Difference between revisions of "Trutzbox Manual"

From Comidio
Jump to: navigation, search
(TrutzBox® Setup (for TrutzBox® Administrator))
Line 1: Line 1:
== The TrutzBox<sup>®</sup> ==
+
== Use of the TrutzBox<sup>®</sup> (-> for users)==
Comprehensive background information and technical details that go beyond setting up and using the TrutzBox<sup>®</sup> are provided by the ''Comidio Compendium''', see https://comidio.de/trutzbox-kompendium/.
+
The TrutzBox<sup>® </sup> is delivered by Comidio with security settings suitable for everyday use, so that even inexperienced users can email and surf immediately protected and without a trace.
  
=== Searching the manual ===
+
The following sections describe the functions and options that the inexperienced user can use immediately after setting up TrutzBox.
Comment on "'''Search'''":
 
This manual is structured as a single, large wiki page. Therefore the search function (top right) is not helpful.<br>
 
To search, please use "Ctrl f", i.e.
 
*Press and hold the " Strg" or "Ctrl" key
 
*Press the "f" key simultaneously (for "find")
 
A search line will appear at the bottom of the browser window.
 
Enter the search term in the search window on the left, and depending on the search direction, press down arrow or up arrow to jump to the next search result.<br>
 
  
If the search text is displayed on a red field, the search term does not appear in the entire text.<br>
+
These include:
(To hide the search line: click on "x" on the right side in the search line.
+
* '''TrutzBrowse''': Traceless surfing through modified, incomprehensible browser profile data.
=== Before you turn to the TrutzBox... updates! ===
+
* '''TrutzMail''': End-to-end email service with encrypted content and encrypted metadata.
Please make sure that the following ''Updates are done''' and that you can access your '''Internet router'' user interface.
+
* '''TrutzContent''': Maximum protection for children and young people by using filter lists to block inappropriate websites.
<table border=1 width="700">
+
* '''TrutzRTC''': Real-time communication with '''TrutzChat''' (Messaging) and '''TrutzMeeting'' (Audio and Video Conferencing Service)
<tr>
+
* '''TrutzBase''': Use of modern virus protection, firewall and intrusion detection systems
<td width="80">'''Operating system '''</td>
 
<td width="620"> Please make sure that your '''operating system is up to date with the latest update'''.<br/>
 
Only in this way can you be sure that you are optimally protected by the latest updates.In addition, TrutzBox is set up with its own updates to work with the latest operating system updates. If the operating system is not equipped with the latest update, the TrutzBox may not be able to work and thus do not offer optimum protection.</td>
 
</tr>
 
<tr>
 
<td>'''Browser'''</td>
 
<td>Bitte achten Sie darauf, dass jeder Ihr '''Browser mit dem neusten Update''' versehen auf dem neusten Stand ist.<br/>
 
Only in this way can you be sure that you are optimally protected by the latest updates. In addition, TrutzBox is set up with its own updates to work with the latest browser updates. If the browser is not equipped with the latest update, the TrutzBox may not work and therefore does not offer optimum protection.
 
<br/><br/>
 
In addition, the browser must be used so that '''Java script is activated''' and '''pop-ups are not suppressed'''.
 
</td>
 
</tr>
 
<tr>
 
<td>'''Internet-<br/>Router'''</td>
 
<td> Please make sure that your '''Internet router is up to date with the latest firmware update'''.
 
Only in this way can you be sure that you are optimally protected by the latest updates.In addition, settings are made on the Internet router for certain functions of the TrutzBox. In this respect, access to the user interface of the Internet router may be necessary, i.e. ''the Internet router administrator should know its call and password'''.</td>
 
</tr>
 
</table>
 
<br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/><br/>
 
  
=== Follow this manual ===
 
<br/>
 
<table border="1" width="700">
 
<tr>
 
<td width="80">'''ATTENTION:'''
 
We can only provide support if you first go through Quick Start
 
*'''Step-by-step'''
 
*'''completely'''
 
*'''according to the respective time specifications!'''
 
'''Further configurations and settings must also be performed one after the other in accordance with this manual.'''</td>
 
</tr>
 
</table>
 
<br/>
 
The TrutzBox<sup>® </sup> will now make your Internet more secure. It has the effect that you cannot be observed while e-mailing and cannot be spied on while surfing. You leave fewer traces on the Internet and you are less traceable. With the TrutzBox <sup>® </sup> you strengthen your privacy.
 
  
The TrutzBox<sup>® </sup> is the security center of your home network. It controls incoming and outgoing Internet traffic. With the TrutzBox<sup>® </sup> you determine which information the devices connected to the Internet in your home network may disclose.
+
=== Traceless Surfing - TrutzBrowse ===
<br/>
+
Independent of browser (e.g. Mozilla Firefox, Chrome, Internet Explorer, Safari, etc.) and operating system (Microsoft windows, Apple iOS, Linux), the TrutzBox helps to avoid data tracing while surfing.
With the TrutzBox<sup>® </sup> you can control the Internet connections of your
 
*Internet devices at home, like computers, tablets, smartphones,
 
*mobile Internet devices on the move, such as laptops, tablets, smartphones,
 
*Internet-enabled devices, such as television, house control (e.g. roller shutters, heating), toothbrush, refrigerator, etc.
 
The TrutzBox<sup>® </sup> will make the lives of criminal Internet hackers, professional data traders and secret services, which have been observing you while surfing and use your data for their own purposes or commercially, more difficult to a previously unknown extent.
 
  
Comidio TrutzBox<sup>® </sup> offers optimal protection of your privacy through
 
*automatic end-to-end encryption of your e-mails,
 
*traceless surfing the Internet,
 
*maximum protection for your children,
 
*Firewall and virus protection,
 
*easy operability,
 
*cost-effective use,
 
and thus delivers optimal anonymity.
 
The TrutzBox<sup>® </sup> offers plug and play settings and is already optimally configured for most requirements at the factory. Special personal requirements are set via the easy-to-use user interface.
 
<br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/><br/>
 
=== TrutzBox with or without (own) WLAN? ===
 
<br/>
 
The WLAN module of the TrutzBox is required if a mobile device is to be controlled via the TrutzBox<sup>®</sup>. This is then connected directly to the network of the TrutzBox (= its WLAN).
 
  
 +
Use your browser as usual (in the following as an example with windows 7 and Firefox).
  
[[File:20150810 Netzwerk Alternativen mit USB WLAN Adapter.png|700px|link=]]
+
==== TrutzBrowse in standard operation ====
<br><br>
+
<br />
There are basically two ways to connect devices to the TrutzBox<sup>®</sup>:
+
[[File:20160301 Slider mit Thor 2.png|700px|link=]]<br />
<br>
+
<br /><br /> The TrutzBurg symbol in the upper right corner of the website indicates that TrutzBrowse is activated with the security settings. With the above setting, the TrutzBox (symbol: TrutzBurg) and the Tor network (symbol: onion) are activated.  
 
+
<br /><br />
<table border=1 width="700">
+
The color of the TrutzBurg shield indicates the setting of the security slider for this URL; green = level 1 = highest security level; red = level 9 = lowest security level.
<tr>
+
<br /><br />
<td width="80">'''Case 1:'''</td>
+
If there are operating elements on the website which are hidden by the TrutzBurg and can therefore no longer be operated, the TrutzBurg can be moved to another corner of the browser window.<br/>
<td width="620">'''<span style="color: orange"> PC 1 is connected to the Internet router via WLAN or network cable (dashed yellow).</span>'''
+
For touch screens, simply touch the symbol for longer than 1s.
<br> In order for Internet traffic (surfing) via the TrutzBox<sup>®</sup>, the TrutzBox<sup>®</sup> must be entered as proxy (= deputy, quasi "doorman") in the respective browser of the PC.The entry must be made separately for each browser.<br> This mode is called '''"Proxy mode"''''.<br>
+
<br /><br />
It is therefore possible to leave a PC connected to the Internet router while still routing the Internet accesses of its browsers via the TrutzBox. However, this only works with PCs in the browser. In this case, other software on the PC can continue to exchange unobserved data with the Internet.</td>
+
[[File:20160301 Slider mit Tor & TrutzBrowse 4.png|700px|link=]]
</tr>
 
<tr>
 
<td>'''Case 2:'''</td>
 
<td>'''<span style="color: green"> PC 2 is connected to the TrutzBox<sup>®</sup> via WLAN or network cable (green dashed).</span>'''<br><br>
 
All Internet traffic (surfing) automatically passes through the TrutzBox<sup>®</sup>.This mode is called <br>'''"Transparent mode'''".<br>
 
When a device is connected to the TrutzBox's internal secure network via the TrutzBox WLAN or TrutzBox LAN port, all Internet data '''must''' pass through the TrutzBox. If devices without a LAN connection, such as tablets or smartphones, are to be connected to the TrutzBox network, the WLAN module is required.</td>
 
</tr>
 
</table>
 
<br>
 
 
 
To use the TrutzBrowse and TrutzContent functions (secure surfing for and protection of minors), it can be decided for each device whether it should be left on the network of the Internet router (e.g. Fritzbox) (proxy mode) or connected to the TrutzBox network (transparent mode).
 
 
 
'''The aim is to connect as many or all devices as possible in the home network directly via the TrutzBox<sup>®</sup> (i.e. in "transparent mode").'''<br>
 
<br>It is advisable to reach this state step by step.<br>
 
Therefore, you should start "small" at the beginning and gain experience in "proxy mode" by not changing anything on your home network, i.e. the devices initially remain on the Internet router.
 
 
 
 
 
You can also intentionally surf in a browser (e.g. Firefox) in proxy mode while surfing in parallel in a second browser (e.g. Chrome) without protection.
 
For example, you can track the influence the security slider has on unprotected access in various positions (e.g. effects on advertising offers shown).
 
 
 
 
 
If you have sufficient experience in proxy mode and would like to gain additional security, you can gradually connect devices in transparent mode by connecting them directly to the TrutzBox® via WLAN (or network cable).<br><br>
 
 
 
[Since there are occasional exceptions in which website use is not possible even with SliderLevel 10 (TrutzBox set to "pull-through"), it is recommended to operate a browser-based client device in proxy mode, so that the TrutzBox can be switched off as a proxy in the browser of this client device if necessary. This allows the browser of this device to access the Internet directly via the Internet router (bypassing the TrutzBox). After the exception has been made, the TrutzBox should be activated again in the browser as a proxy].
 
<br><br>
 
This means that the TrutzBox can also be operated safely without a WLAN module and the WLAN module can be added later if required.
 
<br><br>
 
The other TrutzBox functions, such as Webmeeting, Mail, Chat and Remote Access, work in both modes unaffected by this.
 
<br><br>
 
'''To change from transparent mode to proxy mode or vice versa, please proceed as follows: '''
 
*Shut down PC or device (= switch off by software).
 
*If previously connected to TrutzBox, now connect to the Internet router or vice versa.
 
*Switch on/restart the device (now the device automatically receives an IP address valid in this network area).
 
<br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
 
<br/><br/>
 
<br/><br/>
  
=== Phases, users and administrator ===
+
After clicking on the TrutzBurg, the security slider and four further functions are available.
This manual describes two roles in these words:<br/><br/>
 
'''”User”'''<br/>
 
Anyone using TrutzBox functions is referred to in this manual as "'User'".
 
<br/><br/>
 
'''Administrator '''<br/>
 
A person who uses certain administrative functions of the TrutzBox that are not available to every user is described in this manual "'''Administrator'''".
 
<br/><br/>
 
  
 +
The Security-Slider can be set to 10 security levels (Level 1 = highest protection up to Level 9 = lowest protection; Level 10 = for this website the TrutzBox is switched off).
 +
From level 1-9, the user can make the settings himself. If set to level 10 (TrutzBox protection is disabled), only the administrator can reset the level for this website.
  
With '''private use''' of the TrutzBox the administrator is usually an adult, in families e.g. a legal guardian.
+
<br />
<br/><br/>
+
On delivery, the security slider is set to "highest security level" (level 1, green, far left).
For '''commercial use''' of the TrutzBox, the administrator is usually an internal or external IT administrator.
 
<br/><br/>
 
In general, the following phases can be distinguished when using the TrutzBox:
 
<table border="1" width="700">
 
<tr>
 
<td width="150">'''Phase'''</td>
 
<td width="400">''' activities '''</td>
 
<td width="150"> </td>
 
</tr>
 
<tr>
 
<td> start up <br/>(ca. 15 Min.)</td>
 
<td> Unpacking, checking, connecting and switching on the TrutzBox </td>
 
<td>Administrator</td>
 
</tr>
 
<tr>
 
<td> set up <br/>(ca. 30 Min. plus updates)</td>
 
<td> Test Internet connection, import certificate, set admin password, register TrutzBox, create TrutzMail address, set WLAN name and password </td>
 
  
<td>Administrator</td>
+
<br /><br />
</tr>
+
If the website shows malfunctions, e.g. because it wants to store a cookie, the user can gradually deactivate individual security and anonymisation measures by dragging the security slider to the right (towards red) in order to restore the website's functionality.
<tr>
+
However, the security level should only be reduced for trusted websites.
<td>Usage<br/>(ongoing)</td>
+
<br />
<td>Surfing, Mailing, Webmeets</td>
 
<td>User</td>
 
</tr>
 
<tr>
 
<td>Administrieren<br/>(as needed)</td>
 
<td>Manage users, create PGP partners, manage TrutzBrowse filters, set up remote access (VPN), import certificates on end devices, reactivate SecuritySlider, advise and support users</td>
 
<td>Administrator</td>
 
</tr>
 
</table>
 
  
<br/>
+
<br /><br />
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/><br/>
 
  
=== How do I set up my TrutzBox? ===
 
Depending on the administrator's IT skills, the following sections of this manual may be helpful:
 
  
<table border=1 width="700">
+
[[File:20160301 TrutzBrowse Blockierung & Zugriffe 2.png|700px|link=]]
<tr>
+
<br /><br />
<td width="150">'''Administrator is ...</td>
+
Click on "Details" to see a list of all web accesses accessed from this website.
<td width="550">'''recommended chapter'''</td>
 
</tr>
 
<tr>
 
<td>IT-Expert</td>
 
<td>chapter: 2.1 ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Installationsanweisung_.28.C3.9Cbersicht_f.C3.BCr_Experten.29 Weiter zu 2.1])</td>
 
</tr>
 
<tr>
 
<td>IT- knowledgable </td>
 
<td>chapter: 2.2 ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox_Setup-Anleitung Weiter zu 2.2])</td>
 
</tr>
 
<tr>
 
<td>interested layperson </td>
 
<td>chapter: 3 ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Einrichten_.28Set_Up.29_der_TrutzBox.C2.AE_.28f.C3.BCr_TrutzBox.C2.AE_Administrator.29 Weiter zu 3])</td>
 
</tr>
 
</table>
 
<br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/><br/><br/>
 
----
 
'''<span style="color: green">Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane *** Fast Lane *** </span>'''
 
----
 
==<span style="color: green">Fast Lane (for TrutzBox<sup>®</sup> Administrator)</span>==
 
  
Chapter 2 contains information for technically affine users:
+
<br />
 +
Blocked HTTP calls are marked by a "red crossed out circle“.
 +
The overview also shows the HTTP headers that have not been completely blocked (marked by a "green tick in a green circle").
 +
This makes it obvious which data was transmitted from the browser to a Web server ("Request" tab) and which data went from a Web server to the browser ("Response" tab).
 +
<br />
 +
Depending on how the TrutzBox® is configured for the current position of the Security Slider, certain HTTP header data may not be transmitted to the web server at all (blocked headers) or may be changed (replaced headers).
 +
<br />
 +
On the left, the HTTP calls are listed, which are automatically called in the background - without the user's active intervention - in addition to the web page called up by the user (here: www.krone.at). On the right under "Details" you can see which header information has been blocked or replaced.
 +
<br />
 +
Click on one of the HTTP calls listed on the left to obtain additional information on this.
 +
<br />
 +
Set a check mark to " Nur Blockierungen anzeigen ", then only the blockings are listed.
 +
<br /><br />
  
*für IT-Experts, following, in chapter 2.1 ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Installationsanweisung_.28.C3.9Cbersicht_f.C3.BCr_Experten.29 Weiter zu 2.1])
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]  
*for IT-knowledgable in chapter 2.2 ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox_Setup-Anleitung Weiter zu 2.2])
+
<br />
  
Interested laymen will find detailed information in chapter 3 ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Einrichten_.28Set_Up.29_der_TrutzBox.C2.AE_.28f.C3.BCr_TrutzBox.C2.AE_Administrator.29 Weiter zu 3])
+
==== TrutzBrowse for experts ====
 +
The TrutzBox<sup>®</sup> monitors web access and is thus able to prevent unwanted data traffic. The TrutzBox<sup>®</sup> distinguishes whether a device or a user calls up a web page directly or whether a web server - after the deliberately called up web page has been loaded - contacts further web pages and loads them without the user's knowledge and without his consent.
  
===<span style="color: green">Installation Instructions (Overview for Experts)</span style>===
+
The TrutzBox<sup>®</sup> offers two different basic functions for this purpose:
  
Folgende Tabelle kann auch als PDF heruntergeladen werden: [https://comidio.de/wp-content/uploads/2017/06/TrutzBox-installations-Anweisung-U%CC%88bersicht-1.4.pdf Download]
+
'''1. TrutzContent:'''
<br><br>
 
<!--************** Überschriften, 3-spaltig **************-->
 
<table border="2" width="700">
 
<tr>
 
<td width="100">'''TrutzBox Function'''</td>
 
<td width="300">'''Sub-Function'''</td>
 
<td width="300">'''Action'''</td>
 
</tr>
 
</table>
 
<!--************** HW verkabeln, etc. **************-->
 
<table border="2" width="700">
 
<tr>
 
<td width="100">'''Wiring the Hardware'''</td>
 
<td width="300"></td>
 
<td width="300"> Connect the TrutzBox LAN-Ext socket to the Internet router using the LAN cable supplied. Connect TrutzBox to the power supply with the power supply unit. ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox_anschlie.C3.9Fen_.28Schritt_B.29 Details])</td>
 
</tr>
 
<tr>
 
<td>'''Carry out setup'''</td>
 
<td></td>
 
<td><nowiki>"http://trutzbox"</nowiki> enter in browser ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox_einrichten_.28Schritt_C.29 Details]);<br/>
 
Confirm certificate error </td>
 
</tr>
 
<tr>
 
<td>'''Install TrutzBox certificate on any device & on any browser'''</td>
 
<td></td>
 
<td> Install TrutzBox certificate on any device & on any browser ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Zertifikate Details])</td>
 
</tr>
 
</table>
 
  
<!--************** spurenarmes Surfen **************-->
+
A content filter that prevents a device or user from directly accessing a particular Web page. Examples of unwanted calls:
<table border="2" width="700">
+
* A young person wants to load a website with content harmful to young people.
<tr>
+
* An Internet device unnoticedly calls up a web page in the background without a user deliberately initiating it. These can be TVs, washing machines or game consoles (if they are connected to the Internet), or even the standard Internet browser of the user's PC, which in turn contacts Mozilla or Google or the server of a plug-in provider independently, for example.
<td width="100">'''little-tracking surfing'''</td>
+
The TrutzBox<sup>®</sup> checks if the contact to such a server is allowed and blocks the connection to this server if necessary.
<td width="300"> transparent mode (every software on the device is controlled)</td>
 
<td width="300"> Connect the Device to the TrutzBox network (via WLAN or LAN) ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Ger.C3.A4t_direkt_per_WLAN_.28oder_LAN.29_mit_TrutzBox.C2.AE_verbinden_.28Transparent-Modus.29 Details])</td>
 
</tr>
 
<tr>
 
<td></td>
 
<td> Proxy mode (only browser accesses are controlled)</td>
 
<td> Keep Device on the network of the Internet router and Automatic proxy configuration <nowiki>"http://trutzbox/api/proxy/pac"</nowiki> configure in the browser ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox.C2.AE_als_Proxy_.28Proxy-Modus.29_einrichten_in_... Details])</td>
 
</tr>
 
</table>
 
  
<!--************** verschlüsselte E-Mails **************-->
+
'''2. TrutzBrowse:'''
<table border="2" width="700">
 
<tr>
 
<td width="100">'''encrypted<br/>mails'''</td>
 
<td width="300"> secure mail exchange with other TrutzBoxes (TrutzMail)</td>
 
<td width="300"> set up an additional email address in the email program:<br> incoming mail server (IMAP): trutzbox, port: 143, TLS;<br> outgoing email server (SMTP): trutzbox, port: 587, TLS ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Nutzung_eines_Mail-Client Details])</td>
 
</tr>
 
<tr>
 
<td></td>
 
<td> Exchange PGP-encrypted emails with "normal mail accounts“ </td>
 
<td> configure external SMTP server on the TrutzBox and enter public keys of the mail recipients ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Mail-Austausch_.28PGP.29_verwalten Details])</td>
 
</tr>
 
</table>
 
<!--************** Zugriffs-Beschränkungen für Jugendliche oder IoT **************-->
 
<table border="2" width="700">
 
<tr>
 
<td width="100">''' Access restrictions<br/> for young people or IoT'''</td>
 
<td width="300">transparent Mode (any software on the device)</td>
 
<td width="300"> If necessary, select another user group on the TrutzBox or define your own access restrictions ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Filter-Konfigurieren Details])</td>
 
</tr>
 
</table>
 
<!--************** sichere Video-Konferenzen **************-->
 
<table border="2" width="700">
 
<tr>
 
<td width="100">'''secure video conferencing'''</td>
 
<td width="300">Set up a new video conference room</td>
 
<td width="300"> Think up a room name and call it up in your browser (preferably Chrome) <nowiki>https://trutzbox:9082/raumname</nowiki> and log in with your mail account ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzMeeting:_Audio-_und_Video-Konferenz_Service Details])</td>
 
</tr>
 
<tr>
 
<td></td>
 
<td>Subscribers are connected to the internal network</td>
 
<td> call up in your browser (preferably Chrome): <nowiki>https://trutzbox:9082/raumname</nowiki> </td>
 
</tr>
 
<tr>
 
<td></td>
 
<td>Participants want to connect via the Internet</td>
 
<td>Set up port sharing for TrutzRTC on the Internet router: Port 9083 UDP and port 9082 TCP. In the browser (preferably Chrome) launch <nowiki>https://ip-addr:9082/raumname</nowiki>. ip-addr is the external IP address or (if configured) DynDNS domain of the Internet router.</td>
 
</tr>
 
</table>
 
<!--************** '''sicheres Chatten/Messaging''' **************-->
 
<table border="2" width="700">
 
<tr>
 
<td width="100">'''secure Chat/<br/>Messaging'''</td>
 
<td width="300"></td>
 
<td width="300">install xmpp-client:<br>
 
Apple Macintosh Adium (https://adium.im)<br>
 
Microsoft Windows PSI (http://psi-im.org)<br>
 
iOS ChatSecure (https://chatsecure.org)<br>
 
Android Xabber (https://www.xabber.com/)<br><br>
 
  
Enter "trutzbox" as xmpp-server; Login is TrutzMail-Address and Password. ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzChat_.28XMPP_Service.29 Details])</td>
+
A user or an Internet-enabled device has validly accessed a Web page. When loading the page, however, this website contacts other web servers (often commercial data trackers) that may be interested in the user data. TrutzBox<sup>®</sup> monitors calls to other web servers that are indirectly contacted without the user's knowledge during the loading process of the deliberately accessed web page.
</tr>
 
</table>
 
<!--************** Fernzugriff auf TrutzBox (mobiler Zugriff) **************-->
 
<table border="2" width="700">
 
<tr>
 
<td width="100">'''Remote access to TrutzBox (mobile access)'''</td>
 
<td width="300">Allow VPN access on the Internet router</td>
 
<td width="300">Setting up port sharing for VPN on the Internet router: Port 1194 UDP</td>
 
</tr>
 
<tr>
 
<td></td>
 
<td>DynDNS - Get domain and activate remote access on the TrutzBox</td>
 
<td>If not yet available:<br>
 
Get DynDNS domain for the Internet connection from a service provider. Z.B. spdyn.de:
 
Activate DynDNS in the Internet router.<br>
 
Update-URL: "update.spdns.de/nic/update?hostname=<domain>&myip=<ipaddr>"<br>
 
Enter the DynDNS domain in the TrutzBox and activate remote access. ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Fernzugriff_.2F_VPN Details])</td>
 
</tr>
 
<tr>
 
<td></td>
 
<td>VPN client setup on the mobile device</td>
 
<td>Activate remote access on the TrutzBox for the user. User will then receive a TrutzMail with an OpenVPN configuration file. This must then be imported into the OpenVPN software on the mobile device. ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#VPN_Client_auf_iPhone_installieren Details])</td>
 
</tr>
 
<tr>
 
<td></td>
 
<td>Use remote access - establish connection</td>
 
<td> Connect the device to the Internet and activate connection setup in the VPN client. ([https://comidio.de/wiki/index.php/TrutzBox_Handbuch#VPN_Client_auf_iPhone_installieren Details])</td>
 
</tr>
 
</table>
 
<br>
 
This table can also be downloaded as PDF: [https://comidio.de/wp-content/uploads/2017/06/TrutzBox-installations-Anweisung-U%CC%88bersicht-1.4.pdf Download]<br>
 
<br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/><br/>
 
  
===<span style="color: green"> TrutzBox Setup-Guide </span style>===
+
In both case 1 (TrutzContent) and case 2 (TrutzBrowse), the TrutzBox<sup>®</sup> compares every web page called up with the web pages (filter lists) known to it. Comidio provides approx. 110 filter lists covering 55 different Internet topics. These filter lists are updated regularly. The TrutzBox<sup>®</sup> Administrator can add own filter lists if required.
  
'''<span style="color: green"> The following quick introduction corresponds to the two-sided "TrutzBox Setup Guide", which is included with the TrutzBox delivery.<br/>
 
For better navigation, the Quick Start wiki contains green headings.</span style>'''
 
  
'''Steps A - D must be performed one after the other.'''
 
  
'''Safety instructions:'''
+
'''Approach of the TrutzBox<sup>®</sup>:'''
*Use only the supplied power supply and network cable. Connect only compatible accessories.
 
*The TrutzBox is not splash-proof. Do not place them in bathrooms or shower rooms.
 
*Protect the TrutzBox from shocks, dust and chemicals.
 
*The TrutzBox must not be exposed to strong temperature variations and may only be operated indoors. Protect the TrutzBox from overheating and direct sunlight; do not place the TrutzBox near stoves, radiators or similar heat sources.
 
  
 +
Wenn ein Internet-Nutzer eine Webseite aufruft, dann prüft die TrutzContent Funktion zunächst, ob der PC und/oder der Nutzer, der diesen Webseitenaufruf angestoßen hat, diese Seite überhaupt aufrufen darf. Soll diese Webseite gemäß den Filterlisten blockiert werden, dann bekommt der Internet-Nutzer im Browser eine Fehlermeldung angezeigt.
  
'''Disposal:'''
+
If the website can be accessed, the TrutzBox<sup>®</sup> allows the data from the web server to pass to the browser, but it monitors each call to other web servers that the website then contacts automatically. Usually a website loads additional content from many other web servers. For each contact with a web server other than the originally called web server, the TrutzBox<sup>®</sup> checks whether this later called web server is in a filter list group "TrutzBrowse". If it is listed there, the connection to this server will be blocked.
It is prohibited to dispose of the TrutzBox (including the entire scope of delivery) with household waste. If the adjacent symbol of a crossed-out waste bin is attached to a product, this product is subject to European Directive 2002/96/EC. Please dispose of the device including the scope of delivery in accordance with this directive. If you have any questions regarding disposal, please contact the local authority responsible for disposal. The TrutzBox contains a built-in battery. You are legally obliged to dispose of the (used) battery only via specialist electrical retailers or recycling collection points (do not dispose of it with household waste!).  
 
  
  
 +
This prevents data tracker calls that are programmed into most websites, and data trackers cannot spy on user behavior.
  
====<span style="color: green"> Check scope of delivery (Step A)</span style>====
+
[[File:TrutzBrowse_90_HTTP_Requ-Resp_ur.png|700x700px|link=]]
  
[[File:20160911 Lieferumfang pur.PNG|700x700px|link=]]<br><br>
+
Each time a Web server is granted (permitted) access, information is sent from the Web browser to the Web server via the HTTP header (http request header). Without the TrutzBox<sup>®</sup> the browser would then deliver this requested data to the web server. This can be very personal data, such as which other pages you have recently called up, are you currently logged on to Facebook or how exactly does your PC/browser configuration look in order to recognize you on further calls. The HTTP header filter also controls the setting and retrieval of cookies
... and if applicable the WLAN antenna installation kit.
 
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Vor_Anschluss_der_TrutzBox.C2.AE -> Details zu <u>Lieferumfang überprüfen</u>]
 
<br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/>
 
  
====<span style="color: green"> Connecting TrutzBox (Step B)</span style>====
 
[[File:20160911 TrutzBox anschließen pur.PNG|700px|link=]]
 
* Connect the network cable to the Internet router (1) and "Ext" on the TrutzBox (2).
 
* Connect the power supply unit to the "12V DC" connection of the TrutzBox (3) and then to the power supply (4).
 
* After approx. 1 minute the TrutzBox beeps and after approx. 3-4 minutes the left-hand LED on the front of the TrutzBox starts to flash "and after another approx. 5-6 minutes (after a total of approx. 9-10 minutes) the TrutzBox is ready for operation.
 
  
If required, the WLAN built-in antenna available in the Comidio Shop (www.comidio.de/shop) can be retrofitted at any time.
+
With its TrutzBrowse function, the TrutzBox<sup>®</sup> is thus able to control the entire HTTP data exchange on the Internet and to block or falsify these HTTP header data as long as they are not absolutely necessary..
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Anschl.C3.BCsse_und_Leuchtdioden -> Details zu <u>TrutzBox anschließen</u>]
 
<br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/>
 
  
====<span style="color: green"> Setting up TrutzBox (Step C)</span style>====
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]
  
'''In the Internet browser address bar of a computer connected to your home network, type:      <nowiki>http://trutzbox </nowiki>'''
+
===== Handling SSL connections =====
 +
The proxy can only break (and analyze) an SSL-encrypted connection between a program and a server if the SSL key has been signed by one of the known certificate authorities. Here are two cases where breaking the encrypted connection does not work:
  
Now 9 screen pages follow one after the other for the initial setup of your TrutzBox:
+
*if an app establishes an encrypted connection to the server, but the key used is a self-generated key and has therefore not been signed by an official certification authority. If the app is a browser, the user is asked if he accepts the server. If the app is not a browser, the user cannot be requested.  
*Page 1: '''<span style="color: green">Welcome </span style>''': TrutzBox self-tests whether it has access to the Internet,
 
*Page 2: '''<span style="color: green">License terms </span style>''': accept the license agreement,
 
*Page 3: '''<span style="color: green">Import Root-Zertificate</span style>'''
 
<table border=1 width="600">
 
<tr>
 
<td width="110">Schritt 1:</td>
 
<td width="490">Download Root-Zertificate</td>
 
</tr>
 
<tr>
 
<td>Step 2:<br>using Firefox:</td>
 
<td>2a. Certificate is automatically loaded into Firefox certificate management <br>
 
2b. Confirm the first box of the certificate trust query </td>
 
</tr><tr>
 
<td> Step 2:<br>using IE* / Chrome</td>
 
<td>2a. Root certificate is located in the download directory <br>
 
2b. Importing the root certificate into Windows certificate management </td>
 
</tr><tr>
 
<td>Step 3</td>
 
<td>Start test</td></tr></table>
 
  
*Page 4: '''<span style="color: green"> Set admin password </span style>''': Setting the administrator password for your TrutzBox,
+
* if the client is authenticated. In this case, a key is usually programmed into the client.
*Page 5: '''<span style="color: green"> Register TrutzBox </span style>''': Enter TrutzLegitimierung (TrutzKennung und TrutzSchlüssel),
 
*Page 6: '''<span style="color: green">Create TrutzMail Adresse</span style>''': Create name, e-mail address and password,
 
*Page 7: '''<span style="color: green"> WLAN settings </span style>''': Setting the WLAN name (SSID) and the WLAN password (can be done later in case of later WLAN setup),
 
*Page 8: '''<span style="color: green"> source packages </span style>''': Determine memory release or storage of source packages, and
 
*Page 9: '''<span style="color: green"> recap </span style>''': Presentation of the entries, and if OK: "Start initial setup".
 
<nowiki>*</nowiki>IE = Internet Explorer
 
  
At the end of setup, updates are downloaded to the TrutzBox.
 
This process can take more than 60 minutes. Please do not switch off the TrutzBox or start any other process during this time. '''As soon as the "Complete Setup" window appears, all updates are complete'''. Press on „Fertig“.
 
Then the TrutzBox user interface appears, which can be opened with the just defined admin password (4.). Re-call the TrutzBox user interface with http://trutzbox.
 
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox.C2.AE_Einrichtung -> Details zu <u>TrutzBox einrichten</u>]
 
<br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/>
 
 
 
====<span style="color: green"> Enter TrutzBox as a proxy in your browser (Step D)</span style>====
 
In order for the PC to surf the Internet securely via the TrutzBox (and not unprotected via the Internet router), the TrutzBox must be entered as a proxy (= deputy, quasi "bouncer" to protect your devices) in each browser of the connected devices.
 
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#TrutzBox.C2.AE_als_Proxy_.28Proxy-Modus.29_einrichten_in_... -> Details zu <u>TrutzBox als Proxy in Browser eintragen</u>]
 
<br/><br/>
 
To enable and disable the TrutzBox as a proxy in the browser - especially in the initial phase -, the use of a proxy switch is recommended.
 
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Proxy_Schalter_zum_Aktivieren.2FDeaktivieren_der_TrutzBox.C2.AE_im_Browser_installieren -> Details zu <u>Verwendung eines Proxy-Schalters</u>]
 
<br/><br/>
 
'''This completes the setup.'''
 
For more information on using the TrutzBox see chapter 4.
 
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Nutzung_der_TrutzBox.C2.AE_.28-.3E_f.C3.BCr_Benutzer.29 -> Details zu <u>Nutzung der TrutzBox</u>]
 
<br/><br/>
 
  
====<span style="color: green">Import TrutzBox Certificate</span style>====
+
In all cases where the SSL connection cannot be broken, the SecSlider is automatically set to L10 and thus the data transfer is no longer analyzed. This ensures that apps still work "without manual intervention". The user (or the TrutzBox administrator) can deactivate this automatic feature in the "Configure filter" menu with the option "If SSL errors occur, automatically deactivate filtering for the selected domain". The data connection is nevertheless displayed in "Status" for checking purposes. Since this automatic activation only becomes effective if the server has not yet been set in the slider table, this automatism can also prevent a single server if the SecSlider is set manually to any value for this server.
For other devices that wish to use TrutzBox via browser, mail or XMPP chat: To identify the TrutzBox as a secure device, the root certificate generated during setup must be imported into every Firefox browser and operating system used on the device (PC, tablet, smartphone).
 
<br/><br/>
 
[https://comidio.de/wiki/index.php/TrutzBox_Handbuch#Zertifikate -> Details zu <u>TrutzBox Zertifikat importieren</u>]
 
<br/><br/>
 
----
 
'''<span style="color: green">*** END of Fast Lane *** END of Fast Lane *** END of Fast Lane *** END of Fast Lane *** END of Fast Lane *** END of Fast Lane *** </span>'''
 
----
 
<br/><br/><br/><br/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br/>
 
==TrutzBox<sup>®</sup> Setup (for TrutzBox<sup>®</sup> Administrator)==
 
This chapter includes
 
*Start-up of the TrutzBox<sup>®</sup>
 
*Set-up of the TrutzBox<sup>®</sup>
 
  
The aim is to connect as many or all devices as possible in the home network via the TrutzBox<sup>®</sup>.<br>
 
However, this only happens '''after setting up''' according to the manual.<br>
 
After the TrutzBox<sup>®</sup> is connected to the Internet router, start "small" by entering the TrutzBox<sup>®</sup> as "Proxy" (= deputy, quasi "doorman") in a browser of a connected PC and thus controlling the TrutzBox<sup>®</sup> the incoming and outgoing Internet traffic of this connected PC.
 
  
After completing this quick start, the user can
 
* surf without tracks (at least with few tracks) with presets,
 
* encrypted email via web access and
 
* use the proposed filter lists for child and youth protection.
 
  
Once this state has been reached, further devices should be connected to the TrutzBox<sup>®</sup> in a controlled manner.
 
  
'''Devices for which a proxy can be set up'''
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]
  
Devices for which a proxy can be configured (e.g. browser on PC or, if available, on TV set) should first be connected to the Internet router via WLAN (or network cable) and the TrutzBox<sup>®</sup> should be entered as the proxy.
+
==== Install proxy switch for activating/deactivating the TrutzBox<sup>®</sup> in the browser ====
  
Once you have gained experience in this way, you can connect the devices directly to the TrutzBox<sup>®</sup> via WLAN (or network cable).
+
'''Attention: Switching the TrutzBox on and off as a proxy (="Call forwarding") only makes sense if the browser to be used (or the terminal device used, e.g. PC) is operated in "proxy mode", i.e. the PC is connected to the Internet router (and not directly to the TrutzBox).'''
  
'''Devices for which <u>no</u> proxy can be set up'''
+
If the browser to be used (or the end-device used, e.g. PC) is operated in "transparent mode", i.e. the PC is connected directly to the TrutzBox (and not directly to the Internet router), I do not need a switch, as the PC is constantly protected via the TrutzBox and switching a proxy on or off makes no difference..
  
Devices for which <u>no</u> proxy can be set up (e.g. refrigerator or toothbrush) should be connected to the TrutzBox<sup>®</sup>; then the communication characteristics can be monitored and, if necessary and controlled, external communication can be permitted.
 
<br>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br>
 
  
===Start-up of the TrutzBox<sup>®</sup>===
+
As is known, it is possible to activate or deactivate the TrutzBox<sup>®</sup> functionality "TrutzBrowse" by activating/deactivating the "PAC" file in the browser settings.
<br>
 
<table border="1" width="700">
 
<tr>
 
<td width="80">'''ATTENTION:'''
 
'''We can only provide support if you first go through Quick Start'''
 
*'''Step-by-step'''
 
*'''completely'''
 
*'''according to the respective time specifications!'''
 
'''Further configurations and settings must also be performed one after the other in accordance with this manual.'''</td>
 
</tr>
 
</table>
 
  
<br><br>
+
If you want to save yourself these "efforts", you can also install a "proxy switch" (in the form of a downloadable "Add-On" = additional function) in the respective browser and then easily activate or deactivate the TrutzBrowse functionality by simply pressing or selecting it in the browser header line.
==== Before connecting the TrutzBox<sup>®</sup>====
 
Before you connect the TrutzBox<sup>®</sup>
 
* check the scope of delivery,
 
* check the prerequisites for start-up,
 
* read "Safety and Handling" and
 
* familiarize yourself with connections and displays..
 
Please only put your TrutzBox<sup>® </sup> into operation afterwards.
 
  
====== Scope of delivery ======
+
The following shows the installations of two proxy switches:
Please check the completeness of the scope of delivery:
+
* for Browser "Firefox": Add-On „Proxy Switcher“ and
 +
* [https://comidio.de/wiki/index.php?title=TrutzBox_Handbuch#Proxy_Schalter_f.C3.BCr_Browser_.22Chrome.22 für Browser "Chrome": Add-On „Proxy SwitchyOmega“.]
  
[[File:20160911 Lieferumfang pur.PNG|700x700px|link=]]
+
Of course, other proxy switches can also be implemented and used.
 +
<br />
 +
===== Proxy Switch for "Firefox" Browser =====
 +
''' Attention: Switching the TrutzBox on and off as a proxy (=" Redirection") only makes sense if the browser to be used (or the end-device used, e.g. PC) is operated in "Proxy Mode", i.e. the PC is connected to the Internet router (and not directly to the TrutzBox).'''
  
===== Prerequisite for start-up =====
+
If the„'''FoxyProxy Standard'''“ add-on is implemented, the user can activate and deactivate the "Trutzbox" proxy and thus the TrutzBrowse function by clicking the Proxy Switcher button (orange fox head) in the browser header.:
For the start-up of the TrutzBox<sup>® </sup> the following requirements must be fulfilled:
+
* to '''switch on''': by clicking on the symbol "crossed out, orange fox head" the FoxyProxy selection window appears; there click on the green line "'''Use proxy Trutzbox for all URLs (ignore patterns)''''" and the proxy is switched on and the symbol "orange fox head" appears.
* Computer or Internet-enabled device with access to the Internet router,
+
* to turn off: by clicking on the symbol "orange fox head" the FoxyProxy selection window appears; click on the red line "'''Turn Off All Proxies'''" and the proxy is switched off and the symbol "crossed out, orange fox head" appears.
* the up-to-date web browser (e.g. Internet Explorer, Google Chrome, Mozilla Firefox) and
+
<br />
* Internet connection.
+
The"'''FoxyProxy Standard'''" add-on is installed as follows:
 
+
<br /><br />
[[#top|-> <u> Table of Contents </u> (of this manual)]]
+
<!-- ******************************************************************* -->
===== Safety and Operation =====
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
Before installing and using the TrutzBox<sup>® </sup> read the following safety and operating instructions.
+
<!-- ******************************************************************* -->
 
+
[[File:04 01 03 01 210.png|700px|link=]]
'''Safety instructions:'''
 
 
 
Before connecting the TrutzBox<sup>® </sup>®, please take note of the following safety instructions to protect yourself and the TrutzBox<sup>® </sup> from damage.
 
* Use only the supplied AC adapter and network cable. Incidentally, only connect compatible accessories.
 
* The TrutzBox<sup>® </sup> is not splash-proof. Therefore, only place them in dry rooms; not in bathrooms or shower rooms.
 
* Protect the TrutzBox<sup>® </sup> against shocks, dust and chemicals.
 
* The TrutzBox<sup>® </sup>must not be exposed to strong temperature changes and may only be operated indoors.
 
* Protect the TrutzBox<sup>® </sup> from overheating and avoid direct sunlight on the TrutzBox<sup>® </sup> as well as the proximity of the TrutzBox<sup>® </sup> to ovens, radiators or similar heat sources.
 
* Avoid overloading sockets, extension cords and socket strips. Overloaded power supplies present a fire and electric shock risk.
 
* Do not place the TrutzBox<sup>® </sup> on carpet or upholstered furniture.
 
* Do not cover the TrutzBox<sup>® </sup>.
 
* Do not place the TrutzBox<sup>® </sup> on heat-sensitive surfaces, as the underside of the unit may heat up during normal operation.
 
* Do not install the TrutzBox<sup>® </sup> during thunderstorms.
 
* Disconnect the TrutzBox<sup>® </sup> from the power supply and the Internet connection during thunderstorms.
 
* Do not allow liquids to penetrate inside the TrutzBox<sup>®</sup>, as electric shocks or short circuits may result.
 
* Do not open the housing of the TrutzBox<sup>® </sup>. Improper opening and improper repairs can pose a risk to users of the device.
 
 
 
 
 
'''Operation'''
 
* If you want to establish wireless connections between the TrutzBox<sup>® </sup> and computers, place the TrutzBox<sup>®</sup> in a central location.
 
* Ensure sufficient distance to sources of interference such as microwave ovens, DECT telephones or electrical appliances with large metal housings.
 
 
 
'''Disposal''': <br>
 
It is prohibited to dispose of the TrutzBox (including the entire scope of delivery) with household waste. If the adjacent symbol of a crossed-out waste bin is attached to a product, this product is subject to European Directive 2002/96/EC. Please dispose of the device including the scope of delivery in accordance with this directive. If you have any questions regarding disposal, please contact the local authority responsible for disposal. The TrutzBox contains a built-in battery. You are legally obliged to dispose of the (used) battery only via specialist electrical retailers or recycling collection points (do not dispose of it with household waste!)
 
 
 
 
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
===== Interfacing and LEDs =====
 
 
 
'''Connections (rear panel)'''
 
The following connections are located on the rear panel:
 
 
 
[[File:20150323 Bild TrutzBox rück Text3.png|600x600px|link=]]
 
 
 
<table border=1 width="700">
 
<tr>
 
<td width="80">COM-1</td>
 
<td width="620">V24 connection (not required)</td>
 
</tr>
 
<tr>
 
<td>LAN-Ext</td>
 
<td> Network connection, insecure network: Internet router </td>
 
</tr>
 
<tr>
 
<td> LAN-Int1</td>
 
<td> Network connection, secure network: network-compatible device, e.g. PC or switch </td>
 
</tr>
 
<tr>
 
<td>LAN-Int2</td>
 
<td> Network connection, secure network: network-compatible device, e.g. PC or switch </td>
 
</tr>
 
<tr>
 
<td>USB</td>
 
<td> two USB ports (e.g. for connecting a WLAN adapter via USB cable)</td>
 
</tr>
 
<tr>
 
<td>12 V DC</td>
 
<td> Power supply unit connection via included power supply unit </td>
 
</tr>
 
</table>
 
<br>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
 
 
'''LEDs (front panel)'''
 
At the front panel there are three LEDs:
 
 
 
[[File:20150323 Bild TrutzBox frontSymb1.png|600x600px|link=]]
 
 
 
<table border="1" width="700">
 
<tr>
 
<td width="80">left LED:<br>Heartbeat</td>
 
<td width="160"> off <br> permanent on<br> Rhythmic blinking </td>
 
<td width="460">TrutzBox<sup>®</sup> is switched off <br>TrutzBox<sup>®</sup> is booting<br>TrutzBox<sup>®</sup> in operation
 
</td>
 
</tr>
 
<tr>
 
<td>LED Mitte:<br>TrutzMail</td>
 
<td> Lights Up </td>
 
<td>TrutzMail is sending or receiving an e-mail</td>
 
</tr>
 
<tr>
 
<td>right LED:<br>TrutzBrowse,<br>TrutzContent</td>
 
<td> Lights Up </td>
 
<td> Short flash as soon as tracker / website are blocked </td>
 
</tr>
 
</table>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<br>
 
 
 
==== Connecting the TrutzBox<sup>®</sup>====
 
Before initial operation of the TrutzBox<sup>® </sup> observe the instructions in the section "Safety and Operation“.
 
 
 
Connect the TrutzBox<sup>®</sup> as follows:
 
<br/><br/>
 
[[File:20160911 TrutzBox anschließen pur.PNG|700px|link=]]
 
<br/><br/>
 
* Connect the RJ45 network cable to a network socket of the Internet router (1) and to the "Ext" connector on the back of the TrutzBox<sup>®</sup> (2).
 
* Connect the power supply unit to the "12V DC" connection of the TrutzBox<sup>®</sup> (3) and to the 100-240V power supply (4). Only use the supplied power supply unit for connection to the power supply.
 
<br>
 
After approx. 1 minute the TrutzBox beeps and after approx. 3-4 minutes the left LED on its front side starts to flash, and after another approx. 5-6 minutes (after a total of approx. 9-10 minutes) the TrutzBox is ready for operation.<br><br>
 
If required, the WLAN options available in the Comidio Shop (www.comidio.de/shop) can be retrofitted at any time.
 
<br><br>
 
<table border="1" width="700">
 
<tr>
 
<td width="80">
 
'''Important:'''
 
 
 
*'''To enable the TrutzBox<sup>® </sup> Mail server to exchange e-mails at any time, the TrutzBox<sup>® </sup> must always be switched on'''
 
<br/>
 
 
 
*'''Make sure that the Internet router assigns the same IP address to the TrutzBox<sup>® </sup> (see example FRITZ!Box = Check the box "Always assign the same IPv4 address to this network device").'''
 
<br/>
 
[[File:20170131 FritzBox immer gleiche IP Adresse ur.PNG|700px|link=]]
 
<br/><br/>
 
*'''tart up the TrutzBox<sup>® </sup> at the beginning in proxy mode (see chapter "Using the TrutzBox<sup>®</sup> -> for users). When you have experience with TrutzBox<sup>® </sup>, you can gradually connect devices without proxy directly to TrutzBox<sup>® </sup> (transparent mode).'''
 
<br/><br/>
 
</tr>
 
</table>
 
<br/><br/>
 
 
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
 
 
===TrutzBox<sup>®</sup> Set up===
 
To set up your Trutzbox, you can do this with any browser. The process is a little different, depending on which browser is used. There are two groups:
 
* Mozila Firefox (with own certificate management) and
 
* Internet Explorer or Google Chrome (with shared certificate management in the operating system).
 
 
 
The following example shows the processes for both types; starting with Mozilla Firefox.
 
<BR/><BR/>
 
After connecting the TrutzBox<sup>®</sup> according to chapter "Connecting the TrutzBox<sup>®</sup>" it starts up. This can take 9-10 minutes.
 
<br/>
 
Then connect your computer's browser to the TrutzBox<sup>®</sup> by entering"<nowiki>http://trutzbox</nowiki>" in the browser's address bar..
 
<br/><br/>
 
It is recommended to open 2 browser windows, so that you can work e.g. in the left window on the TrutzBox<sup>®</sup> user interface and directly next to it, e.g. in the right window, you can access the manual or the browser administration.
 
 
 
This is shown below:
 
* Part I is the same for all browser types,
 
* Part II distinguishes between Firefox (2a) and "Non-Firefox" (2b) and
 
* Part III is identical again.
 
 
 
====Part I: Preparation of the setup ====
 
[[File:20151015-Ersteinrichtung-0003.png|700px|link=]]
 
<BR/><BR/>
 
After you open a browser window, enter <Ctrl><N> on the keyboard:<BR/>
 
Hold down key <Ctrl> (2a) and additionally press key "n" (2b).<BR/>
 
This opens a second browser window.
 
<BR/><BR/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<BR/>
 
 
 
[[File:20151015-Ersteinrichtung-0004.png|700px|link=]]
 
<BR/><BR/>
 
The second window (1) is now above the first window. Click with the left mouse button on the upper frame of the browser window and move the second window (with pressed left mouse button) to the right, next to the first window.
 
<BR/><BR/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0008.png|700px|link=]]
 
<BR/><BR/>
 
Open the wiki manual in the right window (1) (www.comidio.de/wiki) and go to chapter 3.2.<BR/>
 
Enter in the left window (2) <nowiki>"http://trutzbox"</nowiki>.<BR/><BR/>
 
If you are using Firefox, please read on...<BR/><BR/>
 
If you are not using Firefox, please continue reading at "Part IIb: Setup with Non-Firefox"
 
<BR/><BR/>
 
 
 
 
 
 
 
==== Part IIa: Setup with Firefox ====
 
 
 
<BR/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0051.png|700px|link=]]
 
<BR/><BR/>
 
The TrutzBox<sup>®</sup> checks the Internet connection (1) ...
 
<BR/><BR/>
 
[[#top|-> <u> Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0052.png|700px|link=]]
 
<BR/><BR/>
 
... and confirms the connection with a green tick (1).<BR/>
 
Click on "Next" (2).
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0055.png|700px|link=]]
 
<BR/>
 
 
 
 
 
Here you can read the license conditions.<BR/>
 
If you agree, click on "Accept license terms" (1).
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0061.png|700px|link=]]
 
<BR/><BR/>
 
Since we are currently using Firefox, click on "here" in step 1 of (a)(1)
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0071.png|700px|link=]]
 
<BR/><BR/>
 
In the trust query, set the two upper check marks (1)+(2).<BR/>
 
Click on "Weiter" (3).
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0201.png|700px|link=]]
 
<BR/><BR/>
 
 
 
Click on "Test starten" (1) ...
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0211.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
... and wait for the test result (1).<BR/>
+
*Click on "Extras" (1).
Click on "Weiter" (2).
+
* Click on "Add-ons" (2).
<BR/><BR/>
 
Continue to "Part III: Completion of the setup".
 
<BR/><BR/>
 
==== Part IIb: Setup with Non-Firefox ====
 
 
 
 
<BR/>
 
<BR/>
The main difference to "Setup with Firefox" is that with non-Firefox the root certificate
 
* is downloaded into the download directory of the PC and
 
* is imported from the download directory into the certificate management of the PC..
 
Then, the root certificate is automatically available to both Internet Explorer and Google Chrome.
 
<BR/><BR/>
 
[[File:20151015-Ersteinrichtung-0510.png|700px|link=]]
 
<BR/><BR/>
 
Then connect your computer's browser to the TrutzBox<sup>®</sup> by entering"<nowiki>http://trutzbox</nowiki>" in the browser's address bar (1).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0520.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
The TrutzBox<sup>®</sup> checks the internet connection (1) ...
+
<!-- ******************************************************************* -->
 +
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 220.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
*Ganz nach unten scrollen (1).
 +
* Click on "Sehen Sie sich weitere Add-ons an!" (2).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0530.png|700px|link=]]
 
<BR/><BR/>
 
... and confirms the connection with a green checkmark (1).<BR/>
 
Click on "Weiter" (2).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0540.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Here you can read the license conditions.<BR/>
+
<!-- ******************************************************************* -->
If you agree, click on "Accept license terms" (1).
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
<BR/><BR/>
+
<!-- ******************************************************************* -->
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
[[File:04 01 03 01 230.png|700px|link=]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0551.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Since you are currently using Chrome (i.e. non-Firefox), click on "here" in step 1 (b) (1).
+
* Enter "proxy switch" in the search field (1).
 +
* Click on "FoxyProxy Standard" (2).
 
<BR/>
 
<BR/>
 
This downloaded the root certificate under the name "trutzbox.cer" into the download area.<BR/>
 
Open a second tab window (2) to import the root certificate.
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0560.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Open "Customize and configure Google Chrome" (1) and click on " Settings " (2).
+
<!-- ******************************************************************* -->
<BR/><BR/>
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
<!-- ******************************************************************* -->
<BR/>
+
[[File:04 01 03 01 240.png|700px|link=]]
[[File:20151015-Ersteinrichtung-0570.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Scroll all the way down (1) and click on "Show advanced settings" (2).<BR/><BR/>
+
* Click on "+ Zu Firefox hinzufügen" (1).
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0580.png|700px|link=]]
 
<BR/><BR/>
 
Scroll down (1) and click on "Manage Certificates" (2) and then on "Trusted Root Certification Authorities" (3).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0590.png|400px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
 
+
<!-- ******************************************************************* -->
Click on "Import" (1).
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 250.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* Click on "Hinzufügen" (1).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0600.png|400px|link=]]
 
<BR/><BR/>
 
Click on " Weiter " (1).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0610.png|400px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
 
+
<!-- ******************************************************************* -->
Click on " Durchsuchen " (1).
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 260.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* The symbol "FoxyProxy switched off" (crossed out logo) is displayed in the symbol line. (1).
 +
* Scroll all the way down (2).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0620.png|700px|link=]]
 
<BR/><BR/>
 
Click on "trutzbox.cer" (1) and then on "Open" (2).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0630.png|500px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Click on " Weiter " (1).
+
<!-- ******************************************************************* -->
 +
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 270.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
 +
* If this view appears, click on "Cancel". (1).
 +
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0640.png|500px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Check that "Trusted Root Certification Authorities" is checked (1) and click "Next" (2).
+
<!-- ******************************************************************* -->
 +
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 280.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* To enter the Trutzbox as a proxy: Click on "Add" (1).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0650.png|500px|link=]]
 
<BR/><BR/>
 
 
Click on " Fertigstellen " (1).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0660.png|500px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Click on " Ja " (1).
+
<!-- ******************************************************************* -->
 +
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 290.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* Drop down the selection field (1).
 +
* Click on "HTTP" (2).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0670.png|300px|link=]]
 
<BR/><BR/>
 
Click on " OK " (1).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0680.png|500px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
The TrutzBox root certificate (1) appears in the list; click on "Close" (2).
+
<!-- ******************************************************************* -->
 +
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 300.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* Enter descriptive name, e.g. "Trutzbox“ (1).
 +
* Enter "trutzbox" as server name (2).
 +
* Enter "8081" as the port address. (3).
 +
* Click on "Save" (4).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0690.png|700px|link=]]
 
<BR/><BR/>
 
To continue the TrutzBox setup, switch back to the first tab window (1).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0710.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
 
+
<!-- ******************************************************************* -->
Click on " Test starten " (1). ...  
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
 +
[[File:04 01 03 01 310.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* Click on the symbol "FoxyProxy switched off" (crossed out logo) in the symbol line. (1).
 +
* Switch on the Trutzbox as proxy by clicking on "Use proxy Trutzbox for all URLs" (2).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0720.png|700px|link=]]
 
<BR/><BR/>
 
... and wait for the test result (1).<BR/>
 
Click on " Weiter " (2).
 
<BR/><BR/>
 
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
 
==== Part III: Completion of the setup ====
 
<BR/>
 
[[File:20151015-Ersteinrichtung-0221.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Determine, enter (1) and repeat administrator password (2).<BR/>
+
<!-- ******************************************************************* -->
All characters according to ASCII table https://en.wikipedia.org/wiki/ASCII#ASCII_printable_code_chart are allowed.
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
<br/>
+
<!-- ******************************************************************* -->
This password is required to open the TrutzBox<sup>®</sup> user interface as administrator..<BR/>
+
[[File:04 01 03 01 320.png|700px|link=]]
Click on " Weiter " (3).
 
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
In the symbol line, the "FoxyProxy" symbol (1) indicates that the proxy is switched on.
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0231.png|700px|link=]]
 
<BR/><BR/>
 
Take the data from the TrutzLegitimierung (coloured paper) and enter the TrutzKennung (1) and TrutzSchlüssel (2).<BR/>
 
Click on " Weiter " (3).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0241.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Self-chose and enter TrutzMail details:<BR/>
+
<!-- ******************************************************************* -->
* Name (1),<BR/>
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
* TrutzMail address (2): please enter only the name of the user, "@comidio.email" will be added automatically.<BR/>
+
<!-- ******************************************************************* -->
* Set, enter (3) and repeat (4) the TrutzMail password. All characters according to ASCII table https://en.wikipedia.org/wiki/ASCII#ASCII_printable_code_chart are allowed.
+
[[File:04 01 03 01 330.png|700px|link=]]
<br/>
 
These are your TrutzMail account data, which you need to use your webmail or to configure your e-mail program.<BR/>
 
Click on " Weiter " (5).
 
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* Test input of e.g. "focus.de" (1).
 +
* The Trutzburg (Trutzbox symbol) appears in the upper right corner in the color of the slider setting and shows the number of avoided tracker calls (2).
 
<BR/>
 
<BR/>
[[File:20151015-Ersteinrichtung-0251.png|700px|link=]]
 
<BR/><BR/>
 
Enter a WLAN name of your choice [SSID = Service Set IDentifier = Name of wireless network)] (1) and WLAN password (2).
 
<BR/> All characters according to ASCII table https://en.wikipedia.org/wiki/ASCII#ASCII_printable_code_chart are allowed.
 
<br/>
 
Note: choose a pseudonym as name (SSID), no clear name, as the wireless network connection name is visible with a range of up to approx. 50 m.
 
<BR/>
 
With this TrutzBox<sup>®</sup> SSID you connect the WLAN devices of the home network.
 
<BR/>
 
Click on " Weiter " (4).
 
<BR/><BR/>
 
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0255.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
 
+
<!-- ******************************************************************* -->
If the check mark remains set (1), about half a gigabyte of memory space is freed up.
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
<BR/>
+
<!-- ******************************************************************* -->
Click on " Weiter " (2).
+
[[File:04 01 03 01 340.png|700px|link=]]
 
<BR/><BR/>
 
<BR/><BR/>
 +
* To switch off the proxy: click on the "FoxyProxy" symbol in the symbol line (1). Then the selection menu opens up.
 +
*In the selection menu, click on "Turn Off All Proxies (2).
 +
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
<BR/>
 
[[File:20151015-Ersteinrichtung-0261.png|700px|link=]]
 
 
<BR/><BR/>
 
<BR/><BR/>
Check your details; for corrections click on „Zurück“.
+
<!-- ******************************************************************* -->
 
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
Then click on „Ersteinrichtung starten“.
+
<!-- ******************************************************************* -->
 
+
[[File:04 01 03 01 350.png|700px|link=]]
Please note that this process can take several minutes.
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>[[File:20151015-Ersteinrichtung-0270.png|700px|link=]]
 
<BR/>
 
<BR/> The TrutzBox<sup>®</sup> checks if there are current updates; if yes, they will be downloaded now (1).
 
<BR/>
 
Please note that this process can take '''up to 30 minutes'''.
 
 
<BR/><BR/>
 
<BR/><BR/>
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* In the symbol line, the symbol "FoxyProxy switched off" (crossed out logo) indicates that the proxy is switched off (1).
<BR/>[[File:20151015-Ersteinrichtung-0281.png|700px|link=]]
+
* Durch Refresh, bzw. erneutes Aufrufen, also z.B. Klick auf (2), wird die Seite neu aufgebaut.
<BR/>
 
 
 
The updates are completely downloaded when the window " Abschluss der Einrichtung " appears.
 
Click directly - without clicking on steps 1 & 2 - on the "Fertig" button to end the setup process.
 
(Step 1 follows only after the installation; Step 2 can now be saved due to the further development of the TrutzBox).
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>[[File:20151015-Ersteinrichtung-0284.png|700px|link=]]
 
<BR/>
 
Then the TrutzBox user interface appears automatically and shows you:
 
'''Now the quick start is complete.'''
 
 
<BR/>
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
<BR/><BR/>
'''After downloading, your TrutzBox<sup>®</sup> is ready for operation.'''
+
<!-- ******************************************************************* -->
<BR/>
+
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
----
+
<!-- ******************************************************************* -->
The next step is to
+
[[File:04 01 03 01 360.png|700px|link=]]
* set up the TrutzBox as a proxy; see Chapter entitled "Connecting the device to the TrutzBox" and
 
* import the root certificate (if you want to use other devices with a browser in addition to your PC); see the "Certificates" chapter.
 
 
 
 
 
 
 
 
 
On every other device with a browser that uses the TrutzBox<sup>®</sup>, the certificate
 
* if browser is Firefox: must be imported into the Firefox certificate management,
 
* if browser is not Firefox: must be imported into the certificate management of the other browser, and thus automatically into the certificate management of the operating system. (see chapter "Certificates").
 
<BR/><BR/>
 
To use TrutzMail or TrutzChat, the TrutzBox certificate must also have been imported into the certificate management of the operating system.
 
 
<BR/><BR/>
 
<BR/><BR/>
The TrutzBox certificate only needs to be imported once into the certificate management of the operating system and is then available there for
+
* Since the proxy is now switched off, the Trutzburg (Trutzbox symbol) is not displayed in the upper right corner. (2).
*all non-Firefox browsers and
 
*TrutzMail and
 
*TrutzChat.
 
<BR/><BR/>
 
If you do not import the certificate into the browsers and notify the mail system, you will be prompted for security confirmation each time you open it.<br/>
 
Therefore it is recommended to download the TrutzBox<sup>®</sup> certificate from the TrutzBox<sup>®</sup> to the device with browser and import it into the browser afterwards.
 
 
 
 
<BR/>
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
<BR/><BR/>
 +
<!-- ******************************************************************* -->
 +
<!-- nächstes Bild nächstes Bild nächstes Bild nächstes Bild nächstes Bild -->
 +
<!-- ******************************************************************* -->
  
==== Disable IPv6 ====
+
===== Proxy Schalter für Browser "Chrome" =====
 +
'''Caution: Switching the TrutzBox on and off as a proxy (="Call forwarding") only makes sense if the browser to be used (or the terminal device used, e.g. PC) is operated in "proxy mode", i.e. the PC is connected to the Internet router (and not directly to the TrutzBox).'''
  
The TrutzBox works exclusively with IPv4 addresses.
+
If the add-on "Proxy SwitchyOmega" is implemented, the user can press and select a button in the header line of the Chrome Browser in the form of a ring:
If your TrutzBox is not connected to the router or your terminal device (e.g. PC) cannot reach the TrutzBox, one reason for this may be that the router assigns IPv6 addresses. To avoid this, it should be ensured that the router assigns IPv4 addresses.<BR/>
+
* To switch on: click on grey circle. Ochre circle shows: TrutzBrowse is switched on.<br />
To disable IPv6 addresses, proceed as follows:  
+
* to switch off: click on the ochre circle. Grey circle shows: TrutzBrowse is switched off.<br />
<BR/><BR/>
+
<br /><br />
[[File:325 IPv6 Unterstützung deaktivieren 021.png|700px|link=]]
+
How to implement the "Proxy SwitchyOmega" add-on:
<BR/><BR/>
+
<br />
In the FRITZ!box user interface, call up Internet.
+
[[File:20151203 Chrome Proxy switch 01-3 V01.png|700px|link=]]
<BR/><BR/>
+
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
Click on menu selection (1); click on "More Tools" (2). "Click on "Settings" (3).
<BR/>
 
  
[[File:325 IPv6 Unterstützung deaktivieren 031.png|700px|link=]]
+
<br /><br />
<BR/><BR/>
+
[[File:20151203 Chrome Proxy switch 04 V01.png|700px|link=]]
Click on " Zugangsdaten " (2).
+
<br />
<BR/><BR/>
+
Click on „Mehr Erweiterungen herunterladen“ (4).
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
  
[[File:325 IPv6 Unterstützung deaktivieren 041.png|700px|link=]]
+
<br />
<BR/><BR/>
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]  
Click on " IPv6" (1).
+
<br /><br />
<BR/>
+
[[File:20151203 Chrome Proxy switch 05-6 V01.png|700px|link=]]
The box under "IPv6 support" should not be checked (2).
+
<br />
<BR/><BR/>
+
I Enter "switchy" in the search field (5). Click on „+ HINZUFÜGEN“(6).
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
  
[[File:325 IPv6 Unterstützung deaktivieren 051.png|700px|link=]]
+
<br /><br />
<BR/><BR/>
+
[[File:20151203 Chrome Proxy switch 07 V01.png|300px|link=]]
If a check mark is set, deactivate this option.
+
<br />
<BR/><BR/>
+
Click on „Erweiterung hinzufügen“ (7).
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
  
=== WLAN Installation Guide===
+
<br />
==== Replacement installation of WLAN-Plus (e.g. after WLAN basic)====
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]
If you have already used another WLAN hardware (e.g. WLAN-Basic EDIMAX stick) with the TrutzBox, please proceed according to the following "WLAN Installation Info" BEFORE installing the built-in antenna.
 
 
<br /><br />
 
<br /><br />
Call Webmin
+
[[File:20151203 Chrome Proxy switch 07a V01.png|300px|link=]]
* via TrutzBox user interface: System -> Advanced settings, or
 
* via call: https://trutzbox:10000.
 
 
<br />
 
<br />
[[File:3_3_1 Ersatz-Einbau 020.png|700px|link=]]
+
The confirmation message that the switch has been added.
 +
<br /><br />
 +
[[File:20151203 Chrome Proxy switch 08 V01.png|700px|link=]]
 
<br />
 
<br />
In Webmin:
+
Click on „Skip guide“ (8).
*System (1)  
+
 
*-> Kommandozeile (2)
+
<br /><br />
* enter there in the field to the right „Führe Befehl aus:“ (3):  rm /etc/udev/rules.d/70-persistent-net.rules
+
[[File:20151203 Chrome Proxy switch 09-10 V01.png|700px|link=]]
* and click on "Führe Befehl aus" (4).
 
 
<br />
 
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
Enter „TrutzBox“ (09). Click on „PAC Profile“ (10).
  
 
<br />
 
<br />
[[File:3_3_1 Ersatz-Einbau 030.png|700px|link=]]
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 +
<br /><br />
 +
[[File:20151203 Chrome Proxy switch 11-13 V01.png|700px|link=]]
 +
<br />
 +
Enter <nowiki>„http://trutzbox/api/proxy/pac“</nowiki> (11). Click on „Download Profile Now“ (12). Click on „Apply changes“ (13).
 +
 
 +
<br /><br />
 +
[[File:20151203 Chrome Proxy switch 14-15 V01.png|700px|link=]]
 
<br />
 
<br />
Shutdown TrutzBox
+
Click on „Interface“ (14). Click on „Quick Switch“ anklicken (15).
*using Webmin: System (1)
+
 
*-> System-Start und –Stop (2),
 
* scroll down (3) and
 
* click on „System herunterfahren“ (4).
 
 
<br />
 
<br />
When LEDs are off, remove TrutzBox from the power supply, open the housing and install the built-in antenna (see the following WLAN installation instructions).
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<br /><br />
 
<br /><br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
[[File:20151203 Chrome Proxy switch 16-18 V01.png|700px|link=]]
 +
<br />
 +
Pull "TrutzBox" upwards (16). " Pull up [Direct]" (17). "Click on "Apply changes (18).
  
==== First installation of WLAN-Plus ====
+
<br /><br />
* Attention, the WLAN card can be damaged by electrical (discharge) charging. Before opening the WLAN card bag and touching the WLAN card, be sure to touch an earthed metal part (e.g. radiator) or at least the TrutzBox housing with both hands (to drain off possible charging).
+
[[File:20151203 Chrome Proxy switch 19-20 V01.png|700px|link=]]
[[File:20160911 WLAN Einbau 110.png|700px|link=]]
+
<br />
<BR/><BR/>
+
To switch on: click on the grey circle (19). Ochre circle shows: TrutzBrowse is switched on.<br />
* Check scope of delivery: WLAN card (1), two antenna cables (2) and two antennas (3).
+
To turn off: click the ochre circle (20). Grey circle shows: TrutzBrowse is switched off.<br />
* If necessary, shut down the TrutzBox and disconnect all cable connections, including the power supply.
 
* Open the TrutzBox by loosening the 4 screws and remove the housing cover. (4).
 
* Check that the cables of the supplied WLAN card are still firmly plugged onto the WLAN card (5).
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:20160911 WLAN Einbau 120.png|700px|link=]]
 
<BR/><BR/>
 
* Carefully insert the card at an angle into the middle terminal strip (6) seen from behind and carefully press the card downwards until it clicks into place on both sides (7).
 
* Remove the two rubber caps inserted into the back of the TrutzBox (8).
 
  
<BR/><BR/>
+
<br />
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
[[#top|-> <u>Table of Contents </u> (of this manual)]]  
<BR/><BR/>
+
<br /><br />
  
[[File:20160911 WLAN Einbau 130.png|700px|link=]]<BR/><BR/>
+
=== Encrypted Mailing - TrutzMail ===
* Insert the two antenna cables into the two outer cut-out holes on the TrutzBox rear side (from the inside) (9) - Attention: the thread and hole are flattened at the top - and (from the outside) screw on (10) with washer and nut (8 mm wrench).<BR/>
+
You can use TrutzMail either via
[[#top|-> <u>Table of Contents </u> (of this manual)]]
+
* an immediately usable web-mailer: http://trutzbox/mail (Roundcube),
<BR/><BR/>
+
* your usual e-mail system (e.g. Outlook) or
[[File:20160911 WLAN Einbau 140.png|700px|link=]]
 
<BR/><BR/>
 
* Screw on the two antennas (11).
 
* In the left position (seen from behind) the SSD is located (12).
 
* Replace the housing cover on the TrutzBox and tighten it with the 4 screws..
 
* Connect TrutzBox to router and power supply - so that it boots <BR/>( wait approx. 10 minutes).<BR/>
 
  
If a WLAN has not already been set up in the TrutzBox interface, set the SSID (name of the TrutzBox WLAN network) and the access password in the TrutzBox interface under Network -> WLAN.
+
* both ways.
  
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/>
 
  
===SSD Installation Guide===
+
==== Using the Web-Mailer====
* Attention, the WLAN card can be damaged by electrical (discharge) charging. Before opening the WLAN card bag and touching the WLAN card, be sure to touch an earthed metal part (e.g. radiator) or at least the TrutzBox housing with both hands (to drain off possible charging).
+
The Web mailer is called via https://trutzbox/mail.<br /><br />
* Shut down the TrutzBox and disconnect all cables, including the power supply.
+
[[File:TrutzMail Web-Mailer 010.png|700px|link=]]
  
<BR/><BR/>
+
The login is done by entering the user name and password. Both were created by the administrator either at the [[Main Page#Create first TrutzMail address|<u>Setup</u>]] or [Manage Main Page#User|<u>after</u>]].<br /><br />
[[File:SSD EinbauAustauschAnleitung 010.png|700px|link=]]
 
Loosen the 4 screws (1) and remove the housing cover (2).
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 020.png|700px|link=]]
 
<BR/><BR/>
 
As necessary, remove the SD card (3) or the SSD card/plate (4).
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 030.png|700px|link=]]
 
<BR/><BR/>
 
'''Remove SD card:''' Grab SD card (5) …
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 040.png|700px|link=]]
 
<BR/><BR/>
 
… and carefully pull out the SD card (6).
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 050.png|700px|link=]]
 
<BR/><BR/>
 
  
'''Remove the SSD card: ''' Carefully push both locking springs (7) and (8) backwards, towards the back of the housing …
+
[[File:TrutzMail Web-Mailer 020.png|700px|link=]]
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 060.png|700px|link=]]
 
<BR/><BR/>
 
… and carefully lift the detached SSD card upwards (9).
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
  
[[File:SSD EinbauAustauschAnleitung 070.png|700px|link=]]
+
Eingangs sehen Sie den Ordner "Posteingang".
<BR/><BR/>
 
Carefully pull out the '''old SSD card''' (10) at an angle upwards..
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 080.png|700px|link=]]
 
<BR/><BR/>
 
Carefully insert the '''new SSD card''' (11) at an angle to the bottom....
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 090.png|700px|link=]]
 
<BR/><BR/>
 
... and insert the SSD card (12) into the holder with gentle pressure.
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 100.png|700px|link=]]
 
<BR/><BR/>
 
Press SSD card on "free side" with feeling down (13)...
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 110.png|700px|link=]]
 
<BR/><BR/>
 
... until SSD card audibly engages in both retaining springs (14).
 
<BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 
[[File:SSD EinbauAustauschAnleitung 120.png|700px|link=]]
 
<BR/><BR/>
 
Slide the housing back on (15) and screw in the 4 screws again (16).
 
<BR/><BR/>
 
'''Good luck with your new SSD!'''
 
<BR/><BR/>
 
[[#top|-> <u>Table of Contents </u> (of this manual)]]
 
<BR/><BR/>
 

Revision as of 18:32, 24 April 2018

1 Use of the TrutzBox® (-> for users)

The TrutzBox® is delivered by Comidio with security settings suitable for everyday use, so that even inexperienced users can email and surf immediately protected and without a trace.

The following sections describe the functions and options that the inexperienced user can use immediately after setting up TrutzBox.

These include:

  • TrutzBrowse: Traceless surfing through modified, incomprehensible browser profile data.
  • TrutzMail: End-to-end email service with encrypted content and encrypted metadata.
  • TrutzContent: Maximum protection for children and young people by using filter lists to block inappropriate websites.
  • TrutzRTC': Real-time communication with TrutzChat (Messaging) and TrutzMeeting (Audio and Video Conferencing Service)
  • TrutzBase: Use of modern virus protection, firewall and intrusion detection systems


1.1 Traceless Surfing - TrutzBrowse

Independent of browser (e.g. Mozilla Firefox, Chrome, Internet Explorer, Safari, etc.) and operating system (Microsoft windows, Apple iOS, Linux), the TrutzBox helps to avoid data tracing while surfing.


Use your browser as usual (in the following as an example with windows 7 and Firefox).

1.1.1 TrutzBrowse in standard operation


20160301 Slider mit Thor 2.png


The TrutzBurg symbol in the upper right corner of the website indicates that TrutzBrowse is activated with the security settings. With the above setting, the TrutzBox (symbol: TrutzBurg) and the Tor network (symbol: onion) are activated.

The color of the TrutzBurg shield indicates the setting of the security slider for this URL; green = level 1 = highest security level; red = level 9 = lowest security level.

If there are operating elements on the website which are hidden by the TrutzBurg and can therefore no longer be operated, the TrutzBurg can be moved to another corner of the browser window.
For touch screens, simply touch the symbol for longer than 1s.

20160301 Slider mit Tor & TrutzBrowse 4.png

After clicking on the TrutzBurg, the security slider and four further functions are available.

The Security-Slider can be set to 10 security levels (Level 1 = highest protection up to Level 9 = lowest protection; Level 10 = for this website the TrutzBox is switched off). From level 1-9, the user can make the settings himself. If set to level 10 (TrutzBox protection is disabled), only the administrator can reset the level for this website.


On delivery, the security slider is set to "highest security level" (level 1, green, far left).



If the website shows malfunctions, e.g. because it wants to store a cookie, the user can gradually deactivate individual security and anonymisation measures by dragging the security slider to the right (towards red) in order to restore the website's functionality. However, the security level should only be reduced for trusted websites.




20160301 TrutzBrowse Blockierung & Zugriffe 2.png

Click on "Details" to see a list of all web accesses accessed from this website.


Blocked HTTP calls are marked by a "red crossed out circle“. The overview also shows the HTTP headers that have not been completely blocked (marked by a "green tick in a green circle"). This makes it obvious which data was transmitted from the browser to a Web server ("Request" tab) and which data went from a Web server to the browser ("Response" tab).
Depending on how the TrutzBox® is configured for the current position of the Security Slider, certain HTTP header data may not be transmitted to the web server at all (blocked headers) or may be changed (replaced headers).
On the left, the HTTP calls are listed, which are automatically called in the background - without the user's active intervention - in addition to the web page called up by the user (here: www.krone.at). On the right under "Details" you can see which header information has been blocked or replaced.
Click on one of the HTTP calls listed on the left to obtain additional information on this.
Set a check mark to " Nur Blockierungen anzeigen ", then only the blockings are listed.

-> Table of Contents (of this manual)

1.1.2 TrutzBrowse for experts

The TrutzBox® monitors web access and is thus able to prevent unwanted data traffic. The TrutzBox® distinguishes whether a device or a user calls up a web page directly or whether a web server - after the deliberately called up web page has been loaded - contacts further web pages and loads them without the user's knowledge and without his consent.

The TrutzBox® offers two different basic functions for this purpose:

1. TrutzContent:

A content filter that prevents a device or user from directly accessing a particular Web page. Examples of unwanted calls:

  • A young person wants to load a website with content harmful to young people.
  • An Internet device unnoticedly calls up a web page in the background without a user deliberately initiating it. These can be TVs, washing machines or game consoles (if they are connected to the Internet), or even the standard Internet browser of the user's PC, which in turn contacts Mozilla or Google or the server of a plug-in provider independently, for example.

The TrutzBox® checks if the contact to such a server is allowed and blocks the connection to this server if necessary.

2. TrutzBrowse:

A user or an Internet-enabled device has validly accessed a Web page. When loading the page, however, this website contacts other web servers (often commercial data trackers) that may be interested in the user data. TrutzBox® monitors calls to other web servers that are indirectly contacted without the user's knowledge during the loading process of the deliberately accessed web page.

In both case 1 (TrutzContent) and case 2 (TrutzBrowse), the TrutzBox® compares every web page called up with the web pages (filter lists) known to it. Comidio provides approx. 110 filter lists covering 55 different Internet topics. These filter lists are updated regularly. The TrutzBox® Administrator can add own filter lists if required.


Approach of the TrutzBox®:

Wenn ein Internet-Nutzer eine Webseite aufruft, dann prüft die TrutzContent Funktion zunächst, ob der PC und/oder der Nutzer, der diesen Webseitenaufruf angestoßen hat, diese Seite überhaupt aufrufen darf. Soll diese Webseite gemäß den Filterlisten blockiert werden, dann bekommt der Internet-Nutzer im Browser eine Fehlermeldung angezeigt.

If the website can be accessed, the TrutzBox® allows the data from the web server to pass to the browser, but it monitors each call to other web servers that the website then contacts automatically. Usually a website loads additional content from many other web servers. For each contact with a web server other than the originally called web server, the TrutzBox® checks whether this later called web server is in a filter list group "TrutzBrowse". If it is listed there, the connection to this server will be blocked.


This prevents data tracker calls that are programmed into most websites, and data trackers cannot spy on user behavior.

TrutzBrowse 90 HTTP Requ-Resp ur.png

Each time a Web server is granted (permitted) access, information is sent from the Web browser to the Web server via the HTTP header (http request header). Without the TrutzBox® the browser would then deliver this requested data to the web server. This can be very personal data, such as which other pages you have recently called up, are you currently logged on to Facebook or how exactly does your PC/browser configuration look in order to recognize you on further calls. The HTTP header filter also controls the setting and retrieval of cookies


With its TrutzBrowse function, the TrutzBox® is thus able to control the entire HTTP data exchange on the Internet and to block or falsify these HTTP header data as long as they are not absolutely necessary..

-> Table of Contents (of this manual)

1.1.2.1 Handling SSL connections

The proxy can only break (and analyze) an SSL-encrypted connection between a program and a server if the SSL key has been signed by one of the known certificate authorities. Here are two cases where breaking the encrypted connection does not work:

  • if an app establishes an encrypted connection to the server, but the key used is a self-generated key and has therefore not been signed by an official certification authority. If the app is a browser, the user is asked if he accepts the server. If the app is not a browser, the user cannot be requested.
  • if the client is authenticated. In this case, a key is usually programmed into the client.


In all cases where the SSL connection cannot be broken, the SecSlider is automatically set to L10 and thus the data transfer is no longer analyzed. This ensures that apps still work "without manual intervention". The user (or the TrutzBox administrator) can deactivate this automatic feature in the "Configure filter" menu with the option "If SSL errors occur, automatically deactivate filtering for the selected domain". The data connection is nevertheless displayed in "Status" for checking purposes. Since this automatic activation only becomes effective if the server has not yet been set in the slider table, this automatism can also prevent a single server if the SecSlider is set manually to any value for this server.



-> Table of Contents (of this manual)

1.1.3 Install proxy switch for activating/deactivating the TrutzBox® in the browser

Attention: Switching the TrutzBox on and off as a proxy (="Call forwarding") only makes sense if the browser to be used (or the terminal device used, e.g. PC) is operated in "proxy mode", i.e. the PC is connected to the Internet router (and not directly to the TrutzBox).

If the browser to be used (or the end-device used, e.g. PC) is operated in "transparent mode", i.e. the PC is connected directly to the TrutzBox (and not directly to the Internet router), I do not need a switch, as the PC is constantly protected via the TrutzBox and switching a proxy on or off makes no difference..


As is known, it is possible to activate or deactivate the TrutzBox® functionality "TrutzBrowse" by activating/deactivating the "PAC" file in the browser settings.

If you want to save yourself these "efforts", you can also install a "proxy switch" (in the form of a downloadable "Add-On" = additional function) in the respective browser and then easily activate or deactivate the TrutzBrowse functionality by simply pressing or selecting it in the browser header line.

The following shows the installations of two proxy switches:

Of course, other proxy switches can also be implemented and used.

1.1.3.1 Proxy Switch for "Firefox" Browser

Attention: Switching the TrutzBox on and off as a proxy (=" Redirection") only makes sense if the browser to be used (or the end-device used, e.g. PC) is operated in "Proxy Mode", i.e. the PC is connected to the Internet router (and not directly to the TrutzBox).

If the„FoxyProxy Standard“ add-on is implemented, the user can activate and deactivate the "Trutzbox" proxy and thus the TrutzBrowse function by clicking the Proxy Switcher button (orange fox head) in the browser header.:

  • to switch on: by clicking on the symbol "crossed out, orange fox head" the FoxyProxy selection window appears; there click on the green line "Use proxy Trutzbox for all URLs (ignore patterns)'" and the proxy is switched on and the symbol "orange fox head" appears.
  • to turn off: by clicking on the symbol "orange fox head" the FoxyProxy selection window appears; click on the red line "Turn Off All Proxies" and the proxy is switched off and the symbol "crossed out, orange fox head" appears.


The"FoxyProxy Standard" add-on is installed as follows:

04 01 03 01 210.png

  • Click on "Extras" (1).
  • Click on "Add-ons" (2).


-> Table of Contents (of this manual)

04 01 03 01 220.png

  • Ganz nach unten scrollen (1).
  • Click on "Sehen Sie sich weitere Add-ons an!" (2).


-> Table of Contents (of this manual)

04 01 03 01 230.png

  • Enter "proxy switch" in the search field (1).
  • Click on "FoxyProxy Standard" (2).


-> Table of Contents (of this manual)

04 01 03 01 240.png

  • Click on "+ Zu Firefox hinzufügen" (1).


-> Table of Contents (of this manual)

04 01 03 01 250.png

  • Click on "Hinzufügen" (1).


-> Table of Contents (of this manual)

04 01 03 01 260.png

  • The symbol "FoxyProxy switched off" (crossed out logo) is displayed in the symbol line. (1).
  • Scroll all the way down (2).


-> Table of Contents (of this manual)

04 01 03 01 270.png

  • If this view appears, click on "Cancel". (1).


-> Table of Contents (of this manual)

04 01 03 01 280.png

  • To enter the Trutzbox as a proxy: Click on "Add" (1).


-> Table of Contents (of this manual)

04 01 03 01 290.png

  • Drop down the selection field (1).
  • Click on "HTTP" (2).


-> Table of Contents (of this manual)

04 01 03 01 300.png

  • Enter descriptive name, e.g. "Trutzbox“ (1).
  • Enter "trutzbox" as server name (2).
  • Enter "8081" as the port address. (3).
  • Click on "Save" (4).


-> Table of Contents (of this manual)

04 01 03 01 310.png

  • Click on the symbol "FoxyProxy switched off" (crossed out logo) in the symbol line. (1).
  • Switch on the Trutzbox as proxy by clicking on "Use proxy Trutzbox for all URLs" (2).


-> Table of Contents (of this manual)

04 01 03 01 320.png

In the symbol line, the "FoxyProxy" symbol (1) indicates that the proxy is switched on.
-> Table of Contents (of this manual)

04 01 03 01 330.png

  • Test input of e.g. "focus.de" (1).
  • The Trutzburg (Trutzbox symbol) appears in the upper right corner in the color of the slider setting and shows the number of avoided tracker calls (2).


-> Table of Contents (of this manual)

04 01 03 01 340.png

  • To switch off the proxy: click on the "FoxyProxy" symbol in the symbol line (1). Then the selection menu opens up.
  • In the selection menu, click on "Turn Off All Proxies (2).


-> Table of Contents (of this manual)

04 01 03 01 350.png

  • In the symbol line, the symbol "FoxyProxy switched off" (crossed out logo) indicates that the proxy is switched off (1).
  • Durch Refresh, bzw. erneutes Aufrufen, also z.B. Klick auf (2), wird die Seite neu aufgebaut.


-> Table of Contents (of this manual)

04 01 03 01 360.png

  • Since the proxy is now switched off, the Trutzburg (Trutzbox symbol) is not displayed in the upper right corner. (2).


-> Table of Contents (of this manual)

1.1.3.2 Proxy Schalter für Browser "Chrome"

Caution: Switching the TrutzBox on and off as a proxy (="Call forwarding") only makes sense if the browser to be used (or the terminal device used, e.g. PC) is operated in "proxy mode", i.e. the PC is connected to the Internet router (and not directly to the TrutzBox).

If the add-on "Proxy SwitchyOmega" is implemented, the user can press and select a button in the header line of the Chrome Browser in the form of a ring:

  • To switch on: click on grey circle. Ochre circle shows: TrutzBrowse is switched on.
  • to switch off: click on the ochre circle. Grey circle shows: TrutzBrowse is switched off.



How to implement the "Proxy SwitchyOmega" add-on:
20151203 Chrome Proxy switch 01-3 V01.png
Click on menu selection (1); click on "More Tools" (2). "Click on "Settings" (3).



20151203 Chrome Proxy switch 04 V01.png
Click on „Mehr Erweiterungen herunterladen“ (4).


-> Table of Contents (of this manual)

20151203 Chrome Proxy switch 05-6 V01.png
I Enter "switchy" in the search field (5). Click on „+ HINZUFÜGEN“(6).



20151203 Chrome Proxy switch 07 V01.png
Click on „Erweiterung hinzufügen“ (7).


-> Table of Contents (of this manual)

20151203 Chrome Proxy switch 07a V01.png
The confirmation message that the switch has been added.

20151203 Chrome Proxy switch 08 V01.png
Click on „Skip guide“ (8).



20151203 Chrome Proxy switch 09-10 V01.png
Enter „TrutzBox“ (09). Click on „PAC Profile“ (10).


-> Table of Contents (of this manual)

20151203 Chrome Proxy switch 11-13 V01.png
Enter „http://trutzbox/api/proxy/pac“ (11). Click on „Download Profile Now“ (12). Click on „Apply changes“ (13).



20151203 Chrome Proxy switch 14-15 V01.png
Click on „Interface“ (14). Click on „Quick Switch“ anklicken (15).


-> Table of Contents (of this manual)

20151203 Chrome Proxy switch 16-18 V01.png
Pull "TrutzBox" upwards (16). " Pull up [Direct]" (17). "Click on "Apply changes (18).



20151203 Chrome Proxy switch 19-20 V01.png
To switch on: click on the grey circle (19). Ochre circle shows: TrutzBrowse is switched on.
To turn off: click the ochre circle (20). Grey circle shows: TrutzBrowse is switched off.


-> Table of Contents (of this manual)

1.2 Encrypted Mailing - TrutzMail

You can use TrutzMail either via

  • an immediately usable web-mailer: http://trutzbox/mail (Roundcube),
  • your usual e-mail system (e.g. Outlook) or
  • both ways.


1.2.1 Using the Web-Mailer

The Web mailer is called via https://trutzbox/mail.

TrutzMail Web-Mailer 010.png

The login is done by entering the user name and password. Both were created by the administrator either at the Setup or [Manage Main Page#User|after]].

TrutzMail Web-Mailer 020.png

Eingangs sehen Sie den Ordner "Posteingang".

Retrieved from "https://wiki.trutzbox.de/w/index.php?title=Trutzbox_Manual&oldid=3975"