IBM Proventia Management SiteProtector SP2001, Hardware Configuration Manual

Page 1: ...IBM Proventia Management SiteProtector SP2001 Hardware Configuration Guide Version 2 0 Service Pack 8 0 ...

Page 2: ...IBM Proventia Management SiteProtector SP2001 Hardware Configuration Guide Version 2 0 Service Pack 8 0 ...

Page 3: ...Copyright Statement Copyright IBM Corporation 1994 2008 IBM Global Services Route 100 Somers NY 10589 U S A Produced in the United States of America All Rights Reserved ...

Page 4: ...ms disclaims all warranties either expressed or implied including the warranties of merchantability and fitness for a particular purpose In no event shall IBM ISS be liable for any damages whatsoever including direct indirect incidental consequential or special damages arising from the use or dissemination hereof even if IBM Internet Security Systems has been advised of the possibility of such dam...

Page 5: ...iv SiteProtector System SP2001 Hardware Configuration ...

Page 6: ...municate with the Network 15 Entering Network Information 16 Installing and Starting the SiteProtector Console 17 Installing the SiteProtector Console 17 Starting the SiteProtector Console and logging on 17 Chapter 4 Configuring the SiteProtector Console 19 SiteProtector Console Configuration Checklist 19 Installing License Files 20 Choosing the SP2001 Appliance Language 20 Securing SP2001 Applian...

Page 7: ...vi SiteProtector System SP2001 Hardware Configuration ...

Page 8: ...es and Microsoft administration tasks How to Use the SP2001 Appliance Documentation This topic explains how the information in the SiteProtector SP2001 Hardware Configuration Guide is organized and lists other documents in the SiteProtector documentation suite that you may use to configure SiteProtector Document organization This document is organized into logical units as described in the followi...

Page 9: ...o configure the SiteProtector SP2001 appliance hardware SiteProtector Configuration Guide Contains information about configuring updating and maintaining the SiteProtector security management software SiteProtector Policies and Responses Configuration Guide Contains information about configuring policies and responses including Central Responses SiteProtector Help Contains all the procedures that ...

Page 10: ...current versions listings detailed product literature white papers and the Technical Support Knowledgebase Hours of support The following table provides hours for Technical Support at the Americas and other locations Location Hours Americas 24 hours a day All other locations Monday through Friday 9 00 A M to 6 00 P M during their local time excluding IBM ISS published holidays Note If your local s...

Page 11: ...ditions To avoid these hazards ensure that your system electrical requirements do not exceed branch circuit protection requirements Refer to the information that is provided with your device or the power rating label for electrical specifications D002 DANGER If the receptacle has a metal shell do not touch the shell until you have completed the voltage and grounding checks Improper wiring or groun...

Page 12: ...o connect or disconnect signal cables v Never turn on any equipment when there is evidence of fire water or structural damage v Disconnect the attached power cords telecommunications systems networks and modems before you open the device covers unless instructed otherwise in the installation and configuration procedures v Connect and disconnect cables as described in the following procedures when ...

Page 13: ...ion To provide the correct power connection to a rack refer to the rating labels located on the equipment in the rack to determine the total power requirement of the supply circuit v For sliding drawers Do not pull or install any drawer or feature if the rack stabilizer brackets are not attached to the rack Do not pull out more than one drawer at a time The rack might become unstable if you pull o...

Page 14: ...uire the safety information contained in product publications to be presented in their national languages If this requirement applies to your country a safety information booklet is included in the publications package shipped with the product The booklet contains the safety information in your national language with references to the US English source Before using a US English publication to inst...

Page 15: ... Consult the label on each part for laser certification numbers and approval information Product recycling and disposal This unit must be recycled or discarded according to applicable local and national regulations IBM encourages owners of information technology IT equipment to responsibly recycle their equipment when it is no longer needed IBM offers a variety of product return programs and servi...

Page 16: ...ction framework available to customers for the return recycling and recovery of WEEE Customer participation is important to minimize any potential effects of EEE on the environment and human health due to the potential presence of hazardous substances in EEE For proper collection and treatment contact your local IBM representative Remarque Cette marque s applique uniquement aux pays de l Union Eur...

Page 17: ... EC concerning batteries and accumulators and waste batteries and accumulators The Directive determines the framework for the return and recycling of used batteries and accumulators as applicable throughout the European Union This label is applied to various batteries to indicate that the battery is not to be thrown away but rather reclaimed upon end of life per this Directive Les batteries ou emb...

Page 18: ... following statements apply to this IBM product The statement for other IBM products intended for use with this product will appear in their accompanying manuals Federal Communications Commission FCC Statement Note This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable prot...

Page 19: ...ent according to European Standard EN 55022 The limits for Class equipment were derived for commercial and industrial environments to provide reasonable protection against interference with licensed communication equipment Warning This is a Class A product In a domestic environment this product may cause radio interference in which case the user may be required to take adequate measures European C...

Page 20: ... EMC EG Richtlinie 89 336 für Geräte der Klasse A Dieses Gerät ist berechtigt in Übereinstimmung mit dem Deutschen EMVG das EGKonformitätszeichen CE zu führen Verantwortlich für die Konformitätserklärung nach Paragraf 5 des EMVG ist die IBM Deutschland GmbH 70548 Stuttgart Informationen in Hinsicht EMVG Paragraf 4 Abs 1 4 Das Gerät erfüllt die Schutzanforderungen nach EN 55024 und EN 55022 Klasse ...

Page 21: ...Korean Class A Compliance Statement xx SiteProtector System SP2001 Hardware Configuration ...

Page 22: ...ng v Components that provide the basic functionality necessary to accept monitor and analyze network events such as the Agent Manager or Event Collector See SiteProtector Components on page 2 for a description of each component v Components that provide additional security and management functions such as the SiteProtector Reporting component Note SecurityFusion module is not preinstalled on the S...

Page 23: ...ity necessary to accept monitor and analyze network events Depending on your Site requirements you may need to install more than one of some components Component descriptions The following table describes the SiteProtector components SiteProtector Component Description Console Use the SiteProtector Console to perform most SiteProtector functions such as monitoring events scheduling scans generatin...

Page 24: ...es of the Desktop Protection agents Proventia Server IPS and Proventia Network MFS and X Press Update Server and it also facilitates data transfer from agents to the Event Collector SecurityFusion Module optional The SiteProtector system SecurityFusion Module greatly increases your ability to quickly identify and respond to critical threats at your Site Using advanced correlation and analysis tech...

Page 25: ...ly applies to add on components because the SiteProtector SP2001 appliance hardware meets all SiteProtector requirements Proventia Server IPS for Windows An embedded version of the Proventia Server IPS is installed and configured on the SiteProtector SP2001 appliance hardware and is delivered with a security policy that is predefined for the SiteProtector SP2001 appliance s operating system and co...

Page 26: ...idence of the attack Firewall Proventia Server IPS provides powerful firewall capabilities that inspect all inbound and outbound traffic on the computer for unauthorized activity Proventia Server IPS can control network communication based on port IP address and protocol Proventia Server IPS blocks unauthorized activity without affecting normal traffic Buffer overflow exploit prevention Proventia ...

Page 27: ...6 SiteProtector System SP2001 Hardware Configuration ...

Page 28: ...liance Entering information in the LCD controller module can be time consuming To save time use the module to establish network connectivity and then use the System Administration tab in the SiteProtector Console to perform additional configuration tasks Important consideration for rack mounted appliances Write down the Product Key of your SiteProtector SP2001 appliance before you install it The P...

Page 29: ...lts on page 28 Add on components The following add on components come preinstalled on the SiteProtector SP2001 appliance To enable these components you must add the license files v Proventia Server IPS v SiteProtector Reporting Note See Installing License Files on page 20 Automatic restarts To ensure that important configuration changes are saved the SiteProtector SP2001 appliance automatically re...

Page 30: ... to ensure that you have the items you need before you proceed with the configuration process This topic includes the following checklists v Information required v Cables required Information required checklist To establish network connectivity you must enter specific information about your network Use the checklist in the following table to collect this information U Setting Description Managemen...

Page 31: ...ing Cables required checklist You must use certain cables to connect the SiteProtector SP2001 appliance to the network and to a power source These cables are included with the SiteProtector SP2001 appliance U Item h Ethernet cable h Two 2 Power cord s included with the SiteProtector SP2001 appliance hardware 10 SiteProtector System SP2001 Hardware Configuration ...

Page 32: ...tarted Card instead of the procedures in this chapter if you are an experienced network administrator and you anticipate that your configuration will be straightforward The SiteProtector SP2001 Getting Started Card provides minimal guidance Topics SiteProtector SP2001 Appliance Configuration Checklist on page 12 The SiteProtector SP2001 Appliance Front Panel on page 13 The SiteProtector SP2001 App...

Page 33: ...mation See Pre configuration Checklists on page 9 Checklist Use the checklist in the following table as a guide to help you perform the tasks in this chapter The check boxes are provided as a convenience to help you check off the tasks as you complete them U Task Description h 1 Connect the cables and start the SiteProtector SP2001 appliance See Connecting the SiteProtector SP2001 Appliance on pag...

Page 34: ...atures of the front panel Feature Description LCD controller module The LCD controller module or LCD panel allows the user to set up the network configuration You can also configure the following from the LCD v appliance PIN v remote access v restart v shut down Management port The management port handles all network communication USB ports The USB ports communicate with peripherals such as keyboa...

Page 35: ...tached such as restoring the SiteProtector SP2001 appliance to a supported state on Restoring Factory Defaults on page 28 Connecting the SiteProtector SP2001 Appliance Procedure 1 Connect the power cords to the SiteProtector SP2001 appliance and to the power source Important You must connect both power cords to the SiteProtector SP2001 appliance to prevent warning signals from sounding 2 Connect t...

Page 36: ...e public and private keys that are exchanged between these devices which can be a time consuming and error prone process Advantage to using the SiteProtector Console The SiteProtector Console provides a much easier interface to enter information After you have connected to the network for the first time use the SiteProtector Console as much as possible to configure the SiteProtector SP2001 applian...

Page 37: ...wing information v subnet mask v default gateway v DNS Server v hostname Note The SiteProtector SP2001 appliance provides a default subnet mask and gateway address that is based on the IP address that you enter You can skip the procedure for entering these addresses if you verify that the default gateway and subnet addresses are correct See SiteProtector SP2001 Appliance Configuration Checklist on...

Page 38: ...nk 6 Select Run to download the SiteProtector Console to your computer 7 Select Run when asked to run this software to your computer 8 Follow the steps on the SiteProtector Console InstallShield Wizard to install the Console on your computer Starting the SiteProtector Console and logging on Procedure 1 On your computer open the SiteProtector Console 2 Right click the My Sites node in the left pane...

Page 39: ...18 SiteProtector System SP2001 Hardware Configuration ...

Page 40: ...le Follow the steps in this topic when you configure the SiteProtector SP2001 appliance Note This checklist provides the recommended order that the tasks in this chapter should be performed This order may not always be required Checklist Use the checklist in the following table as a guide to help you perform the tasks in this chapter As you perform tasks use the check boxes to check off the tasks ...

Page 41: ... Server IPS Choosing the SP2001 Appliance Language About this task Depending on your primary locale and user base you may need to change the SiteProtector SP2001 appliance language This topic provides a procedure for using the Windows administration options to change the SiteProtector SP2001 appliance language Important The SiteProtector SP2001 appliance restarts after you change the language opti...

Page 42: ...ws administrator Administrator ISSADMIN Important For the best security practices IBM ISS recommends that you use strong passwords and change these passwords frequently See the Microsoft Windows Server 2003 documentation regarding the criteria required for creating strong passwords Setting the Database Administrator password Procedure 1 Select the System view 2 In the left pane expand the site nod...

Page 43: ...eft pane expand the Site Node for the SiteProtector SP2001 appliance Site and then click the Appliance icon The Appliance Configuration interface appears in the right pane 3 Select the Maintenance tab and then click Date Time 4 Type in the correct Date and Time and then select the correct Time Zone 5 If you want the server to keep track of daylight savings time select the Automatically adjust cloc...

Page 44: ...tional hardware and Windows administration options on the SiteProtector SP2001 appliance Topics Starting and Shutting Down the SiteProtector SP2001 on page 24 Configuring SNMP Services on page 25 Securing the SiteProtector SP2001 Appliance Hardware on page 25 Copyright IBM Corp 1994 2008 23 ...

Page 45: ...Restart to do one of the following Click this option To do the following Restart Shut down and then restart the SiteProtector SP2001 appliance Shutdown Shut down and then turn off the SiteProtector SP2001 appliance A confirmation page appears 5 Click OK Scheduling a server shut down or restart Procedure 1 Select the System view 2 In the left pane expand the Site Node for the SiteProtector SP2001 a...

Page 46: ...P2001 appliance Site and then click the Appliance icon 3 The Appliance Configuration interface appears in the right pane 4 Select the Network tab and then click SNMP Service 5 Do one of the following v To enable SNMP services select the SNMP Service Enabled check box v To disable SNMP services clear the SNMP Service Enabled check box 6 Click OK Securing the SiteProtector SP2001 Appliance Hardware ...

Page 47: ...26 SiteProtector System SP2001 Hardware Configuration ...

Page 48: ...ains information that can help you troubleshoot the SiteProtector SP2001 appliance hardware and Windows administration options Topics Restoring Factory Defaults on page 28 Issue Related to the LCD Panel on page 29 Copyright IBM Corp 1994 2008 27 ...

Page 49: ...tector SP2001 appliance Perform this procedure only when it is absolutely necessary to recover from a catastrophic failure Procedure 1 Restart the SiteProtector SP2001 appliance Note See Starting and Shutting Down the SiteProtector SP2001 on page 24 for details The SiteProtector SP2001 appliance restarts and two boot options appear 2 Select the Restore to Factory Image option and then press ENTER ...

Page 50: ...ge to network settings fails Description If you are trying to change the network settings in the LCD panel while a window that contains the network configuration options is open on the SiteProtector Console the configuration change will fail Solution Close the window that contains the network configuration options and then try again Chapter 6 Troubleshooting 29 ...

Page 51: ...30 SiteProtector System SP2001 Hardware Configuration ...

Page 52: ...ate or change a database administrator password Set Administrator Password Create or change an Administrator password when you access the SiteProtector SP2001 appliance Remote Desktop Enable or disable access to the SiteProtector SP2001 appliance through the remote desktop client Set Default Page Set the default page to the Status page or the Welcome page This option allows you to choose which pag...

Page 53: ... server and edit properties Create edit or delete local groups on the server and edit properties Shares Create folders manage attributes and set permissions Create delete and edit the properties of each share Enable configure and disable file sharing protocols Maintenance Set the date and time on the server View clear download and configure the Application System or Security logs Change the langua...

Page 54: ...t Certificate of Authenticity 28 P password administrator 21 Product Key important consideration for rack mounted appliances 7 R remote desktop 9 S safety notices x shut down send warning message before 24 Simple Network Management Protocol 25 Site Database 2 SNMP 9 SP Core 2 supported languages 20 T technical support IBM Internet Security Systems ix traffic allowed on the appliance 9 U unsupporte...

Page 55: ...34 SiteProtector System SP2001 Hardware Configuration ...

Page 56: ......

Page 57: ... Printed in USA ...