hit counter script
IBM Proventia Getting Started Manual
  1. Manuals
  2. Brands
  3. IBM Manuals
  4. Firewall
  5. Proventia
  6. Getting started manual
IBM Proventia Getting Started Manual

IBM Proventia Getting Started Manual

Network mail security system
Hide thumbs Also See for Proventia:
Table of Contents

Advertisement

Quick Links

Download this manual
®
IBM Proventia
Network Mail Security System
Getting Started Guide
Version 1.6
IBM Internet Security Systems

Advertisement

Table of Contents
loading

Related Manuals for IBM Proventia

Summary of Contents for IBM Proventia

  • Page 1 ® IBM Proventia Network Mail Security System Getting Started Guide Version 1.6 IBM Internet Security Systems...
  • Page 2 Other company, product and service names may be trademarks or service marks of others. References in this publication to IBM products or services do not imply that IBM intends to make them available in all countries in which IBM operates.

  • Page 3: Table Of Contents

    Working with Proventia Manager ........
  • Page 4 Contents IBM Internet Security Systems...

  • Page 5: Preface

    This guide is intended for Administrators with a fundamental knowledge of mail security best practices and SMTP configuration. If you are running the appliance on VMware, see the Getting Note: Started Guide for VMware Workstation on the IBM ISS Web site at http:// for installation procedures www.iss.net/support/documentation/ using VMware.

  • Page 6: How To Use The Appliance Documentation

    Latest information For the latest appliance documentation, always refer to the Help found in Proventia Manager and in the Readme files associated with each firmware release located on the IBM ISS Download Center at http://www.iss.net/download/...

  • Page 7: Getting Technical Support

    Getting Technical Support Getting Technical Support Introduction IBM ISS provides technical support through its Web site and by email or telephone. The IBM ISS Web The IBM Internet Security Systems (IBM ISS) Resource Center Web site at site http://www-935.ibm.com/services/us/index.wss/offerfamily/ provides direct access to user documentation, current...
  • Page 8 Preface IBM Internet Security Systems...

  • Page 9: Chapter 1: Introduction To The Appliance

    This chapter contains introductory information about deploying your appliance. In this chapter This chapter contains the following topics: Topic Page Appliance Package Contents About the Appliance Understanding SMTP Mail Routing IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...

  • Page 10: Appliance Package Contents

    Before you begin, you should verify that you have all of the package contents necessary to install the appliance. Verifying the Verify the appliance package includes the following: contents Item IBM Proventia Network Mail Security System appliance Ethernet crossover cable Power cord Recovery CD pack Getting Started Guide Warranty statement...

  • Page 11: About The Appliance

    The LCD controller module is used for initial network configuration. The LCD module configuration keys are used to set up the ETH1 interface from the front panel. Table 2: Front panel label descriptions IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 12 Make sure the ETH1 interface is configured as the default gateway IP address for the appliance. Figure 3: ETH1 interface setup IBM Internet Security Systems...

  • Page 13: Understanding Smtp Mail Routing

    Address: x.x.x.x iss.net MX preference = 5, mail exchanger = atla-mx1.iss.net iss.net MX preference = 10, mail exchanger = colo-mx1.iss.net iss.net MX preference = 10, mail exchanger = sfld-mx1.iss.net IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 14 SMTP to split mail traffic. You will often find multiple mail servers responsible for one domain due to redundancy and load balancing needs. See the following Web sites for more information on MX Reference: records: http://www.ietf.org/rfc/rfc974.txt or http://en.wikipedia.org/wiki/MX_record IBM Internet Security Systems...
  • Page 15 MX IP addresses is routed through the appliance before it is relayed to internal servers. You can do this by changing the destination NAT rules on the firewall(s) to redirect SMTP connections on the MX IP addresses to IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 16 You should set up the appliance to inspect outgoing email messages from your network, for example, configuring the appliance to check for attachments, confidential content, or disclaimers that have been added to outgoing mail. Figure 5: An example of outgoing mail traffic through the appliance IBM Internet Security Systems...
  • Page 17 See the chapter on SMTP Settings in the IBM Proventia Reference: Network Mail Security System Administrator Guide at that describes the http://www.iss.net/support/documentation configuration process for SMTP settings in more detail. IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 18 IBM SiteProtector 3995 Console if SiteProtector is enabled (disabled by default) Table 4: Services needed to operate the appliance You can adjust these settings later on the Firewall Settings page in Note: Proventia Manager (System > Firewall). IBM Internet Security Systems...

  • Page 19: Overview

    Configuring the Appliance Completing the Initial Configuration Accessing Proventia Manager Working with Proventia Manager Installing License Keys Applying Mail Security Updates Verifying Network Connectivity and SMTP Settings Reinstalling the Appliance IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...

  • Page 20: Chapter 2: Getting Connected

    Open Internet Explorer and log in to “Accessing Proventia Proventia Manager as username Manager” on page 29 admin and the password you configured during setup Collect license information and install “Installing License Keys”...

  • Page 21: Connecting The Appliance

    Optional: End-user quarantine access from internal (TCP 4443) and optional SNMP (UDP 161) for monitoring Recommended: LDAP connectivity to an internal Directory server(s) (TCP 389) Table 6: Installation checklist IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 22 Chapter 2: Getting Connected Item An accessible email account on the internal server for the following uses: • Alerting messages • Testing purposes Routing firewall rules set up to the internal mail servers Table 6: Installation checklist (Continued) IBM Internet Security Systems...

  • Page 23: Configuring The Appliance

    6. Click Yes when the security alert window appears. 7. Type admin for the username and admin for the password, and then click Next. 8. Go to “Completing the Initial Configuration” on page 26. IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 24 None 4. Press to establish a connection. ENTER When the connection is established, the Proventia Setup Configuration Menu appears. If you are unable to establish a connection, make sure the Tip: appliance has power and that you have started the appliance.
  • Page 25 ETH1. (Use a patch cable if the appliance is connected to a switch or hub; an Ethernet crossover cable if the appliance is connected directly to a PC.) 4. Go to “Completing the Initial Configuration” on page 26. IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...

  • Page 26: Completing The Initial Configuration

    The Setup Assistant is the program you use to configure initial appliance network settings. After you complete the initial setup process, use Proventia Manager to change and manage these settings. Procedure To complete the initial configuration for the appliance from the Setup Assistant: 1.
  • Page 27 • To forward email messages from specific domains to a specific host, configure maildomain1;<IP1>, maildomain2;<IP2> Reference: See the IBM Proventia Network Mail Security System Administrator Guide for detailed information on SMTP settings. Table 8: Configuration tasks (Continued) IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 28 Network Time Protocol (NTP) and provide the IP address of the server. Table 8: Configuration tasks (Continued) Next steps After you complete the initial setup, you are ready to log on to Proventia Manager. IBM Internet Security Systems...

  • Page 29: Accessing Proventia Manager

    ■ https://example.com ■ https://192.168.123.123 2. Log in using the username admin and the Proventia Manager password. 3. If a message informs you that you do not have Java Runtime Environment (JRE) installed, install it, and then return to this procedure.

  • Page 30: Working With Proventia Manager

    Chapter 2: Getting Connected Working with Proventia Manager Introduction When you open Proventia Manager, the Home page provides up-to-date diagnostic information for the appliance. Diagnostic tabs The following table describes each of the diagnostic tabs: Description Protection The categories of email messages that the appliance has analyzed over a given period of time.
  • Page 31 0.7. The data is stored every five minutes and the granularity on the graph is one hour. Resources Information about your appliance that may be helpful if you need to contact IBM ISS Technical Support about a problem. Updates The current status of the latest updates to the appliance.
  • Page 32 The time the last system backup was created. The time is given in the yyyy-mm-dd format: 2008-12-31 12:45:10 hh:mm:ss • CAL Info The current list of the latest versions of the Content Analysis Library (CAL). Table 9: Diagnostics tabs (Continued) IBM Internet Security Systems...

  • Page 33: Installing License Keys

    License Information page, which includes information on how to acquire current license keys. Ordering license When a Registered End User orders the license keys from IBM ISS, they keys will receive an email message containing order confirmation information and instructions for registering, generating, and downloading license keys.
  • Page 34 Chapter 2: Getting Connected 6. Follow the same procedures (Step 3 through Step 5) to install the key for the Antivirus License. You are now ready to apply mail security updates to the appliance. IBM Internet Security Systems...

  • Page 35: Applying Mail Security Updates

    You should update your local mail security database at least Important: once daily to keep it up-to-date. 1. In Proventia Manager, click Updates, and then click Status & Licensing. 2. Click View versions online at the bottom of the page to access a Web page that lists each update and its contents.

  • Page 36: Verifying Network Connectivity And Smtp Settings

    5. Enable the last rule in the sample policy (“MyMail (For testing purposes: Check for occurrence of ‘MyMail’ in Subject)). 6. Click Save Changes. IBM Internet Security Systems...
  • Page 37 That the email message was actually sent through the appliance ■ (RECEIVED header) That the appliance is able to send email messages to internal mail ■ servers and to mail servers on the Internet IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...

  • Page 38: Reinstalling The Appliance

    Reinstalling the appliance means erasing all data from the Important: system and returning it to its factory state. Only perform this procedure under the guidance of IBM ISS Technical Support. Recovery process Use the following procedure to reinstall the firmware on your appliance: 1.

  • Page 39: Index

    DNS lookup DNS MX entries IBM Internet Security Systems changing technical support DNS query Web site DNS resolution IBM ISS domain name server technical support IBM ISS Download Center IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6...
  • Page 40 Status & Licensing page mail security policy configuring MX preferences MYMAIL technical support IBM ISS technical support, IBM Internet Security Systems order confirmation number time settings outbound SMTP settings Web site, IBM Internet Security Systems passwords initial setup IBM Internet Security Systems...

Table of Contents