.de''' is not displayed in "Status"<BR/>Comidio asks you to send us the files "logs.zip".</td><td>"System" ->"Debug":<BR/>Click on "Alle Logdateien herunterladen".Save the file "logs.zip" (if necessary, the individual files).Mail the file "logs.zip" (if necessary the individual files) to support@comidio.de</td><td>Comidio is interested in analyzing the error using the log files and therefore asks for the log files to be sent.<BR/> Continue with 8.</td></tr><tr><td>8. xyz.de''' is not displayed in "Status"<BR/><BR/>Restart possible or contact Comidio Support</td><td>Restart via:<BR/>"System" -> "Ein-/Ausschalten"Click on "Neu starten".</td>If neither a new start nor a cold start is successful, please send an e-mail to support@comidio.de.<BR/>Joint work reset may be necessary.</td></tr></table>[[#top|-> <u>Table of Contents </u> (of this manual)]]<br> === ... the e-mail gets stuck in the TrutzMail outbox? === Go to TrutzMail -> Status (https://trutzbox/#mail/status). Check whether TrutzMail, SMTP, IMAP each have a green check mark = are OK. If not, restart and press the round arrows to the right. Attention: this restart may take some time. The mail can therefore remain in the mail queue for some time. If it has not been delivered after some time, make sure that the TrutzBox<sup>®</sup> of the receiver is active, port 5888 (on the DSL router e.g. FRITZ!Box) is not open or the receiver has received a new certificate due to a factory reset, replacement of the TrutzBox<sup>®</sup>, etc. In this case go to TrutzBox<sup>®</sup> Overview -> TrutzMail -> Status and click on "Mail-Schlüssel erneuern" in the upper right corner. === ... the user interface (UI) is no longer accessible? === Make sure that the TrutzBox® is listed under Devices and Users on the DSL router (e.g. FRITZ!Box) in the home network. Otherwise you can also reboot your Internet-enabled device (e.g. PC), the DSL router (e.g. FRITZ!Box) and the TrutzBox<sup>®</sup>. If the TrutzBox<sup>®</sup> cannot be reached via the IP address, try the "traditional" method = remove the plug, wait a few minutes, reconnect the plug and restart the TrutzBox<sup>®</sup>.<br>It may take 5 - 10 minutes for it to start up. [[#top|-><u>Table of Contents </u> (of this manual)]] === ... the right and middle LEDs are off and the left LED is constantly on? === Probably you cannot access Webmin https://trutzbox:10000 any more; then try the "traditional" method = remove the plug, wait a few minutes, plug in the plug again and restart the TrutzBox<sup>®</sup>.<br>It may take 5 - 10 minutes for it to start up.<br>Should the startup not bring the desired success, please contact us by e-mail at support@comidio.de.<br>[[File#top|-> <u>Table of Contents </u> (of this manual)]] === ... Your TrutzBox is not connected to the router or your terminal device (e.g. PC) cannot reach the TrutzBox? === The TrutzBox works exclusively with IPv4 addresses.If your TrutzBox is not connected to the router or your terminal device (e.g. PC) cannot reach the TrutzBox, one reason for this may be that the router assigns IPv6 addresses. To avoid this, it should be ensured that the router assigns IPv4 addresses.To disable IPv6 addresses, go to:https://comidio.de/wiki/index.php?title=TrutzBox_Handbuch#IPv6_deaktivieren [[#top|-> <u>Table of Contents </u> (of this manual)]] === ... Your router has had an "Internet failure" and your TrutzBox is no longer accessible after service has started (e.g. only the left LED is permanently light)? ===Exceptionally, please try the "brutal" method = remove the plug, wait a few minutes, reconnect the plug and reboot the TrutzBox<sup>®</sup>.<br>It may take 5 - 10 minutes for it to start up.<br>Should the startup not bring the desired success, please contact us by e-mail at support@comidio.de.<br> [[#top|-> <u>Table of Contents </u> (of this manual)]] === ... I want to check that my software packages are up-to-date? ==='''Caution: All version numbers shown in this chapter were valid at the time the screenshots were taken. If you check versions yourself, you will probably find other, then current version information. The newer version numbers are always larger than the older ones, e.g. 0.0.62 is newer than 0.0.61 and 0.2.119-1 is newer than 0.1.134. ''' # Quick test: Check_the_current_status_of_software_updates using Webmin [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Schnelltest:_Aktuellen_Stand_der_Software-Updates_mittels_Webmin_pr.C3.BCfen -> Details]#Do I have the latest software packages? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Habe_ich_die_aktuellen_Software-Pakete.3F -> Details]##What are the current software package versions on the Comidio server? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Welches_sind_die_aktuellen_Software-Paket-Versionen_auf_dem_Comidio-Server.3F -> Details]##Which software package versions do I have on my TrutzBox? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Welche_Software-Paket-Versionen_habe_ich_auf_meiner_TrutzBox.3F -> Details]##Do I have the current packages on my TrutzBox? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Habe_ich_die_aktuellen_Pakete_auf_meiner_TrutzBox.3F -> Details]#When were the latest software packages downloaded to my TrutzBox? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Wann_wurden_die_letzten_Software-Pakete_auf_meine_TrutzBox_heruntergeladen.3F -> Details]#When was the last time my TrutzBox checked for software updates? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Wann_hat_meine_TrutzBox_das_letzte_Mal_nach_Software-Updates_geschaut.3F -> Details]#When the last filter lists were downloaded to my TrutzBox? [https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Wann_wurden_die_letzten_Filterlisten_auf_meine_TrutzBox_heruntergeladen.3F -> Details] <br> [[#top|-> <u>Table of Contents </u> (of this manual)]] ==== Quick-check: Check current status of software updates via Webmin ====<!-- --><!-- ************************************************************************************** --><!-- 1. Quick-check:05Check current status of software updates via Webmin -07-06><!-VPN-Client************************************************************************************** -Win10-240><!-- -->We use Webmin functions to quickly check the current status of the imported software packages.<br /><br />[[File:09_10_100.png|600x600px700px|link=]]<br/>*Enter "https://trutzbox:10000" (without quotes) (1).<br />*The Webmin display "Alle installierten Pakete sind aktuell" is already a first indication that all software updates have been imported.. and Click A click on "Trennen" it (12)allows a forced new check of the up-to-dateness.<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
[[File:09_10_110.png|700px|link=]]
<br />
*Click on "Aktualisiere verfügbare Pakete" (1).
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
[[File:09_10_120.png|700px|link=]]
<br />
*If " 0 mögliche Updates gefunden" (1) is displayed, your TrutzBox is up to date.<br />
*If your TrutzBox is online overnight, all necessary updates should be installed automatically (around 5:00 am).
*If your TrutzBox was offline, any update installations can be initiated manually, or you can leave your TrutzBox online overnight. The manual installation of package updates is described in "5.6.5.8 Webmin: TrutzBox Updates manuell anstoßen".
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
==== Do I have the current software packages? =====
We will
*check on the Comidio server which versions of the software packages for the Trutzbox are released,
*determine on your TrutzBox the version status of the TrutzBox software packages currently installed on your TrutzBox, and
*by comparing the version of the Comidio Server (TARGET) with that of your TrutzBox (ACTUAL) to determine whether it is up-to-date.
===== What are the current software package versions on the Comidio server? =====
<!-- -->
<!-- ************************************************************************************** -->
<!-- 2a. What are the current software package versions on the Comidio server? -->
<!-- ************************************************************************************** -->
<!-- -->
We check the software packages and their version numbers that Comidio has published on its server for the Trutzbox.<br /><br />
[[File:09_10_210.png|700px|link=]]
<br />
*Call "http://comidio.email/repo/dists/TrutzBox/base/binary-i386/Packages" (without quotes) (1).<br />
*Call up full-text search in current page, e.g. by entering Ctrl + F (2) on the keyboard.<br />
*Enter "Package: trutz" (without quotation marks) (3). Note: Only if the entry begins with "Package:" does the search show the first meaningful entry.<br />
*Click on the down arrow (4).<br />
*Details of the next software package found (in the example: "trutzbox-base-routing") are displayed (5).<br />
*The version number (in the example: "0.0.62") is displayed after the keyword "Version" (6).<br />
*Click the down arrow (7) to move to the next package whose name begins with "trutz.<br />
'''Insight''' (with example data) ''':'''<br />
'''Package "trutzbox-base-routing" is currently available on the server in version "0.0.62
"'''
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
===== Which software package versions do I have on my TrutzBox? =====
<!-- -->
<!-- ************************************************************************************** -->
<!-- 2b. Which software package versions do I have on my TrutzBox? -->
<!-- ************************************************************************************** -->
<!-- -->
We use Webmin to check the software packages and their version numbers installed on my Trutzbox.<br /><br />
[[File:09_10_250.png|700px|link=]]
<br />
*Call "https://trutzbox:10000" (without quotes) (1).<br />
*Click on "System" (2).<br />
*Click on "Softwarepakete" (3).<br />
*Enter "trutz" (without quotation marks) in the search mask (4) to display all packages maintained by Comidio.<br />
*Click on "Suche nach Paketen" (5).
<br /><<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><<br />
[File:09_10_260.png|700px|link=]]
<br />
*The software packages on the Trutzbox in whose name "trutz" appears are listed (1).<br />
'''Knowledge''' (with example values)'''':'''<br />
The "trutzbox-base-routing" package is currently available on my TrutzBox in version "0.0.62"'''
<br /><br />
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
===== Do I have the current packages on my TrutzBox? =====
We compare the version numbers of the software packages on my Trutzbox with those on the Comidio server.<br /><<br />
'''Insight''' (with example data)'''':'''<br />
The "trutzbox-base-routing" package has the same version on the server and on my TrutzBox, so it is current.'''
<br /><br />
==== When were the latest software packages downloaded to my TrutzBox? ====
<!-- -->
<!-- ************************************************************************************** -->
<!-- 3. when were the last software packages downloaded to my TrutzBox? -->
<!-- ************************************************************************************** -->
<!-- -->
[[File:09_10_300.png|700px|link=]]
<br />
*Call "https://trutzbox:10000" (without quotes) (1).<br />
*Click on "System" (2).<br />
*Click on "Systemprotokolle" (3).<br />
*Enter "/var/log/unattended-upgrades/unattended-upgrades-dpkg.log" (without quotes) in filename field (4).<br />
*Click on "Ansehen" (5).
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
[[File:09_10_310.png|700px|link=]]
<br />
*Log ended" shows when the software packages were last updated on my TrutzBox (1).<br />
<br />
'''Insight''' (with example data)''':'''<br />
'''The last update of the software packages on my TrutzBox was on 19th October 2017 at 04h : 03min : 51sec.'''
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
==== When did my TrutzBox last check for software updates? ====
<!-- -->
<!-- ************************************************************************************** -->
<!-- 4. When did my TrutzBox last check for software updates? -->
<!-- ************************************************************************************** -->
<!-- -->
We check the logfiles of the Trutzbox to know the date of the last change.<br /><br />
[[File:09_10_400.png|700px|link=]]
<br />
*Call "https://trutzbox:10000" (without quotes) (1).<br />
*Click on "System" (2).<br />
*Click on "Systemprotokolle" (3).<br />
*Enter "/var/log/unattended-upgrades/unattended-upgrades.log" (without quotes) in filename field (4).<br />
*Click on "Ansehen" (5).
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
[[File:09_10_410.png|700px|link=]]
<br /><br />
'''Insight''' (with example data)''':'''<br />
'''The last check of my TrutzBox for software package updates was on 24.10.2017 at 06h : 33min : 46sec and showed that no updates were available. The date shown should not be too long ago to be sure that the software packages of my Trutzbox are up to date.'''
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
==== When were the last filter lists downloaded to my TrutzBox? ====
<!-- -->
<!-- ************************************************************************************** -->
<!-- 5. When were the last filter lists downloaded to my TrutzBox? -->
<!-- ************************************************************************************** -->
<!-- -->
We check the logfiles of the Trutzbox to obtain the date of the last change. <br /><br />
[[File:09_10_500.png|700px|link=]]
<br />
*Call "https://trutzbox:10000" (ohne Anführungszeichen) (1).<br />
*Click on "System" (2).<br />
* Click on "Systemprotokolle" (3).<br />
*Enter "/var/log/comidio/updshalla.log" (without quotes) in filename field (4).<br />
* Click on "Ansehen" (5).
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
[[File:09_10_510.png|700px|link=]]
<br /><br />
'''Insight''' (with example data)''':'''<br />
'''The last filter list update took place on 24.10.2017 at 05h : 00min : 26sec and was successful. The displayed date should not be too long ago to be sure that the filter lists of my Trutzbox are up to date.'''
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
=== ... if someone wants to sell his Trutzbox? ===
A TrutzLegitimation (consisting of TrutzKennung and TrutzSchlüssel) is person-oriented and not bound by concept to a specific TrutzBox.
For example, the TrutzMail addresses configured are also linked to the TrutzLegitimation.
Thus the seller should not pass on his TrutzLegitimation and the buyer should order a new TrutzLegitimation including TrutzServices from Comidio.
We recommend the following procedure to the seller
The seller ...
#initiates factory reset on Trutzbox,
#waits until Trutzbox is completely shut down (may take up to 60 minutes) and the LEDs are off, and
#disconnects Trutzbox from the power supply.
Now the Trutzbox is ready to be handed over to a buyer.
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
=== ... if someone has bought a used Trutzbox or an appropriate hardware and wants to use the TrutzServices? ===
A TrutzLegitimation (consisting of TrutzKennung and TrutzSchlüssel) is person-oriented and not bound by concept to a specific TrutzBox.
For example, the TrutzMail addresses configured are also linked to the TrutzLegitimation.
Thus the buyer should order a new TrutzLegitimierung including TrutzServices from Comidio ([https://trutzbox.de/produkt/trutzlegitimierung-trutzservices-fuer-fremdhardware-12-monate/ zu Shop]).
We recommend the following procedure to the buyer
The buyer ...
#orders a new TrutzLegitimierung including TrutzServices from Comidio ([https://trutzbox.de/produkt/trutzlegitimierung-trutzservices-fuer-fremdhardware-12-monate/ zu Shop]),
#connects Trutzbox to router,
#connects Trutzbox to power supply,
#runs through setup
#enters NEW Trutz legitimacy,
#can set up TrutzMail addresses (up to 5 in the basic contingent), and
#runs his trutzbox and is protected on the Internet.
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
=== ... if TrutzMails arrive on your own Trutzbox but are not displayed in the mail client (e.g. Outlook or Thunderbird) or webmailer? ===
When the IMAP icon appears red in the dashboard of the Trutzbox user interface, either
<!-- This is a comment -->
<!-- [[File:Fehleranalyse 010 Übersicht 010.png|700x700px|link=]] -->
<!-- This is a comment -->
*Click on "Details zeigen", or
*Click on "Status" under "TrutzMail.
There press the restart arrow belonging to IMAP: then the IMAP server is restarted and the TrutzMails are (again) received correctly.
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br /><br />
== Support in error analysis ==
<!-- ==================================================== -->
<!-- ====================== Chapter 10 ====================== -->
<!-- ==================================================== -->
For error analysis or optimisation of TrutzBox<sup>®</sup> settings it can be helpful if Comidio Support can get a "picture" of the current situation of TrutzBox<sup>®</sup> at the customer.<br>
For this purpose, Comidio may ask the customer to record information about states and settings and to transmit it to Comidio.
=== Mail Screenshot of TrutzBox<sup>®</sup> overview page ===
If Comidio asks you to email a screenshot of the overview page, please proceed as follows.
[[File:Fehleranalyse 010 Übersicht 010.png|700x700px|link=]]
<br>
*Open "trutzbox" and the "TrutzBox Overview" page is displayed automatically. Especially the utilization of the fixed memory is interesting (1),<br>
*Take a screenshot of the page "TrutzBox Overview",<br>
*Mail screenshot to support@comidio.de.<br>
<br><br>
=== Mail TrutzMail log files ===
If Comidio asks you to mail the TrutzMail log files ("TrutzMail log" and "Mail log"), please proceed as follows.
<br>
[[File:Fehleranalyse 060 TrutzMail Logs 011.png|700x700px|link=]]
<br>
*Call"trutzbox" and click on "TrutzMail" (1),<br>
*Click on "Logs" (2) and
*Click on "Herunterladen" (3).
<br>
[[File:Fehleranalyse 060 TrutzMail Logs 020.png|700x700px|link=]]
<br>
After downloading, a file icon and the name of the "trutzmail.log" file appear at the bottom left.<br>
Double-click on the file name to open an editor window with the log file.
<br><br>
[[File:Fehleranalyse 060 TrutzMail Logs 030.png|700x700px|link=]]
<br>
* Click on "Datei" (1),<br>
* Click on "Save as..." (2) and save the log file "trutzmail.log" on the PC.
*Proceed in the same way with the log file "Mail log".
*Finally, please mail log files "trutzmail.log" and "mail.log" to support@comidio.de
=== Find oversized files ===
(This function is currently being revised.)
=== Generate log files (and email) ===
If Comidio asks you to mail TruzBox log files, please proceed as follows:<br/>
Generating the file: '''logs.zip''' <br/>
Generating the file: '"systeminfo.txt"
==== File creation: logs.zip ====
In the TrutzBox user interface in the navigation menu go to:
System -> Debug
<br/><br/>
[[File:104 LogDateien mailen 015.png|700px|link=]]
<br/>
*Delete all log files (1).
*Set the modules requested by Comidio to "Debug", in this example the modules "database", "proxy" and "levels" (2).
*Then please start the application or the device in question (e.g. your TV set)...
*... after "strange behaviour" occurred, download the files using the " Alle Logdateien herunterladen " button (3).
*Then set all modules back to "information" (no longer to "Debug"), so that the TrutzBox does not permanently write log files and unnecessarily occupies storage space.
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:104 LogDateien mailen 020.png|300px|link=]]
<br/>
Click on "OK".
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:104 LogDateien mailen 030.png|700px|link=]]
<br/>
Click on "Speichern".
<br/><br/>
'''Then please mail the file logs.zip to support@comidio.de Thank you very much! '''<br/><br/>>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
==== Creation of the file: systeminfo.txt ====
In the TrutzBox user interface in the navigation menu go to:
System -> Erweiterte Einstellungen
<br/><br/>
[[File:104 LogDateien mailen 040.png|700px|link=]]
<br/>
Click on "Erweiterte Einstellungen".
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:104 LogDateien mailen 050.png|700px|link=]]
<br/>
Enter the user name "admin" and the corresponding password.<br/>
Click on "Anmelden".
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:104 LogDateien mailen 060.png|700px|link=]]
<br/>
Enter in URL line "https://trutzbox:10000/sysinfo.cgi".<br/>
Press the Enter key.
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:104 LogDateien mailen 070.png|300px|link=]]
<br/>
Click on "OK".
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
The file is automatically stored in the "Downloads" directory (or in the directory specified by the user).
<br/><br/>
[[File:104 LogDateien mailen 080.png|700px|link=]]
<br/>
Click on "Speichern".
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
'''Please then mail both files (logs.zip and systeminfo.txt) to support@comidio.de Thank you!'''
=== Screen sharing at TrutzRTC via Comidio Server ===
Comidio-Support has the possibility to invite participants to a TrutzRTC meeting on the Comidio server.<br/>
The participant only needs a Chrome or FireFox browser to access the shared room URL and attend the TrutzRTC Meeting.<br/><<br/>
If the participant wants to share (= show) his screen, this can be done with the Chrome Browser, in which the "Comidio Conference Screen Sharing" extension was previously activated.<br/>
The following screenshots show how to find and activate this extension.
<br/><br/>
[[File:105 ScreenSharing Chrome Plugin 010.png|700px|link=]]
<br>
Call the current Chrome Browser (1).<br/>
Enter in the URL field "https://chrome.google.com/webstore/category/extensions?hl=de" (2).<br/>
Enter into the search field "comidio" (3).<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:105 ScreenSharing Chrome Plugin 020.png|700px|link=]]
<br>
Click on "+ HINZUFÜGEN" (1).<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:105 ScreenSharing Chrome Plugin 030.png|700px|link=]]
<br>
Click on "Erweiterung hinzufügen" (1).<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:105 ScreenSharing Chrome Plugin 040.png|700px|link=]]
<br>
Click on logo for settings (3 horizontal lines) (1).<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:105 ScreenSharing Chrome Plugin 050.png|800px|link=]]
<br>
Click on "Weitere Tools" (1).<br/>
Click on "Erweiterungen" (2).<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:105 ScreenSharing Chrome Plugin 060.png|700px|link=]]
<br>
The installed extensions are displayed here, including the new screen sharing extension (1).<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><<br>
=== exchange of SD cards ===
In exceptional situations it may be necessary to replace an SD card in the TrutzBox.<br/>
The following illustrations show how to replace the SD card.<br/><br/>
[[File:106 SD Karte wechseln 010.png|700px|link=]]
<br>
Loosen the four screws with a small cross-head screwdriver.<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 020.png|700px|link=]]
<br>
Pull the housing off to the front.<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 030.png|700px|link=]]
<br>
Carefully pull out the old SD card.<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 040.png|700px|link=]]
<br>
New SD card ...<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 050.png|700px|link=]]
<br>
... in setting ...<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 060.png|700px|link=]]
<br>
... insert as far as it will go.<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 070.png|700px|link=]]
<br>
Push the housing back on ...<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
[[File:106 SD Karte wechseln 080.png|700px|link=]]
<br>
... and re-tighten the four nuts.<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
=== Instructions for writing (fuelling) the SSD ===
To reload the SSD disk installed in the Trutzbox, a "tank USB stick" must first be created, with which the built-in SSD disk can then be "fueled" with a new TrutzBox image (previous image overwritten). <br/>
The tank USB stick must be 32GB in size.
<br/><br/>
First download an image for the USB tank stick from https://trutzbox.de/download/Tank_V67_dev_11.zip. Unpack the file (is then approx. 19GB in size) and upload it with a PC and the program "etcher" (https://etcher.io/) to a 32GB USB stick. Use it to create a bootable USB stick. When you boot the TrutzBox with this USB stick (i.e. insert the tank USB stick into the TrutzBox before the TrutzBox boot), a program is started from the USB stick which copies a TrutzBox image from the USB stick to the built-in storage medium in the TrutzBox.
<br/><<br/>
The copy program outputs information via the TrutzBox LEDs with which you can check the copy process.
<br/><<br/>
'''Description of the LED signals (LEDs on the front of the TrutzBox; LED 1 is left): '''
<br/>
<table border="1" width="750">
<tr>
<td width="250">'''LEDs 1, 2, 3'''</td>
<td width="500">'''Meaning'''</td>
</tr>
<tr>
<td width="250">1 an; 2,3 aus</td>
<td width="500"> Trutzbox booting</td>
</tr>
<tr>
<td>1 on; 2 blinking; 3 off</td>
<td>Search USB stick</td>
</tr>
<tr>
<td>1,2 on; 3 blinking</td>
<td>Search target medium (SD card or mSSD)</td>
</tr>
<tr>
dtd>1,2,3 from left to right</td>
<td>Write image to target medium (takes a long time with old TrutzBox, since USB2 is still..., on new TrutzBox with USB3 stick approx. 5-10min)</td>
</tr>
<tr>
dtd>3.2.1 from right to left</td>
<td>Check written data (with old TrutzBox, since USB2 is still very long..., on new TrutzBox with USB3 stick approx. 5-10min)</td>
</tr>
<tr>
<td>1,2,3 blink synchronously,
3*beeps</td>
dtd>successfully completed, box turns off in 30sec </td>
</tr>
<tr>
<td> </td>
<td> </td>
</tr>
<tr>
<td>.</td>
<td> </td>
</tr>
<tr>
<td>'''Error'''</td>
<td> </td>
</tr>
<tr>
<td>outside inside rhythm:<br/>
1 on, 2 off, 3 on<br/>
1 off, 2 on, 3 off
</td>
<td> Error display is shown together with beep every 60 seconds.<br/>Copy did '''not''' work.</td>
</tr>
</table>
<br/>
Then remove the TrutzBox from the power supply, remove the USB stick, reconnect the TrutzBox to the power supply and run the TrutzBox setup again.
Please note that the TrutzBox generates new certificates during setup. Therefore, you must delete the previously imported certificates on your mobile devices before setup.
It may happen that the TrutzBox does not want to boot from the USB stick when "refuelling". Then only a serial cable helps to connect to the TrutzBox and adjust the boot order with a terminal in the TrutzBox-BIOS. Or remove the storage medium and send it to us.
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br><br>
=== Installation and start of PuTTY (terminal program under Windows) ===
As an alternative to Webmin, it may be necessary to execute commands directly on the Trutzbox via SSH (secure shell). A terminal program is required for this. Under MacOS, a terminal application is already available by default and can be searched for and started there in Spotlight with "terminal". Under Windows, the "PuTTY" terminal program must first be installed.<br/><<br/>
The installation and use of PuTTY ''under Windows''' is described below.
<br/><<br/>
Calling of:<br/>
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html
<br/><br/>
[[File:10 08 PuTTY 010.png|700px|link=]]
<br><br>
* Click on (1), falls 32-Bit System, oder …
* Click on (2), falls 64-Bit System.
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 020.png|300px|link=]]
<br><br>
* Click on "Datei speichern" (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 030.png|700px|link=]]
<br><br>
* PuTTY Installer downloaded to download directory (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 040.png|700px|link=]]
<br><br>
* Change to the download directory.
Double click on PuTTy Installer (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 050.png|500px|link=]]
<br><br>
* Click on "Next" (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 060.png|500px|link=]]
<br><br>
* Change the destination directory (1), and/or ...
* Click on "Next" (2).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 070.png|400px|link=]]
<br><br>
* Click on "Install" (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 080.png|500px|link=]]
<br><br>
* PuTTY is being installed ...
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 090.png|500px|link=]]
<br><br>
PuTTY is now installed and can be called and started in the program directory ...'''
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
'''... to simplify the call, a desktop shortcut can also be set up:'''
<br/><br/>
[[File:10 08 PuTTY 100.png|700px|link=]]
<br><br>
* Right-click on desktop surface (1).
* Click on "Neu" (2).
* Click on "Verknüpfung" (3).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 110.png|700px|link=]]
<br><br>
* Click on "Durchsuchen..." (1).
<br>
Click through to the PuTTY directory and there to the PuTTY application:
<br>
C: -> Program Files -> PuTTY
<br><br>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 121.png|300px|link=]]
<br><br>
* Click on PuTTY-Programm (1).
* Click on "OK" (2).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 130.png|700px|link=]]
<br><br>
* Click on "Weiter" (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 140.png|700px|link=]]
<br><br>
* If desired, enter another name and/or ... (1).
* Click on "Fertig stellen" (2).
<br><br>
Shortcut from desktop to PuTTY program is now set up and PuTTY can be called from desktop by double-clicking the shortcut icon...'''
<br/><br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
'''The call is made as follows:'''
<br/><br/>
[[File:10 08 PuTTY 150.png|400px|link=]]
<br><br>
* Double-click on desktop on shortcut icon (1).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 160.png|400px|link=]]
<br><br>
* Click on "SSH" (1).
* Enter "trutzbox" as host name and port "22“ (2).
* Click on "Open" (3).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 180.png|600px|link=]]
<br><br>
* To log in: Enter "admin" (1).
*... and press the Return key (2).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/><br/>
[[File:10 08 PuTTY 190.png|600px|link=]]
<br><br>
* Enter the Trutzbox admin password as the password and press the Return key (1).
Then enter the command(s) named by Comidio ... (2).
<br/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<br/>
== Access and passwords ==
<!-- ==================================================== -->
<!-- ====================== Chapter 11 ====================== -->
<!-- ==================================================== -->
The following accesses and passwords are used chronologically to operate and use the TrutzBox<sup>®</sup>:
'''Registration on website (for purchase TrutzBox<sup>®</sup>)'''
invocation: comidio.de -> Login / Register (https://comidio.de/mein-konto)
<table border="1" width="750">
<tr>
<td width="375">'''Name'''</td>
<td width="375">'''Password'''</td>
</tr>
<tr>
<td> Existing e-mail address of the prospect / customer</td>
<td> assigns the user by entering </td>
</tr>
</table>
<table border="1" width="750">
<tr>
<td width="750">
Purpose:
*serves to authenticate the user,
*is required after a one-time registration for access ("login") to customer account.
</td>
</tr>
</table>
<br />
'''Setting up the TrutzBox <sup>®</sup>'''
Call: http://trutzbox
<table border="1" width="750">
<tr>
<td width="375">'''Name'''</td>
<td width="375">'''Password'''</td>
</tr>
<tr>
<td>„ admin"; automatically created by TrutzBox®</td>
<td> user assigns by entering </td>
</tr>
</table>
<table border="1" width="750">
<tr>
<td width="750">
Purpose:
*is used to authenticate the TrutzBox<sup>®</sup> Administrator,
*required by the administrator for later administration of the TrutzBox.
</td>
</tr>
</table>
<br />
<table border="1" width="750">
<tr>
<td width="375">'''Name'''</td>
<td width="375">'''Password'''</td>
</tr>
<tr>
<td>TrutzKennung
(see the document "TrutzLegitimierung")
</td>
<td>TrutzSchlüssel
(see the document "TrutzLegitimierung")
</td>
</tr>
</table>
<table border="1" width="750">
<tr>
<td width="750">
Purpose:
*is used for authentication of TrutzBox<sup>® </sup>Rights and TrutzMail Services,
*is only required for installation (and if necessary, for factory reset) of the TrutzBox<sup>®</sup>.
</td>
</tr>
</table>
<br />
'''Administration of the TrutzBox<sup>®</sup> (e.g. create e-mail address)'''
Call: http://trutzbox
<table border="1" width="750">
<tr>
<td width="375">'''Name'''</td>
<td width="375">'''Password'''</td>
</tr>
<tr>
<td>( not required; is automatically "admin")</td>
when setting up the TrutzBox<sup>®</sup> defined password </td>
</tr>
</table>
<table border="1" width="750">
<tr>
<td width="750">
Purpose:
*is used to authenticate the TrutzBox<sup>®</sup> Administrator,
*required by the administrator for administration of the TrutzBox<sup>®</sup>.
</td>
</tr>
</table>
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
Administration of the Comidio account
Call: comidio.de -> Login / Register (https://comidio.de/mein-konto)
<table border="1" width="750">
<tr>
<td width="375">'''Name'''</td>
<td width="375">'''Password'''</td>
</tr>
<tr>
<td> E-mail address used for registration (by interested parties)</td>
<td> Password defined at registration (by interested parties) </td>
</tr>
</table>
<table border="1" width="750">
<tr>
<td width="750">
Purpose:
*serves to authenticate the user,
*is required after a one-time registration for access ("login") to customer account.
</td>
</tr>
</table>
== Information and statements ==
<!-- ==================================================== -->
<!-- ====================== Chapter 12 ====================== -->
<!-- ==================================================== -->
=== Headline information that PGP- and S/MIME-encrypted emails are no longer secure ===
'''The last few days have seen headlines saying that PGP and S/MIME encrypted emails are no longer secure. This raises the question of whether this also applies to the TrutzBox.'''
First, a brief explanation of how attackers can read traditional PGP or S/MIME encrypted emails: The prerequisite is that the attacker can intercept and manipulate the encrypted e-mail during transmission. Since with conventional e-mail transmission at least both the sender's and the recipient's e-mail provider are able to do this, this prerequisite is always met.
The attacker then inserts a link into the encrypted e-mail that is retrieved by the e-mail client and thereby sends the e-mail to the attacker after decryption. Details about this attack scenario here: https://www.efail.de/
'''How does e-mail work with TrutzBox?'''
The TrutzBox is a server that can also send and receive secure e-mails. When designing the TrutzBox, we attached great importance to the fact that communication via the TrutzBox is not only easier to use, but also offers even more privacy than PGP-encrypted e-mails. This was achieved by TrutzBoxes exchanging their e-mails via Tor hidden services. In contrast to PGP-encrypted e-mails, the TrutzBox offers the following advantages if both sender and recipient have a TrutzBox:
*the key management is fully automatic. The user never comes into contact with any keys. Unlike PGP-encrypted emails, which require manual key management on all devices in use.
*no extension is necessary on the end devices (e-mail clients). All email clients can still be used in their full functionality.
*an attacker who can monitor Internet communication cannot see that an e-mail is being exchanged here, nor which IP addresses are communicating here. With PGP-encrypted emails, anyone who has access to the mail servers or Internet connections can read all meta data of the mail.
*for security reasons the TrutzBox always encrypts e-mails additionally with PGP
*since the TrutzBoxes exchange e-mails via the Tor network and there is no "e-mail provider" in between, no third party can change the e-mail on the move.
As a result of this last point: if the communication partner also has a TrutzBox, the e-mail cannot be manipulated while on the move and is safe from this attack,
These same features are also used by the chat function of the TrutzBox.
Due to this increased security against PGP, the TrutzBox is also used by journalists, doctors, lawyers... which require special protection.
If the communication partner does not have a TrutzBox, the TrutzBox can also send and receive PGP-encrypted e-mails via normal mail servers and automatically encrypt and decrypt them. In this case, the email client retrieves the decrypted email from its TrutzBox.
But since in this case the PGP-encrypted mail is exchanged with a normal e-mail account, it can be manipulated on the way. The TrutzBox decrypts the mail correctly and does not send any mail to the attacker, but if the e-mail program on the client is configured to load references from the e-mail, then the attacker would also receive the mail from the e-mail client.
If, as in this attack, the mail was tampered with on the way, the TrutzBox would detect this, however, since it cannot verify the signature and would mark the mail accordingly.
However, it is quite easy to fend off this attack. To do this, simply deactivate automatic reloading in the e-mail program.
<br />
[[#top|-> <u>Inhaltsverzeichnis</u> (dieses Handbuchs)]]