McAfee Network Security Platform

Similar documents
McAfee Network Security Platform

McAfee Network Security Platform

McAfee Network Security Platform

ISM-PRO SOFTWARE DIGITAL MICROSCOPE OPERATION MANUAL

Installation manual. Daikin Altherma LAN adapter BRP069A61 BRP069A62. Installation manual Daikin Altherma LAN adapter. English

FOMA M702iG Manual for Data Communication

Programming Guide. Neurostimulators for Chronic Pain. RestoreSensor, RestoreUltra, RestoreAdvanced, and PrimeAdvanced

mac profile Configuration Guide Adobe Photoshop CS/CC Sawgrass Virtuoso SG400/SG800 Macintosh v

INSTALLER REFERENCE GUIDE

Question Paper Wednesday 13 Thursday 14 January 2010

RWM4400UH High Performance Hand Held Wireless Microphone System

* * 98/9949WDC. 1-Point Latch (LBL) 2-Point Latch includes these additional parts. Customer Service

Operation Manual. Product Code 885-V51. Computerized Embroidery Machine GETTING READY EMBROIDERY APPENDIX

Computerized Embroidery and Sewing Machine. Operation Manual

PROGRAMMING MANUAL MTMA/01 MTMV/01 FB00329-EN

Elettra Evolution OK! OK! b. User manual

1/4" Multi-Turn Fully Sealed Container Cermet Trimmer

POWER TRIM. Table of Contents. Section 5C - Dual Power Trim System

GETTING READY SEWING BASICS UTILITY STITCHES APPENDIX. Operation Manual. Computerized Sewing Machine

COMPUTER NETWORK DESIGN Network layer protocols

Operation Manual GETTING READY SEWING BASICS UTILITY STITCHES APPENDIX. Computerized Sewing Machine Product Code: 888-V12/V13/V15

IMPORTANT SAFETY INSTRUCTIONS

Macroscopic and Microscopic Springs Procedure

Operation Manual GETTING READY SEWING BASICS UTILITY STITCHES EMBROIDERY APPENDIX. Easy Thread Cassette System

WORKSHOP 15 PARASOLID MODELING

Operation Manual GETTING READY SEWING BASICS UTILITY STITCHES APPENDIX. Computerized Sewing Machine

IMPORTANT SAFETY INSTRUCTIONS

CONGRATULATIONS ON CHOOSING OUR MACHINE PLEASE READ BEFORE USING THIS MACHINE

IMPORTANT SAFETY INSTRUCTIONS

SERVICE MANUAL 9940/20/10

CS2204 DIGITAL LOGIC & STATE MACHINE DESIGN SPRING 2005

ASY P.O. BOX 729 TERRELL, TEXAS / PAGE 1 OF 13 SAM

IMPORTANT SAFETY INSTRUCTIONS

Operation Manual GETTING READY SEWING BASICS UTILITY STITCHES APPENDIX. Computerized Sewing Machine Product Code: 888-V14

Operation Manual. Sewing Machine. Product Code: 888-F42

Resistors, Current and Voltage measurements, Ohm s law, Kirchhoff s first and second law. Kirchhoff s first Objectives:

Section 6.1 Law of Sines. Notes. Oblique Triangles - triangles that have no right angles. A c. A is acute. A is obtuse

For installation help please visit Please Do Not Return Product to Store!

Operation Manual. Read before use. Read when additional information is required. GETTING READY SEWING BASICS UTILITY STITCHES APPENDIX

Analog Input Modules

The Math Learning Center PO Box 12929, Salem, Oregon Math Learning Center

3/8" Square Multi-Turn Cermet Trimmer

AGA56... Analog Input Modules. Siemens Building Technologies HVAC Products

1/4" Multi-Turn Fully Sealed Container Cermet Trimmer

Probability and Statistics P(A) Mathletics Instant Workbooks. Copyright

English Printed in Taiwan XG

Proposed Cable Tables for SAS2

IMPORTANT SAFETY INSTRUCTIONS

Detection of Denial of Service attacks using AGURI

Operation Manual. Embroidery Machine. Product Code: 888-M30/M31

Patterns and Algebra

Operation Manual Sewing Machine

INSTALLATION & OPERATION INSTRUCTIONS LEVER HANDLE LOCKSETS.

Math Circles Finite Automata Question Sheet 3 (Solutions)

Balancing Your Life. Ideas that might help you

GLONASS PhaseRange biases in RTK processing

1" MORTISE INSTALLATION INSTRUCTIONS

510 Series Color Jetprinter

MODEL 351 POWERGLIDE SERIES INSTRUCTIONS FOR INSTALLING SARGENT DOOR CLOSERS WITH "H" HOLDER ARMS

Installation Data for Access Stairs and Handrails. PD 63 rev C 01/12/14

DIN C-FORM & R-FORM PLUG, DIN SERIES VERTICAL, RIGHT ANGLE, SOLDER TAIL OR PRESS-FIT TERMINATION,.100" BACKPLANE REAR PLUG 3M TM

Click Here to BEGIN: Independent Agent Contracting Link

(1) Primary Trigonometric Ratios (SOH CAH TOA): Given a right triangle OPQ with acute angle, we have the following trig ratios: ADJ

Job Sheet 2. Variable Speed Drive Operation OBJECTIVE PROCEDURE. To install and operate a Variable Speed Drive.

Safety Relay Unit. Main contacts Auxiliary contact Number of input channels Rated voltage Model Category. possible 24 VAC/VDC G9SA-501.

001CK CK0012 FR-001CK0013 FR EN English

Pearson Education Limited Edinburgh Gate Harlow Essex CM20 2JE England and Associated Companies throughout the world

3/8" Square Multi-Turn Cermet Trimmer

ABB STOTZ-KONTAKT. ABB i-bus EIB Current Module SM/S Intelligent Installation Systems. User Manual SM/S In = 16 A AC Un = 230 V AC

Operation Manual Sewing

8.1. The Sine Law. Investigate. Tools

Sequential Logic (2) Synchronous vs Asynchronous Sequential Circuit. Clock Signal. Synchronous Sequential Circuits. FSM Overview 9/10/12

A Highly Interactive Pedigree Viewer

by Kathy Brown of The Teacher s Pet

Algebra Practice. Dr. Barbara Sandall, Ed.D., and Travis Olson, M.S.

High power busbar trunking

DCM Series DC T-Series Non-Spring Return Rotary Electronic Damper Actuators

REMOTE IR/LED MODULE REMOTE 3 REVISION HISTORY C DETAIL A SCALE 1 : 1.5 I\O PANEL - SHEET 1 OF 6 ECO ZONE REV. DESCRIPTION DATE APPR'D

PORCH. Canopies and Accessories DECKING SYSTEMS. For more information. STOCKISTS For details of your nearest stockist for any product:

Aluminium Roof Outlets - Introduction to Detail Outlets

EBU KNOCKOUT COMPETITIONS

LORING THE SMARTER WAY TO ROAST PROPRIETARY ITEM:

Geometric quantities for polar curves

S-1. PANEL DCPL B-1 NC_0565_02 Rm. B123A. Latch. HID Card Reader

From Off-The-Shelf to Market-Ready New Age Enclosures is your Single Source Solution. Let us quote modifiying our Stock Enclosures to meet your

GXR-GPS GXR-GPS-485 User Manual

Evaluating territories of Go positions with capturing races

Systems and Principles Unit Syllabus

Samantha s Strategies page 1 of 2

Exercise 1-1. The Sine Wave EXERCISE OBJECTIVE DISCUSSION OUTLINE. Relationship between a rotating phasor and a sine wave DISCUSSION

From Off-The-Shelf to Market-Ready New Age Enclosures is your Single Source Solution. Let us quote modifiying our Stock Enclosures to meet your

CS2204 DIGITAL LOGIC & STATE MACHINE DESIGN fall 2008

Basic Embroidery. Chapter 5 COMBINING PATTERNS BEFORE EMBROIDERING PREPARING THE FABRIC SELECTING PATTERNS...

Kirchhoff s Rules. Kirchhoff s Laws. Kirchhoff s Rules. Kirchhoff s Laws. Practice. Understanding SPH4UW. Kirchhoff s Voltage Rule (KVR):

Defining the Rational Numbers

GENERAL NOTES USE OF DESIGN DATA SHEETS:

FTU263. Ripple Control Receiver. Technical Data. Load Management Ripple Control

BACK DOOR GLASS REPLACEMENT HINT:

ALONG with the maturity of mobile cloud computing,

Parsing Permutation Phrases

Transcription:

M-2750 Sensor Quik Strt Guide Revision B MAfee Network Seurity Pltform This Quik Strt Guide explins how to quikly set up nd tivte your MAfee Network Seurity Pltform M-2750 Sensor in in-line mode. Cling the Sensor's Smll Form-ftor Pluggle (SFP) Gigit Ethernet Monitoring ports for in-line mode enles you to onfigure the Sensor to drop ttks efore they reh their trget. If you re setting up your Sensor in SPAN or Tp mode, see the Sensor's Produt Guide for ling instrutions. All produt doumenttion referened in this Quik Strt Guide is found on the MAfee Servie Portl. The Sensor pnel The M-2750 Sensor is 2RU (2 rk unit) nd is equipped with the following omponents: 1 RJ-45 10/100/1000 Mngement port (1) 6 Externl Compt Flsh port (1) 2 RS-232C Console port (1) 7 Front pnel LEDs (4) 3 RS-232C Auxiliry port (1) 8 Power supply A (inluded) 4 RJ-11 Fil-Open Control ports (10) 9 Power supply B (optionl; sold seprtely) 5 SFP One Gigit Ethernet Monitoring ports (20) 10 Bk pnel LEDs (5) 1

Sensor setup overview This setion explins how to position nd le the vrious ports of your Sensor. This setion lso riefly explins how to instll the Mnger nd then dd the Sensor to the Mnger, nd verify tht you hve suessfully estlished ommunition etween the Sensor nd the Mnger. 1 Positioning the Sensor Relese the rils nd tth inner rils (of three-in-one set) to the hssis y fstening it with the srews provided. Atth L-shpe nd externl rils to the rk frme. Instll the Sensor into rk nd mount ers. You n lso mid-mount the Sensor (optionl). 2

d Instll the redundnt power supply (optionl). e Instll modules in the Sensor's Monitoring ports. 2 Cling the Mngement nd Console ports Ensure the Sensor is powered OFF efore tthing les. d Plug Ctegory 5e Ethernet le in the Mgmt port. Plug the other end of the le into the network devie onneted to your Mnger server. Plug the DB9 Console le supplied in the Sensor ox into the Console port (leled Console on the Sensor front pnel). Connet the other end of the Console port le diretly to COM port of the PC or terminl server you will e using to onfigure the Sensor (for exmple, PC running orretly onfigured Windows HyperTerminl softwre). You must onnet diretly to the onsole for initil onfigurtion; you nnot onfigure the Sensor remotely. 3

The required settings for HyperTerminl re: Bud rte: 38400 Stop Bits: 1 Numer of Bits: 8 Control Flow: None Prity: None e Plug the femle end of power le into the power inlet nd plug the other end into power soure. The Sensor ships with stndrd US power nd interntionl les. The M-2750 does not hve power swith; you need to only plug the power le into power soure. 3 Cle the Monitoring ports This proedure desries how to le Sensor to run in in-line mode. Plug the le pproprite for use with your SFP module into one of the Monitoring ports leled xa (for exmple, 1A). MAfee supports only those SFP modules purhsed through MAfee or from MAfee-pproved vendor. Plug nother le into the peer of the port used in the erlier step. This port will e leled xb (for exmple, 1B). Connet the other end of eh le to the network devies tht you wnt to monitor. (For exmple, if you pln to monitor trffi etween swith nd router, onnet the le onneted to 1A to the router nd the one onneted to 1B to the swith.) For instrutions on how to le the Sensor to run in other operting modes, see the MAfee Network Seurity Pltform Sensor Produt Guide for your Sensor model. 4 Instll the Mnger Softwre For detiled instrutions, refer to MAfee Network Seurity Pltform Instlltion Guide. You must hve dministrtor privileges on the trget Windows server to instll the Mnger softwre. A MySQL dtse is inluded with the Mnger nd is instlled (emedded) utomtilly on your trget Windows server during this proess. 4

Following steps riefly explin the Mnger instlltion: d e f Prepre the system ording to the requirements outlined in MAfee Network Seurity Pltform Instlltion Guide nd the Network Seurity Pltform Relese Notes. Close ll open pplitions. Go to MAfee Updte Server nd log on, using the grnt numer nd pssword. Go to Mnger Softwre Updtes folder nd selet the ltest Mnger softwre version ville. Downlod the zip file to the trget Windows server nd extrt the setup file. Doule-lik Mnger_<version>_setup.exe nd follow the on sreen prompts. 5 Strt the Mnger Clik Strt Progrms MAfee Network Seurity Mnger Network Seurity Mnger. You do not require liense file for using Mnger/Centrl Mnger version 5.1.17.2 or ove, nd 6.0.7.x or ove. 6 Adding the Sensor to the Mnger The Mnger displys the Login ID pge. Log on to the Mnger. The defult Login ID is dmin nd the defult Pssword is dmin123. Clik Configure. 5

An dd-on liense is required to enle NAC on M-series Sensors. To import nd ssign n dd-on liense, go to Devie List Add-On Lienses pge. For more informtion, see MAfee Network Seurity Pltform Instlltion Guide. You do not require liense file to enle IPS on M-series Sensors. d To dd Sensor in the Mnger, lik Devie List Devies, nd then lik New. The Add New Devie pge is displyed. e Enter informtion in the pproprite fields nd lik Sve. Rememer the Shred Seret vlue entered t this step. This vlue is used while you onfigure the Sensor. For more informtion on the fields in Add New Devie pge, see MAfee Network Seurity Pltform Instlltion Guide. 7 Configuring Sensor informtion Configuring the Sensor involves speifying network informtion, nme, nd the shred seret key tht the Sensor uses to estlish seure ommunition with the Mnger. Use the sme nme nd key vlues set erlier. The first time you onfigure the Sensor, you must hve physil ess to the Sensor. 6

At ny time during onfigurtion, you n type question mrk (?) to get help on the Sensor ommnd-line interfe (CLI) ommnds. For list of ll ommnds, type ommnds. Log on to the Sensor using the terminl onneted to the Console port. At the prompt, log on using the defult Sensor user nme (dmin) nd pssword (dmin123). Optionl, ut reommended Chnge the Sensor pssword. At the prompt, type: psswd. The Sensor prompts you to enter the new pssword nd prompts you for the old pssword. A pssword must ontin etween 8 nd 25 hrters, is se-sensitive, nd n onsist of ny lphnumeri hrter or symol. d Set the nme of the Sensor: You n enter the setup ommnd t the prompt nd this will utomtilly prompt you to provide the neessry informtion or you n use the set ommnd insted. If you use the set ommnd, you must mnully enter the omplete ommnd syntx. Exmple: At the prompt, type: set sensor nme <word>. Exmple: set sensor nme HR_sensor1 The Sensor nme is se-sensitive hrter string up to 25 hrters. The string n inlude hyphens, undersores, nd periods, nd must egin with letter. e f g If the Sensor is not on the sme network s the Mnger, set the ddress of the defult gtewy. At the prompt, type: set sensor gtewy <A.B.C.D>. Exmple: set sensor gtewy 192.168.3.68 Set the IP ddress of the Mnger server. At the prompt, type: set mnger ip <A.B.C.D>. Exmple: set mnger ip 192.168.2.8 Set the IP ddress nd sunet msk of the Sensor. At the prompt, type: set sensor ip <A.B.C.D> <E.F.G.H>. Exmple: set sensor ip 192.168.2.12 255.255.255.0 Speify n IP ddress using four otets seprted y periods: X.X.X.X, where X is numer etween 0 nd 255, followed y sunet msk in the sme formt. h If prompted, reoot the Sensor. Type: reoot. The Sensor n tke up to five minutes to omplete its reoot. 7

i j Ping the Mnger from the Sensor to determine if your onfigurtion settings to this point hve suessfully estlished the Sensor on the network. At the prompt, type: ping <mnger IP ddress>. If the ping is suessful, ontinue with the following steps. If not, type show to verify your onfigurtion settings nd hek tht the informtion is orret. Set the shred seret key vlue for the Sensor. At the prompt, type: set sensor shredseretkey. The Sensor then prompts you to enter the shred key vlue nd onfirm the sme. This vlue is used to estlish trust reltionship etween the Sensor nd the Mnger. The seret key vlue n e etween 8 nd 25 hrters of ny ASCII text. The shred key vlue is se-sensitive. Mke sure the vlue mthes the shred seret key vlue you provided in the Mnger interfe. k l To verify the onfigurtion informtion, type show. Chek tht ll informtion is orret. To exit the session, type exit. 8 Verify suessful instlltion A hndshke proess egins etween the Sensor nd the Mnger. The devies will tke few seonds to estlish ommunition. Perform the following steps to verify suessful ommunition etween the Sensor nd the Mnger. In the Sensor CLI, type: sttus. The sttus report ppers 8

d Return to the Mnger. In the Mnger Home pge, view the Mnger sttus in the System Helth setion. Mnger sttus should e up nd Sensor sttus should e tive. From the Mnger Home pge, lik Configure to open the Configurtion pge. Selet your dded Sensor: Devie List Sensor_Nme. The ports for this Sensor pper under the Sensor_Nme node. "Devie_Nme" indites the nme of the Sensor you dded. e A poliy nmed Defult Inline IPS is tive upon Sensor ddition. To view this poliy, selet IPS Settings Poliies IPS Poliy Editor. Now selet Defult Inline IPS from the list nd lik View / Edit. The Defult Inline IPS poliy ontins ttks lredy onfigured with "loking" Sensor response tion; if ny ttk in the poliy is triggered, the Sensor utomtilly loks the ttk. To tune this or ny other MAfee-provided poliies, you n lone the poliy nd then ustomize it s desried in the MAfee Network Seurity Pltform IPS Administrtion Guide. f Clik Devie List Devie_Nme Port Settings. For more informtion on port settings, see Configurtion Sensor monitoring nd response ports, MAfee Network Seurity Pltform IPS Administrtion Guide. g Clik the utton representing the ports on the Sensor tht you led. Ensure tht your port settings mth the ling (for exmple, In-line mode). 9

9 You're up nd running! Your Sensor is tively monitoring onneted segments nd ommuniting with the Mnger for dministrtion nd mngement opertions. d Red MAfee Network Seurity Pltform Quik Tour for n overview of the system. For detiled usge instrutions, see MAfee Network Seurity Pltform Instlltion Guide nd MAfee Network Seurity Pltform IPS Administrtion Guide, or lik the Detiled Help uttons in the upper-right orner of eh window in the Mnger. Lunh the Thret Anlyzer from the Home pge to view lert sttistis s ttks re deteted. These will disply in the Unknowledged Alert Summry re of the Mnger Home pge. Hving prolems? Chek MAfee Network Seurity Pltform Trouleshooting Guide for trouleshooting informtion. Note tht most deployment prolems stem from onfigurtion mismthes etween the Sensor nd the network devies to whih it is onneted. Chek your duplex nd uto-negotition settings on oth devies to ensure they re synhronized. If you need to ontt Tehnil Support, go to https://mysupport.mfee.om. 10

11

Copyright 2013 MAfee, In. Do not opy without permission. MAfee nd the MAfee logo re trdemrks or registered trdemrks of MAfee, In. or its susidiries in the United Sttes nd other ountries. Other nmes nd rnds my e limed s the property of others. 12 700-3594B00

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback