Related Manuals for IBM Proventia Management SiteProtector SP2001
Summary of Contents for IBM Proventia Management SiteProtector SP2001
- Page 1 ® ™ IBM Proventia Management SiteProtector SP2001 Hardware Configuration Guide Version 2.0, Service Pack 8.0...
- Page 2 ® ™ IBM Proventia Management SiteProtector SP2001 Hardware Configuration Guide Version 2.0, Service Pack 8.0...
- Page 3 Copyright Statement © Copyright IBM Corporation 1994, 2008. IBM Global Services Route 100 Somers, NY 10589 U.S.A. Produced in the United States of America. All Rights Reserved.
- Page 4 IBM Internet Security Systems (IBM ISS). Use of this information constitutes acceptance for use in an “AS IS” condition, without warranties of any kind, and any use of this information is at the user’s own risk. IBM Internet Security Systems disclaims all warranties, either expressed or implied, including the warranties of merchantability and fitness for a particular purpose.
- Page 5 SiteProtector System: SP2001 Hardware Configuration...
-
Page 6: Table Of Contents
Index ....33 Installing and Starting the SiteProtector Console . . 17 Installing the SiteProtector Console . 17 Starting the SiteProtector Console and logging on 17 © Copyright IBM Corp. 1994, 2008... - Page 7 SiteProtector System: SP2001 Hardware Configuration...
-
Page 8: Overview
Overview Introduction The SiteProtector SP2001 Hardware Configuration Guide contains the information you need to configure the IBM Proventia Management SiteProtector SP2001 appliance hardware. Scope This guide provides procedures for configuring the SiteProtector SP2001 appliance hardware and Windows administration options. This guide is designed to be a companion to the SiteProtector documentation suite. - Page 9 Related publications The user documents for SiteProtector and related products are available as portable document format (PDF) files in the following places: v the IBM ISS Web site at http://www.iss.net/support/documentation v the Deployment Manager, if installed at your Site viii...
-
Page 10: Getting Technical Support
For licensing information on IBM Internet Security System products, download the IBM Licensing Agreement from:http://www-935.ibm.com/services/us/iss/html/ contracts_landing.html Getting Technical Support IBM Internet Security Systems (ISS) provides technical support through its Web site and by email or telephone. The IBM ISS Web site The IBM Internet Security Customer Support Web page (http://www- 935.ibm.com/services/us/index.wss/offerfamily/iss/a1029129) provides direct... -
Page 11: Safety, Environmental, And Electronic Emissions Notices
Safety, Environmental, and Electronic Emissions Notices Safety notices may be printed throughout this guide. DANGER notices warn you of conditions or procedures that can result in death or severe personal injury. CAUTION notices warn you of conditions or procedures that can cause personal injury that is neither lethal nor extremely hazardous. - Page 12 Electrical voltage and current from power, telephone, and communication cables are hazardous. To avoid a shock hazard: v Connect power to this unit only with the IBM ISS provided power cord. Do not use the IBM ISS provided power cord for any other product.
- Page 13 Repair or disassemble Exchange only with the IBM ISS-approved part. Recycle or discard the battery as instructed by local regulations. In the United States, IBM ISS has a process for the collection of this battery. For information, call 1-800-426-4333. Have the IBM ISS part number for the battery unit available when you call.
- Page 14 The booklet contains the safety information in your national language with references to the US English source. Before using a US English publication to install, operate, or service this IBM ISS product, you must first become familiar with the related safety information in the booklet. You should also refer to the booklet any time you do not clearly understand any safety information in the US English publications.
- Page 15 (TI) que reciclen responsablemente sus equipos cuando éstos ya no les sean útiles. IBM dispone de una serie de programas y servicios de devolución de productos en varios países, a fin de ayudar a los propietarios de equipos a reciclar sus productos de TI.
- Page 16 EEE on the environment and human health due to the potential presence of hazardous substances in EEE. For proper collection and treatment, contact your local IBM representative. Remarque: Cette marque s’applique uniquement aux pays de l’Union Européenne et à...
- Page 17 In the United States, IBM has established a return process for reuse, recycling, or proper disposal of used IBM sealed lead acid, nickel cadmium, nickel metal hydride, and other battery packs from IBM equipment. For information on proper disposal of these batteries, contact IBM at 1-800-426- 4333.
- Page 18 Note: Properly shielded and grounded cables and connectors must be used in order to meet FCC emission limits. IBM is not responsible for any radio or television interference caused by using other than recommended cables and...
- Page 19 Klasse A ein. Um dieses sicherzustellen, sind die Geräte wie in den Handbüchern beschrieben zu installieren und zu betreiben. Des Weiteren dürfen auch nur von der IBM empfohlene Kabel angeschlossen werden. IBM übernimmt keine Verantwortung für die Einhaltung der Schutzanforderungen, wenn das Produkt ohne Zustimmung der...
- Page 20 This product is a Class A Information Technology Equipment and conforms to the standards set by the Voluntary Control Council for Interference by Information Technology Equipment (VCCI). In a xviii IBM Internet Security Systems domestic environment, this product may cause radio interference in which case the user may be required to take adequate measures.
- Page 21 Korean Class A Compliance Statement: SiteProtector System: SP2001 Hardware Configuration...
-
Page 22: Chapter 1. Introduction To The Siteprotector Sp2001 Appliance
Note: SecurityFusion module is not preinstalled on the SiteProtector SP2001 appliance. You must install this component on a separate computer. v IBM Proventia Server Intrusion Prevention System (IPS) for Windows, which provides host security protection for the SiteProtector SP2001 appliance. -
Page 23: Siteprotector Components
Installed SiteProtector Optional SiteProtector Components Components Add-on Components Agent Manager Deployment Manager SiteProtector Reporting Console (user must install Event Viewer SiteProtector Third Party separately) Module X-Press Update Servers SiteProtector Database Event Collector SP Core (See “SiteProtector Components” for details) Proventia Server IPS SiteProtector SecurityFusion module Event Archiver... - Page 24 Console and the SiteProtector database. v The X-Press Update Server stores X-Press Updates (XPUs) downloaded from the IBM ISS Download center and makes them available to the agents and components on the network. The Update Server eliminates the need to download...
-
Page 25: Proventia Server Ips For Windows
SiteProtector Component Description Deployment Manager (optional) The Deployment Manager is a Web server that lets you install any of the SiteProtector components and agents on computers on your network. Event Viewer (optional) The SiteProtector Event Viewer receives unprocessed events from the Event Collector to provide near real time access to security data for troubleshooting. - Page 26 Proventia Server IPS features The following table describes the Proventia Server IPS features that are enabled on the SiteProtector SP2001 appliance: Feature Description Intrusion prevention Proventia Server IPS includes an intrusion prevention system that alerts you to attacks and blocks threats to the SiteProtector SP2001 appliance and to your network.
- Page 27 SiteProtector System: SP2001 Hardware Configuration...
-
Page 28: Chapter 2. Before You Begin
This sticker may become inaccessible if you install the SiteProtector SP2001 appliance in a rack. Important: If you need to restore the SiteProtector SP2001 appliance to its factory defaults, you must know the Product Key. See “Restoring Factory Defaults” on page 28. © Copyright IBM Corp. 1994, 2008... - Page 29 Ensure that the SiteProtector SP2001 appliance has the latest firmware and intrusion prevention updates installed. The SiteProtector SP2001 appliance retrieves updates from the IBM ISS Download Center, which is accessible over the Internet. For more information about product issues and updates, see the IBM ISS Download Center at http://www.iss.net/.
-
Page 30: Pre-Configuration Checklists
Proventia Server IPS Proventia Server IPS is designed to provide optimum protection in typical environments. Proventia Server IPS is configured to block suspicious activity and certain types of communication. See the Proventia Server for Windows User Guide for more information. To ensure that you can troubleshoot and monitor the SiteProtector SP2001 appliance remotely using widely accepted protocols, the following types of traffic are allowed on the SiteProtector SP2001 appliance:... - Page 31 Setting Description DNS server name The IP address of the domain name server that the SiteProtector SP2001 appliance will use. Example: 192.168.1.1 Your setting: Cables required checklist You must use certain cables to connect the SiteProtector SP2001 appliance to the network and to a power source.
-
Page 32: Chapter 3. Connecting And Configuring The Siteprotector Sp2001 Appliance
“The SiteProtector SP2001 Appliance Back Panel” on page 14 “Connecting the SiteProtector SP2001 Appliance” on page 14 “Configuring the SiteProtector SP2001 Appliance to Communicate with the Network” on page 15 “Installing and Starting the SiteProtector Console” on page 17 © Copyright IBM Corp. 1994, 2008... -
Page 33: Siteprotector Sp2001 Appliance Configuration Checklist
SiteProtector SP2001 Appliance Configuration Checklist The process of configuring the SiteProtector SP2001 appliance hardware requires that you perform tasks in a certain order. Follow the steps in this topic when you configure the SiteProtector SP2001 appliance. Prerequisites Before you configure your SiteProtector SP2001 appliance, you must have completed the following tasks: v Ensure that you meet the requirements for configuring the SiteProtector SP2001 appliance. -
Page 34: The Siteprotector Sp2001 Appliance Front Panel
The SiteProtector SP2001 Appliance Front Panel The SiteProtector SP2001 appliance front panel consists of three features: v LCD controller module v Management port v USB ports SiteProtector SP2001 appliance front panel The following figure shows the SiteProtector SP2001 appliance front panel: Figure 1. -
Page 35: The Siteprotector Sp2001 Appliance Back Panel
2. Connect the Ethernet cable from the network to the management port. 3. Turn on the SiteProtector SP2001 appliance. “IBM ISS Proventia SP2001” appears on the LCD panel. Note: It may take several minutes for this screen to appear. -
Page 36: Configuring The Siteprotector Sp2001 Appliance To Communicate With The Network
Configuring the SiteProtector SP2001 Appliance to Communicate with the Network When you connect the SiteProtector SP2001 appliance to the network for the first time, you must enter some or all of the following information in the SiteProtector SP2001 appliance’s LCD panel: v IP Address v subnet mask v gateway address... -
Page 37: Entering Network Information
Procedure 1. Locate the LCD panel at the front of the SiteProtector SP2001 appliance, and then make sure that “IBM ISS Proventia SP2001” appears on the screen. 2. Press the ENTER button. The Appliance PIN screen appears. Note: If you want to require that users enter a personal identification number (PIN) to use the LCD panel, see.“Securing the SiteProtector SP2001 Appliance... -
Page 38: Installing And Starting The Siteprotector Console
3. Click Yes to accept the security certificate. 4. Read the IBM ISS License Agreement, and then click Accept. Note: The IBM ISS License Agreement appears only when you access this Web site for the first time. 5. Click the Install SiteProtector Console link. - Page 39 SiteProtector System: SP2001 Hardware Configuration...
-
Page 40: Chapter 4. Configuring The Siteprotector Console
See “Securing SP2001 Appliance Passwords” on page 21. Configure the date and time on the SiteProtector SP2001 appliance. See “Setting the Date and Time” on page 22. See the SiteProtector Configuration Guide to configure the SiteProtector security management software. © Copyright IBM Corp. 1994, 2008... -
Page 41: Installing License Files
Installing License Files Now that you have logged on from the SiteProtector Console, you must install the new license files so that you can begin using the reporting, correlation, and security features that are installed on the SiteProtector SP2001 appliance. The SiteProtector SP2001 appliance requires properly configured licenses to run at full capability. -
Page 42: Securing Sp2001 Appliance Passwords
ISSADMIN Windows administrator Administrator ISSADMIN Important: For the best security practices, IBM ISS recommends that you use strong passwords and change these passwords frequently. See the Microsoft Windows Server 2003 documentation regarding the criteria required for creating strong passwords. Setting the Database Administrator password Procedure 1. -
Page 43: Setting The Date And Time
Setting the Date and Time About this task By default, the SiteProtector SP2001 appliance uses Windows time synchronization to update its date and time settings. However, you should verify that these settings are correct and change these settings if necessary. Procedure 1. -
Page 44: Chapter 5. Optional Configuration Tasks
This chapter provides procedures for configuring optional hardware and Windows administration options on the SiteProtector SP2001 appliance. Topics “Starting and Shutting Down the SiteProtector SP2001” on page 24 “Configuring SNMP Services” on page 25 “Securing the SiteProtector SP2001 Appliance Hardware” on page 25 © Copyright IBM Corp. 1994, 2008... -
Page 45: Starting And Shutting Down The Siteprotector Sp2001
Starting and Shutting Down the SiteProtector SP2001 About this task To ensure that the SiteProtector SP2001 appliance is properly maintained, you may need to restart or stop the SiteProtector SP2001 appliance hardware. The topic provides procedures for manually restarting and shutting down the SiteProtector SP2001 appliance and scheduling these tasks so that they can occur automatically. -
Page 46: Configuring Snmp Services
Configuring SNMP Services About this task By default, the Simple Network Management Protocol (SNMP) service is disabled on the SiteProtector SP2001 appliance but allowed by the Proventia Server IPS policy. If your SiteProtector SP2001 appliance must be monitored by SNMP, you can enable SNMP services on the Network tab. - Page 47 SiteProtector System: SP2001 Hardware Configuration...
-
Page 48: Chapter 6. Troubleshooting
This chapter contains information that can help you troubleshoot the SiteProtector SP2001 appliance hardware and Windows administration options. Topics “Restoring Factory Defaults” on page 28 “Issue Related to the LCD Panel” on page 29 © Copyright IBM Corp. 1994, 2008... -
Page 49: Restoring Factory Defaults
5. When the Windows Setup window appears, type the Product Key in the boxes provided. 6. Click Next, and then verify that the “IBM ISS Proventia SP2001” is displayed on the LCD. Note: It may take several minutes for this to appear. -
Page 50: Issue Related To The Lcd Panel
Issue Related to the LCD Panel This topic provides a solution to an issue that you may encounter when you use the SiteProtector SP2001 appliance’s LCD panel. Change to network settings fails Description: If you are trying to change the network settings in the LCD panel while a window that contains the network configuration options is open on the SiteProtector Console, the configuration change will fail. - Page 51 SiteProtector System: SP2001 Hardware Configuration...
-
Page 52: Appendix. Siteprotector Sp2001 Appliance Configuration Options
Edit or disable Remote Desktop access. Note: You must download the Remote Desktop Active X Control before you can use this feature. Status View system information about the SiteProtector SP2001 appliance or alert information. © Copyright IBM Corp. 1994, 2008... - Page 53 Select this menu option... To do this... Network Set the server name, DNS suffix, and domain membership. Configure the IP address, DNS Server address, and WINS server address. Enable or disable the SNMP service. Configure global settings that apply to all network adapters.
-
Page 54: Index
21 Product Key important consideration for rack mounted appliances 7 remote desktop 9 safety notices x shut down send warning message before 24 Simple Network Management Protocol 25 Site Database 2 SNMP 9 © Copyright IBM Corp. 1994, 2008... - Page 55 SiteProtector System: SP2001 Hardware Configuration...
- Page 57 Printed in USA...