IBM Proventia Management SiteProtector SP1001, Hardware Configuration Manual

Page 1: ...IBM Proventia Management SiteProtector SP1001 Hardware Configuration Guide Version 2 0 Service Pack 7 0...

Page 2: ......

Page 3: ...IBM Proventia Management SiteProtector SP1001 Hardware Configuration Guide Version 2 0 Service Pack 7 0...

Page 4: ...Copyright Statement Copyright IBM Corporation 1994 2008 IBM Global Services Route 100 Somers NY 10589 U S A Produced in the United States of America All Rights Reserved...

Page 5: ...s disclaims all warranties either expressed or implied including the warranties of merchantability and fitness for a particular purpose In no event shall IBM ISS be liable for any damages whatsoever i...

Page 6: ...iv SiteProtector System SP1001 Hardware Configuration...

Page 7: ...municate with the Network 15 Entering Network Information 16 Installing and Starting the SiteProtector Console 17 Installing the SiteProtector Console 17 Starting the SiteProtector Console and logging...

Page 8: ...vi SiteProtector System SP1001 Hardware Configuration...

Page 9: ...mpanion to the SiteProtector documentation suite After you have configured the SiteProtector SP1001 appliance hardware use the SiteProtector Configuration Guide to configure the SiteProtector security...

Page 10: ...procedures for configuring the SiteProtector SP1001 appliance administration options using the SiteProtector Console If you configured the SiteProtector SP1001 appliance hardware using the SiteProtec...

Page 11: ...ts and Appliances Contains information about agents and appliances that work with SiteProtector Related publications The user documents for SiteProtector and related products are available as portable...

Page 12: ...port The following table provides hours for Technical Support at the Americas and other locations Location Hours Americas 24 hours a day All other locations Monday through Friday 9 00 A M to 6 00 P M...

Page 13: ...d under certain conditions To avoid these hazards ensure that your system electrical requirements do not exceed branch circuit protection requirements Refer to the information that is provided with yo...

Page 14: ...t signal cables v Never turn on any equipment when there is evidence of fire water or structural damage v Disconnect the attached power cords telecommunications systems networks and modems before you...

Page 15: ...overcurrent protection To provide the correct power connection to a rack refer to the rating labels located on the equipment in the rack to determine the total power requirement of the supply circuit...

Page 16: ...mation contained in product publications to be presented in their national languages If this requirement applies to your country a safety information booklet is included in the publications package sh...

Page 17: ...class 1 laser product Consult the label on each part for laser certification numbers and approval information Product recycling and disposal This unit must be recycled or discarded according to applic...

Page 18: ...vailable to customers for the return recycling and recovery of WEEE Customer participation is important to minimize any potential effects of EEE on the environment and human health due to the potentia...

Page 19: ...pean Directive 2006 66 EC concerning batteries and accumulators and waste batteries and accumulators The Directive determines the framework for the return and recycling of used batteries and accumulat...

Page 20: ...apply to this IBM product The statement for other IBM products intended for use with this product will appear in their accompanying manuals Federal Communications Commission FCC Statement Note This eq...

Page 21: ...ion Technology Equipment according to European Standard EN 55022 The limits for Class equipment were derived for commercial and industrial environments to provide reasonable protection against interfe...

Page 22: ...36 f r Ger te der Klasse A Dieses Ger t ist berechtigt in bereinstimmung mit dem Deutschen EMVG das EGKonformit tszeichen CE zu f hren Verantwortlich f r die Konformit tserkl rung nach Paragraf 5 des...

Page 23: ...Korean Class A Compliance Statement Overview xxi...

Page 24: ...xxii SiteProtector System SP1001 Hardware Configuration...

Page 25: ...introduces the SiteProtector SP1001 appliance and describes the components and functions of SiteProtector Topics What is the SiteProtector SP1001 Appliance on page 2 SiteProtector Components on page 3...

Page 26: ...ent on a separate computer v IBM Proventia Server Intrusion Prevention System IPS for Windows which provides host security protection for the SiteProtector SP1001 appliance SiteProtector components by...

Page 27: ...the status of X Press Updates XPUs SP Core The SP core includes the following components v The Application Server which includes the Sensor Controller component enables communication between the SiteP...

Page 28: ...y of the SiteProtector components and agents on computers on your network Event Viewer optional The SiteProtector Event Viewer receives unprocessed events from the Event Collector to provide near real...

Page 29: ...ure Description Intrusion prevention Proventia Server IPS includes an intrusion prevention system that alerts you to attacks and blocks threats to the SiteProtector SP1001 appliance and to your networ...

Page 30: ...6 SiteProtector System SP1001 Hardware Configuration...

Page 31: ...ation checklists Review this information before you install the SiteProtector SP1001 appliance hardware in a rack or connect the SiteProtector SP1001 appliance to a network Topics Requirements and Con...

Page 32: ...m of the SiteProtector SP1001 appliance This sticker may become inaccessible if you install the SiteProtector SP1001 appliance in a rack Important If you need to restore the SiteProtector SP1001 appli...

Page 33: ...nter which is accessible over the Internet For more information about product issues and updates see the IBM ISS Download Center at http www iss net Proventia Server IPS Proventia Server IPS is design...

Page 34: ...mask value for the network connected to the management port Example 255 255 255 0 h Your setting h Management port default gateway The IP address for the management gateway Example 192 168 1 1 h Your...

Page 35: ...arted Card instead of the procedures in this chapter if you are an experienced network administrator and you anticipate that your configuration will be straightforward The SiteProtector SP1001 Getting...

Page 36: ...tion See Pre configuration Checklists on page 10 Checklist Use the checklist in the following table as a guide to help you perform the tasks in this chapter The check boxes are provided as a convenien...

Page 37: ...tures of the front panel Feature Description LCD controller module The LCD controller module or LCD panel allows the user to set up the network configuration You can also configure the following from...

Page 38: ...port The DVI port lets you connect the SiteProtector SP1001 appliance to a digital monitor Power button The power button turns the SiteProtector SP1001 appliance on and off VGA port The VGA port lets...

Page 39: ...eProtector SP1001 appliance s host name or the IP address after the appliance has established communication with an external device To do so will prevent the SiteProtector SP1001 appliance from commun...

Page 40: ...iguration menu and then go to Step 7 v If no enter the IP address of the SiteProtector SP1001 appliance in the field provided Note Press UP or DOWN to select a number and then use the LEFT or RIGHT bu...

Page 41: ...onsole on your computer About this task Installing the SiteProtector Console Procedure 1 Click Start on the task bar and then select Programs Internet Explorer 2 Type the following https appliance_IP_...

Page 42: ...4 Log in using the SiteProtector SP1001 appliance s IP address that you entered when you performed the procedure on 26 5 Do the following In this Field Type the following User Name Administrator Pass...

Page 43: ...orm these tasks Important If you used the procedures in the SiteProtector SP1001 Getting Started Card to connect the SiteProtector SP1001 appliance start here to continue the configuration process Top...

Page 44: ...ks use the check boxes to check off the tasks that you have completed U Task Description h 1 Install the license files for the reporting correlation and security features See Installing License Files...

Page 45: ...fore you begin Install the SecurityFusion module before you install the license file for this add on component See the SiteProtector SecurityFusion Module Guide for detailed information Procedure 1 In...

Page 46: ...and then click OK The SiteProtector SP1001 appliance restarts Securing SP1001 Appliance Passwords Now that you have logged on to the SiteProtector Console and installed the license files you must sec...

Page 47: ...tting the Date and Time About this task By default the SiteProtector SP1001 appliance uses Windows time synchronization to update its date and time settings However you should verify that these settin...

Page 48: ...24 SiteProtector System SP1001 Hardware Configuration...

Page 49: ...ional hardware and Windows administration options on the SiteProtector SP1001 appliance Topics Starting and Shutting Down the SiteProtector SP1001 on page 26 Configuring SNMP Services on page 27 Secur...

Page 50: ...or SP1001 appliance to turn it on again You cannot use the SiteProtector Console to turn on the SiteProtector SP1001 appliance Procedure 1 Select the System view 2 In the left pane expand the Site Nod...

Page 51: ...r check box 7 Click OK Configuring SNMP Services About this task By default the Simple Network Management Protocol SNMP service is disabled on the SiteProtector SP1001 appliance but allowed by the Pro...

Page 52: ...ce LCD settings you can require that users specify a PIN to access the LCD panel Procedure 1 On the LCD panel press the ENTER button The Appliance PIN screen appears 2 On the Appliance PIN screen pres...

Page 53: ...ins information that can help you troubleshoot the SiteProtector SP1001 appliance hardware and Windows administration options Topics Restoring Factory Defaults on page 30 Issue Related to the LCD Pane...

Page 54: ...ector SP1001 appliance Perform this procedure only when it is absolutely necessary to recover from a catastrophic failure Procedure 1 Restart the SiteProtector SP1001 appliance Note See Starting and S...

Page 55: ...e to network settings fails Description If you are trying to change the network settings in the LCD panel while a window that contains the network configuration options is open on the SiteProtector Co...

Page 56: ...32 SiteProtector System SP1001 Hardware Configuration...

Page 57: ...s appendix describes the configuration options that you can use to configure the SiteProtector SP1001 appliance Some of these options are described in more detail in other chapters in this guide Topic...

Page 58: ...page or the Welcome page This option allows you to choose which page the server displays first Network configuration options You can also edit or view other network SiteProtector SP1001 appliance opti...

Page 59: ...properties of each share Enable configure and disable file sharing protocols Maintenance Set the date and time on the server View clear download and configure the Application System or Security logs...

Page 60: ...36 SiteProtector System SP1001 Hardware Configuration...

Page 61: ...Certificate of Authenticity 30 P password administrator 22 Product Key important consideration for rack mounted appliances 8 R remote desktop 9 S safety notices xi shut down send warning message befor...

Page 62: ...38 SiteProtector System SP1001 Hardware Configuration...

Page 63: ......

Page 64: ...Printed in USA...