background image

IBM Proventia Network Intrusion Prevention System Getting
Started for GX4000 Series Appliances

This document helps you do the following tasks:

v

Connect the appliance

v

Configure appliance settings

v

Connect to Proventia

®

Manager

v

Install the product license

v

Update the appliance

After you finish these tasks:

v

Use the applicable IBM

®

Proventia Network Intrusion Prevention System (IPS)

Installation Guide to install specific firmware versions

v

Use the applicable IBM Proventia Network Intrusion Prevention System (IPS)
Appliance User Guide to
– Set up appliance management
– Configure your security policies, including specifying events and responses
– Create firewall rules to protect your network
– Track alerts
– Monitor important system information

Reference Key

v

A

:

LCD Controller Module

- used for initial network configuration, restarting or

shutting down the appliance, and obtaining IPS version information.

v

B

:

USB Ports

v

C

:

Serial Console Port

- used for terminal-based setup and recovery.

v

D

:

Protected Ports

- used for either inline intrusion prevention (IPS mode) or

passive intrusion detection (IDS mode). Inline prevention uses a pair of ports per
segment. Passive detection uses a single port per segment.

Note:

Your port configuration may look slightly different depending on the

number of ports.

v

E

:

Management Ports

Management Port 1 is used to communicate with Proventia Manager and
SiteProtector Management
Management Port 2 is used exclusively for sending TCP Reset responses

© Copyright IBM Corp. 2003, 2010

1

Summary of Contents for GX4000 Series

Page 1: ...te firewall rules to protect your network Track alerts Monitor important system information Reference Key v A LCD Controller Module used for initial network configuration restarting or shutting down the appliance and obtaining IPS version information v B USB Ports v C Serial Console Port used for terminal based setup and recovery v D Protected Ports used for either inline intrusion prevention IPS ...

Page 2: ... port The appliance does not send TCP Reset responses until you configure TCP Reset 3 SFP capable appliance only Populate the protected ports with SFP modules as necessary For each port pair SFP modules must be the same media type for example if port 1A is copper TX then port 1B must also be copper TX 4 Connect the network cables to the protected ports To run the appliance in passive mode only con...

Page 3: ...saving any information 10 After you confirm the settings the appliance generates a temporary case sensitive password Record this password you must use it when you log on to the appliance 11 Connect to the appliance using a secure network connection and the appliance s IP address to complete the initial configuration What to do next Go to the next procedure in the getting started process Configure ...

Page 4: ...n Change Password Change the admin root and Proventia Manager passwords that control access to each of these appliance areas Network Configuration Information The IP address subnet mask and default gateway you entered through the LCD panel is displayed here You can change this information as needed Host Configuration Specify the host name and domain name for the appliance DNS Configuration Specify...

Page 5: ...itors the network without affecting traffic patterns to help you baseline and test your security policy It includes simulated block and quarantine responses v Passive Monitoring Mode replicates traditional intrusion detection technology and monitors traffic without sitting inline It includes the block response Connect to Proventia Manager Proventia Manager is the Web based management interface for...

Page 6: ...y Systems X Force research and development team Apply initial updates using one of the following menu options The option depends upon the firmware version v Updates Available Downloads and then Updates Available Installs v Manage System Settings Updates and Licensing Administration Note For more specific information on installing a product license and applying initial updates see the applicable IB...

Page 7: ...poration 2003 2010 U S Government Users Restricted Rights Use duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp IBM Proventia Network Intrusion Prevention System Getting Started for GX4000 Series Appliances 7 ...

Reviews: