Manuals / Juniper Networks / Computer Equipment / Network Card

Juniper Networks IDP250, IDP8200, IDP 800, IDP75 IDP Configuration Basics, IDP Sensor Placement

Models: IDP250

1 68

Download 68 pages 1.06 Kb

Page 16

IDP Configuration Basics

IDP 75, 250, 800, and 8200 Installation Guide

8.Add the sensor as an object in NSM using the Add Device wizard. Select Device Manager > Security Devices from the left navigational pane, and then click the + button. See “Adding Your Sensor to NSM” on page 29. The Add Device Wizard creates a database entry in NSM for the sensor, imports the sensor’s configuration, and loads the Juniper Networks Recommended policy onto the sensor. At that point, your sensor is actively protecting your network.

To improve the performance and accuracy of your protection, use the IDP Concepts

&Examples Guide and the NetScreen-Security Manager Administrator’s Guide to tailor your security policy to your network.

NOTE: You must update your attack objects to get the latest protection.

IDP Configuration Basics

This section provides an introduction to IDP configuration basics. An IDP configuration consists of the following components:

IDP sensor placement—Decide where to position the sensor in the network.

IDP sensor placement mode—Decide to use passive or active mode when deploying your IDP sensor.

NetScreen-SecurityManager—Use NetScreen-Security Manager (NSM) to administer the sensor.

IDP Sensor Placement

Juniper Networks IDP sensor is an ideal solution to be implemented inline between gateway firewalls and DMZ or internal networks. IDP sensor placement is an important part of the installation.

You should choose a location for your IDP sensor based on your existing network hardware and the networks you want to protect. The examples provided in this guide place the IDP sensor behind the firewall or router.

IDP Sensor Deployment Mode

IDP sensors can be installed individually or in high availability (HA) clusters of two or more.

For configurations without high availability, you can deploy the IDP sensor as a passive sniffer or as an active gateway.

Passive Mode—The sniffer mode is passive. In sniffer mode, the IDP is not directly involved with packet flow. While it can send resets, protection is not guaranteed as attacks may have already happened before the reset can be acted upon. In addition, attacker machines may ignore resets.

2 IDP Configuration Basics

Image 16

Juniper Networks IDP250, IDP8200, IDP 800, IDP75 IDP Configuration Basics, IDP Sensor Placement, IDP Sensor Deployment Mode

Contents

IDP 75, 250, 800, and 8200 Installation Guide Juniper NetworksIntrusion Detection and Prevention Releases 4.1r2a and AprilFCC Statement Copyright NoticeDisclaimer Table of Contents Planning an InstallationInstalling the Sensor About This GuideChapter Index IDP 75, 250, 800, and 8200 Installation Guide vi„ Table of ContentsList of Figures IDP 75, 250, 800, and 8200 Installation Guide viii„ List of FiguresList of Tables IDP 75, 250, 800, and 8200 Installation Guide x„ List of TablesAudience About This GuideConventions Documentation Web Access for DocumentationRequesting Technical Support Self-HelpOnline Tools and Resources Opening a Case with JTACAbout This Guide Requesting Technical Support „IDP 75, 250, 800, and 8200 Installation Guide xiv„ Requesting Technical SupportInstallation Roadmap Planning an InstallationChapter IDP Sensor Placement IDP Configuration BasicsIDP Sensor Deployment Mode IDP Configuration Basics „ Chapter 1 Planning an InstallationFigure 1 Sniffer Mode Passive IDP 75, 250, 800, and 8200 Installation Guide 4„ IDP Configuration BasicsAdvantages DisadvantagesAdvantages NetScreen-SecurityManagerDisadvantages IDP 75, 250, 800, and 8200 Installation Guide 6„ IDP Configuration BasicsIDP Sensors Hardware OverviewChapter IDP 250 Sensor IDP 75 SensorIDP 800 Sensor IDP 8200 Sensor Configurable NIC States Traffic Ports Forwarding InterfacesNormal State NIC Bypass StateSettings Table 4 NIC State OptionsNIC Bypass and Cable Choices External Bypass Unit StateNICs Off State IDP 75, 250, 800, and 8200 Installation GuidePower Supplies Peer Port ModulationManagement Ports Console Serial PortSystem Status LEDs IDP Sensor LEDsManagement and High Availability Port LEDs Traffic Port LEDs Hard Drive LEDs on Front PanelPower Supply LEDs on Back Panel Table 11 Power Supply LED DefinitionsTable 10 Hard Drive LED Definitions Front Panel LEDGeneral Installation Guidelines Installing the SensorChapter Rack Mounting the IDP Sensor Mounting Using Device Rack RailsRequired Tools Mounting Using Midmount Brackets Connecting Power Configuring the IDP Sensor Initial Configuration OptionsSimple Configuration Simple Configuration SettingsAdvanced Configuration Simple Configuration ValuesConnecting to the Sensor „9600 bps „8 data bits Using the Management Port to Configure the Sensor Connecting Directly Using the Management PortConnecting Remotely Using the Management Port QuickStart Simple Configuration ACM Advanced ConfigurationConfiguration Information Configuration InformationConfiguration Information Manager Administrator’s GuideAdministrator’s Guide SectionConnecting the High Availability Port Connecting Forwarding InterfacesVerifying Traffic Flow NetScreen-SecurityManager Installation Guide Adding the Sensor to NSMAdding Your Sensor to NSM ChapterFigure 12 Begin Add Device Procedure b.Select Device is Reachable defaultFigure 13 Add Device Wizard - Device Name 6. Enter the following connection information b.Log in as root Checking the Status of Your Sensor Figure 19 Viewing Device StatusIDP 75, 250, 800, and 8200 Installation Guide 34„ Checking the Status of Your SensorLoading a Sensor Image into NSM Updating Software on the SensorChapter Upgrading Sensor Software Updating IDP Sensor Software Without NSMReimaging the IDP Sensor IDP 75, 250, 800, and 8200 Installation Guide 38„ Reimaging the IDP SensorReplacing a Power Supply IDP 800, and 8200 Only Remove a Power SupplyServicing the Device ChapterReplacing a Hard Drive IDP 800 and 8200 Only Install a Power SupplyRemove a Hard Drive Install a Hard Drive IDP 75, 250, 800, and 8200 Installation Guide 42„ Replacing a Hard Drive IDP 800 and 8200 OnlyAdvanced Configuration Advanced Deployment ModesBridge Mode ChapterIDP 75, 250, 800, and 8200 Installation Guide Figure 21 Bridge ModeAdvantages DisadvantagesRouter Mode Figure 22 Router ModeAdvantages DisadvantagesProxy-ARPMode IDP High Availability Deployment ModesSpecifications Appendix AIDP 75 Technical Specifications IDP 250 Technical Specifications IDP 800 Technical Specifications IDP 8200 Technical Specifications EMI Compliance Safety ComplianceImmunity Index IDP 75, 250, 800, and 8200 Installation Guide 54 „ Index