manualshive.com logo in svg

NETASQ NA-F25, Installation Manual

The NETASQ NA-F25 is a high-performance network security appliance. Ensure a smooth setup with the comprehensive Installation Manual available for free download at 88.208.23.73:8080. This detailed manual guides users through the installation process, enabling them to fully leverage the product's capabilities effortlessly and securely.

Share
Download
background image

 

 

Copyright NETASQ 2010 

 

 

Page 7/65 

INSTALLATION GUIDE : 

1. INTRODUCTION

 

 

1

1

 

 

I

I

N

N

T

T

R

R

O

O

D

D

U

U

C

C

T

T

I

I

O

O

N

N

 

 

 
 
 
Thank you for choosing NETASQ.  Designed to protect structures of all sizes, NETASQ’s UTM appliances 
are pre-configured: no hardware or software installation is needed and no UNIX knowledge is necessary, just 
a user-friendly configuration via a graphical interface.  There are currently 10 products in the range: U30, 
U70, U120, U250, U450, U1100, U1500, U6000, NG1000-A and NG5000-A. 
 

 

The NETASQ UTM appliance allows the definition of incoming or outgoing access control rules.  Its concept 
is simple: any incoming or outgoing transmission passing through the NETASQ Firewall is monitored, 
authorized or denied according to the rules, packet by packet. 
 
The NETASQ Firewall is based on an upgraded packet filtering mechanism which brings a high level of 
security.  All NETASQ Firewalls integrate the ASQ (

Active Security Qualification

) technology developed by 

NETASQ.  This technology allows detection and blocking of hacking attempts in real time – illegal packets, 
denial of service attempts, anomalies in a connection, port scans, buffer overflows, etc. 

 

In the case of an intrusion attempt, depending on the instructions given in the security policy, the NETASQ 
Firewall blocks the transmission, generates an alarm and stores the information linked to the packet which 
had set off the alarm.  As such, you would be able to analyze the attack and trace its source. 
 
The Firewall not only allows preventing, or restricting to just certain services, incoming connections on your 
network, but also allows monitoring the use of the internet by your internal users (HTTP, FTP, SMTP...).  You 
may also monitor your users by authenticating them via an internal or external authentication database.  

 

The NETASQ Firewall also manages port and address translation mechanisms.  These mechanisms provide 
security (by masking your internal address range) and flexibility (by enabling the use of any private internal 
addressing range) and reduce costs (by enabling the provision of several servers on the internet with a 
single public IP address). 
 
With ASQ, NETASQ’s IPS (

Intrusion Prevention System

) engine, a NETASQ firewall offers all the more 

security.  Its plugin architecture allows monitoring most of the traffic circulating through the Firewall even at 
the application layer.  Its performance in terms of throughput, number of rules and number of tunnels, has 
been increased tenfold. 

 

Thanks to its Windows-based user interface, it allows the rapid and simple definition of your network's 
security rules, from a local workstation running under Windows.  You may also monitor your Firewall’s 
activity in real time. 
 
The NETASQ Firewall is also equipped with advanced log functions.  In an intrusion attempt, the network 
administrator may access all data sent before the attack and see how it had been prepared.  NETASQ 
EVENT REPORTER provides you with a graphical view and fine analysis of logs generated on the Firewall.  

 

Lastly, the NETASQ Firewall includes VPN gateway functions allowing you to establish encrypted tunnels 
with other VPN equipment.  In this way, your communications between sites or with your mobile users 
(“Road Warriors”) may be secured even while using an insecure communication infrastructure like the 
internet.  
 
This installation guide presents the products (front and rear panels), explains the physical installation 
process and lastly allows you to configure your product in order to integrate it into the desired network 
architecture.  It also explains how to insert additional network cards to the U6000 product or to insert 
extension modules to the NG1000-A and NG5000-A products.  
 

Summary of Contents for NA-F25

Page 1: ... ES SE EN NT TA AT TI IO ON N A AN ND D I IN NS ST TA AL LL LA AT TI IO ON N O OF F N NE ET TA AS SQ Q P PR RO OD DU UC CT TS S Date Version Author Details April 2010 V1 0 NETASQ Creation September 2010 V1 1 NETASQ Update Reference naengde_product installation ...

Page 2: ...document in full before installing any NETASQ UTM product This guide aims to facilitate the quick integration of a NETASQ firewall into your network but does not provide information on how to configure it Please consult the relevant help file on the CD ROM provided for configuration matters ...

Page 3: ...uct and its associated documentation The contents of this document relate to the developments in NETASQ s technology at the time of its writing With the exception of the mandatory applicable laws no guarantee shall be made in any form whatsoever expressly or implied including but not limited to implied warranties as to the merchantability or fitness for a particular purpose as to the accuracy reli...

Page 4: ...PPLIANCE 14 4 3 THE U70 APPLIANCE 16 4 4 THE U120 APPLIANCE 17 4 5 THE U250 APPLIANCE 18 4 6 THE U450 APPLIANCE 20 4 7 THE U1100 APPLIANCE 21 4 7 1 FRONT PANEL 21 4 7 2 REAR PANEL 22 4 8 THE U1500 APPLIANCE 22 4 8 1 FRONT PANEL 23 4 8 2 REAR PANEL 24 4 9 THE U6000 APPLIANCE 25 4 9 1 FRONT PANEL 25 4 9 2 REAR PANEL 26 4 10 THE NG1000 A APPLIANCE 27 4 10 1 FRONT PANEL 27 4 10 2 REAR PANEL 28 4 11 TH...

Page 5: ...1 PREREQUISITES 42 7 1 1 MINIMUM CONFIGURATION FOR CONFIGURING A NETASQ FIREWALL 42 7 1 2 PREPARATION OF INTERNET ACCESS 42 7 2 CONFIGURATION 43 7 3 REGISTERING AND INSTALLING THE PRODUCT 44 APPENDIX A UPDATING THE LICENSE 45 INSTALLING THE LICENSE 48 APPENDIX B RESETTING THE FIREWALL 49 APPENDIX C ADDING AN ADDITIONAL U6000 NETWORK CARD 51 GENERAL POINTS 51 AUTHORIZATION 51 WARNING 51 APPLIANCES ...

Page 6: ...ight NETASQ 2010 Page 6 65 INSTALLATION GUIDE CONTENTS GENERAL POINTS 62 APPLIANCES CONCERNED 62 DESCRIPTION OF THE CARDS 62 PROCEDURE FOR ADDING A CARD 62 APPENDIX E INSTALLING VIA THE CD ROM 64 GLOSSARY 65 ...

Page 7: ...rnal or external authentication database The NETASQ Firewall also manages port and address translation mechanisms These mechanisms provide security by masking your internal address range and flexibility by enabling the use of any private internal addressing range and reduce costs by enabling the provision of several servers on the internet with a single public IP address With ASQ NETASQ s IPS Intr...

Page 8: ...liance from the main power supply WARNING NETASQ firewalls should not be installed in locations where the temperature may exceed 35 C The table below indicates the operating temperature storage temperature and humidity level for each appliance Operating temperature Storage temperature Humidity U30 5 to 40 C 51 to 104 F 30 to 65 C 22 to 149 F 20 to 90 sans condensation U70 5 to 40 C 51 to 104 F 30 ...

Page 9: ...2 standard Class A In residential environments these products may cause radioelectric disturbances in which case the user may be obliged to take the appropriate measures WARNING Ensure that you unplug ALL power cables connected to the firewall before beginning any interventions on it WARNING The metal brackets on the front panel of the U6000 NG1000 A and NG5000 products are not to be used for lift...

Page 10: ...he 3rd label serves to identify the configuration of the product Check that this information matches your order IMPORTANT It is best that you have your serial number and web password given on the label on the underside of the product at hand before connecting or installing the firewall The 3 labels are as follows Serial number label this label pasted on the product indicates information such as th...

Page 11: ...on number and model which correspond to a certain export zone This label helps to check later if the delivered version has been certified Figure 3 Product version label 3 1 2 Quality seal Every firewall is delivered in a cardboard box on which a NETASQ specific quality seal or a NETASQ QUALITY SEAL is affixed Check that there is such a seal on your product s packaging Below is the type of label or...

Page 12: ... certificate Figure 6 Firewall seal Confirm that these security mechanisms are in place in order to ensure the integrity of the product delivered as well as any subsequent dispute concerning the application of the guarantee in the event a breach has been observed more than 48 hours after receipt of the product Feel free to contact your distributor if any of the elements does not comply with its de...

Page 13: ...models products that can be installed on a desk or in a rack ie U120 U250 U450 U1100 and U1500 These feet can be delivered already installed on the appliance for non rackable products U30 and U70 U6000 NG1000 A and NG5000 A appliances are delivered with racking rails sliding rails in addition to front attachment brackets These rails have to be set up on prder to prevent deterioration of the produc...

Page 14: ...this document For all models upon startup the LEDs light up in the following order Power Status Online The Power LED will light up first then Status then Online The Online LED which indicates that the product is running will light up after about 2 minutes For all models upon shutdown the LEDs shut off in the following order Power Status Online The Online LED goes off first then Status followed by ...

Page 15: ...his means that the appliance is off The product is running when the Power LED and the Status and Online LEDs green are visible The Online LED will be the last to light up when the product is running Traffic will pass through the interfaces When the appliance is starting shutting down or being updated only the Status and Power LEDs will light up WARNING You are strongly advised against unplugging t...

Page 16: ...5 VGA port for connecting a monitor 6 Button to reset to the default configuration defaultconfig 7 1 USB port for secure configuration or updates 8 OUT Interface 9 IN Interface Point 1 to shut down the software hold down the software shutdown button for 4 seconds until the Online green LED goes off NOTE The fan is directly linked to the power supply Point 2 the Power LED yellow indicates that the ...

Page 17: ... if the left LED lights up on an IN interface this indicates a throughput of 10 mbits s 2 LEDs that light up indicate a throughput of 100 mbits s and if the right LED lights up this indicates a throughput of 1000 mbits s One or two blinking LEDs on an IN interface indicate the presence of network activity NOTE power is supplied to this appliance from outside the rear panel An upgrade to version 8 ...

Page 18: ...ds in the event of a major failure of the product hardware modification faulty network interface etc In this case do contact your distributor For an appliance configured in high availability the Online LED will light up intermittently for every second it lights up it will go off for 2 seconds This means that the appliance is in passive mode Points 3 4 and 5 these different ports enable access to t...

Page 19: ...fic will pass through the interfaces When the appliance is starting shutting down or being updated only the Status and Power LEDs will light up WARNING You are strongly advised against unplugging the product when the Status LED is starting shutting down or being updated The Status LED will blink quick blinking every 250 milliseconds in the event of a major failure of the product hardware modificat...

Page 20: ...ut down the software hold down the software shutdown button for 4 seconds until the Online green LED goes off NOTE The fan is directly linked to the power supply Point 2 the Power LED yellow indicates that the product has been plugged in but has been shut down If this is the only LED that lights up this means that the appliance is off The product is running when the Power LED and the Status and On...

Reviews:

No comments

Related manuals for NA-F25

Barracuda Networks Spyware Firewall Quick Start Manual preview
Spyware Firewall
Brand: Barracuda Networks Pages: 2
ETIC IPL-E User Manual preview
IPL-E
Brand: ETIC Pages: 38
Fortinet FortiGate 310B-LENC Quick Start Manual preview
FortiGate 310B-LENC
Brand: Fortinet Pages: 2
Watchguard Firebox M440 Quick Start Manual preview
Firebox M440
Brand: Watchguard Pages: 21
Cisco Catalyst 3130 Software Configuration Manual preview
Catalyst 3130
Brand: Cisco Pages: 1354
Cisco Catalyst 3120 Software Manual preview
Catalyst 3120
Brand: Cisco Pages: 1224
ZyXEL Communications ZyWALL USG Series Reference Manual preview
ZyWALL USG Series
Brand: ZyXEL Communications Pages: 426
Huawei USG6000E Series Hardware Manual preview
USG6000E Series
Brand: Huawei Pages: 610
SonicWALL SuperMassive 9800 AC Installation Manual preview
SuperMassive 9800 AC
Brand: SonicWALL Pages: 2
SonicWALL SOHO Wireless Quick Start Manual preview
SOHO Wireless
Brand: SonicWALL Pages: 2
SonicWALL SMA 7210 Replacement And Installation preview
SMA 7210
Brand: SonicWALL Pages: 2
SonicWALL SSL-IA Hardware Manual preview
SSL-IA
Brand: SonicWALL Pages: 4
SonicWALL Secure Mobile Access 6210 Installation Manual preview
Secure Mobile Access 6210
Brand: SonicWALL Pages: 2
SonicWALL NSa 6700 Quick Start Manual preview
NSa 6700
Brand: SonicWALL Pages: 2
SonicWALL NSa 2700 Quick Start Manual preview
NSa 2700
Brand: SonicWALL Pages: 2
SonicWALL TZ 100 / 200 Quick Start Manual preview
TZ 100 / 200
Brand: SonicWALL Pages: 9
SonicWALL TZ 150 Wireless Getting Started Manual preview
TZ 150 Wireless
Brand: SonicWALL Pages: 37
SonicWALL TZ 190 User Manual preview
TZ 190
Brand: SonicWALL Pages: 46

Brands by name

Popular brands

Load more brands