Consider connect configure, Getting started, Gather network information – Internet Security Systems PROVENTIA GX5108 User Manual

Consider

Connect

Configure

Gather network information

Use this table to record

important network information

you need to configure the

appliance.

IPAddress

Subnet Mask

Default Gateway

Enter network information

Enter the network information you gathered in Step 1 as follows:

Press ENTER (carriage return symbol) on the LCD panel. The LCD displays a message: "Do you want to configure the appliance?"
Select OK, and then press ENTER.
Press ENTER on the LCD panel to display the IP address screen.

When you have completed all fields on the screen, press ENTER.
Select OK to move forward, and then press ENTER to confirm your selection.*
Complete these steps again to enter the subnet mask and the default gateway.

.

1

2

3 Save network information

Once you have entered all your network information, a final confirmation screen appears in the LCD screen.

4 Record your password

When you confirm your settings, the appliance saves your

information, and then generates a unique, alphabetic,

case-sensitive password. Record this password, because

you must use it to log on to the appliance

Proventia Password

5 Log on to the appliance

What's

next?

Once you have logged on to the appliance and configured advanced settings such as your DNS and host name, your adapter

modes, your port link settings, and your backup and recovery settings, you will be ready to install your license and setup

appliance management.

The Proventia Network Intrusion Prevention System User Guide walks you through these and other important tasks, such as:

Creating firewall rules to protect your network

T

racking alerts

Monitoring important system information

Connect the appliance

A Connect the power cords.

You must connect both power cords to the

appliance to prevent warning signals

from sounding.

B

Connect the management port.

Always connect your network to

management port 1, on the left, using a

straight-through cable. Management

port 2, on the right, is the kill (TCP reset)

port.

C

Connect the protected ports.

To run the appliance in inline protection or

inline simulation mode, plug cables into

both monitoring ports. To run in passive

mode, plug one cable into the first port of

the pair only, leaving the second port

empty.

D

(Optional) Connect the serial console.

Complete this step only if you want to

connect the appliance directly to a

computer to complete advanced

configuration.

E

Turn on the appliance.

The ISS

Proventia screen appears, and

you are ready to begin configuration.

Getting
Started

Select a monitoring mode

The mode you select affects how you connect your appliance to the network. Consider the following:

Mode

Responses

Benefits

Inline Protection

Block, Quarantine, Firewall

Monitors network and actively blocks malicious traffic

Allows you to realize the full benefit of the IPS

Inline Simulation

Block, Quarantine

(Simulated)

Monitors network without affecting traffic patterns

Helps you baseline and test your security policy

Passive Monitoring Block

Replicates traditional IDS technology

Monitors traffic without sitting inline

1

2 Review common deployment scenarios

Router to Switch/Hub

Router to Router

Legend

Switch/Hub 1 to Switch/Hub 2

Gather materials

Proventia Network IPS appliance
Proventia serial console cable (blue)
Ethernet crossover cable (red)
For each inline segment:*

a pair of Ethernet cables, straight-through or crossover, depending on your network type

a crossover adapter

additional Ethernet cables as needed

Two power cords

*ISS provides one crossover adapter and two one-foot Ethernet cables (green) per segment.

The following tasks describe how to use the LCD panel to connect the appliance to the network. You can also connect the

appliance using the Proventia Setup program. You must complete the initial configuration using only one method or the other. For

more information on using Proventia Setup to connect to the network, refer to Chapter 3, "Configuring Appliance Settings," in the

Network Intrusion Prevention System User Guide.

•

•

•

•

•

•

•

•

•

Select OK to save all network information and enable the Management port, or select Cancel to return to the ISS Proventia
screen without saving any of the information you entered. Press ENTER to confirm your selection.

You are ready to log on to the appliance and configure advanced settings. You can log on to the appliance either from a local

computer by directly connecting the appliance to a computer using a serial console cable, or from a remote computer through

a terminal emulation session. For more information about logging on to the appliance and accessing Proventia Setup, see

Chapter 3, "Configuring Appliance Settings," in the Proventia Network Intrusion Prevention System Users Guide.

This card provides connection and initial configuration information for the Proventia Network Intrusion

Prevention System (IPS) GX5000 series model appliances. The steps you perform here will allow you remote

network access to the appliance so that you can perform more advanced configuration tasks. You will find

more advanced configuration information in the Proventia Network Intrusion Prevention System User Guide

available on the Web at www.iss.net/download.

*If you select Cancel and then press ENTER, all fields are cleared, and no information is saved. You can re-enter information as necessary.

Press the UP and DOWN buttons to select a number, and then press the RIGHT ARROW button to move to the next field.

Configuring your security policy, including specifying events and responses

owners, as indicated. All marks are the property of their respective owners and used in an editorial context without intent of infringement. Specifications and content are subject to change without notice.

Copyright© 2006 Internet Security Systems, Inc. All rights reserved worldwide

Internet Security Systems and Ahead of the threat are trademarks, and the Internet Security Systems logo and Proventia are registered trademarks, of Internet Security Systems, Inc. All other marks and trade names mentioned are the property of their

Distribution: General

MSM-ISSQSCGX5108C

1

2