Manuals / Juniper Networks / Computer Equipment / Network Card

Juniper Networks IDP 800, IDP250, IDP75 Advantages, Disadvantages, Transparent Mode Inline Active

Models: IDP250

1 68

Download 68 pages 1.06 Kb

Page 18

Advantages

IDP 75, 250, 800, and 8200 Installation Guide

Table 2: Advantages and Disadvantages of Sniffer Mode (Passive)

Advantages	Disadvantages

Seamlessly replaces the current intrusion	Passively monitors with limited prevention
detection	only
Causes minimal network changes	Requires a hub or the Switched Port Analyser
Does not create an additional	(SPAN) port of a switch
Does not create an additional
point-of-failure gateway

Monitors and logs suspicious network activity

Figure 2: Transparent Mode (Inline Active)

		Internet
	Firewall			Hub or
	Firewall		IP 2.2.2.1	Switch
				Switch

		IP 1.1.1.1
		eth2
		No ip address
	IDP Sensor	Forwarding Interface		Management Server
				Management Server
				IP 2.2.2.4
	eth0 IP 2.2.2.7 MGT	eth3
	Interface	No IP address
		Forwarding Interface
	Hub or
	Switch
				User Interface
				IP 2.2.2.5
	Server1	Server2	Server3
	IP 1.1.1.2	IP 1.1.1.3	IP 1.1.1.4
	GW 1.1.1.1	GW 1.1.1.1	GW 1.1.1.1
		Protected Machines

Table 3 lists the advantages and the disadvantages of using the sensor in active transparent (inline) mode.

4 IDP Configuration Basics

Image 18

Juniper Networks IDP 800, IDP250 Advantages, Disadvantages, Transparent Mode Inline Active, 4„ IDP Configuration Basics

Contents

Intrusion Detection and Prevention IDP 75, 250, 800, and 8200 Installation GuideJuniper Networks Releases 4.1r2a and AprilCopyright Notice FCC StatementDisclaimer Installing the Sensor Table of ContentsPlanning an Installation About This GuideChapter Index IDP 75, 250, 800, and 8200 Installation Guide vi„ Table of ContentsList of Figures IDP 75, 250, 800, and 8200 Installation Guide viii„ List of FiguresList of Tables IDP 75, 250, 800, and 8200 Installation Guide x„ List of TablesAbout This Guide AudienceConventions Web Access for Documentation DocumentationRequesting Technical Support About This Guide Self-HelpOnline Tools and ResourcesOpening a Case with JTAC Requesting Technical Support „IDP 75, 250, 800, and 8200 Installation Guide xiv„ Requesting Technical SupportPlanning an Installation Installation RoadmapChapter IDP Configuration Basics IDP Sensor PlacementIDP Sensor Deployment Mode Chapter 1 Planning an Installation IDP Configuration Basics „Figure 1 Sniffer Mode Passive Advantages IDP 75, 250, 800, and 8200 Installation Guide4„ IDP Configuration Basics DisadvantagesNetScreen-SecurityManager AdvantagesDisadvantages IDP 75, 250, 800, and 8200 Installation Guide 6„ IDP Configuration BasicsHardware Overview IDP SensorsChapter IDP 75 Sensor IDP 250 SensorIDP 800 Sensor IDP 8200 Sensor Configurable NIC States Traffic Ports Forwarding InterfacesSettings Normal StateNIC Bypass State Table 4 NIC State OptionsNICs Off State NIC Bypass and Cable ChoicesExternal Bypass Unit State IDP 75, 250, 800, and 8200 Installation GuideManagement Ports Power SuppliesPeer Port Modulation Console Serial PortIDP Sensor LEDs System Status LEDsManagement and High Availability Port LEDs Traffic Port LEDs Hard Drive LEDs on Front PanelTable 10 Hard Drive LED Definitions Power Supply LEDs on Back PanelTable 11 Power Supply LED Definitions Front Panel LEDInstalling the Sensor General Installation GuidelinesChapter Mounting Using Device Rack Rails Rack Mounting the IDP SensorRequired Tools Mounting Using Midmount Brackets Connecting Power Simple Configuration Configuring the IDP SensorInitial Configuration Options Simple Configuration SettingsSimple Configuration Values Advanced ConfigurationConnecting to the Sensor „9600 bps „8 data bits Using the Management Port to Configure the Sensor Connecting Directly Using the Management PortConnecting Remotely Using the Management Port Configuration Information QuickStart Simple ConfigurationACM Advanced Configuration Configuration InformationAdministrator’s Guide Configuration InformationManager Administrator’s Guide SectionConnecting Forwarding Interfaces Connecting the High Availability PortVerifying Traffic Flow Adding Your Sensor to NSM NetScreen-SecurityManager Installation GuideAdding the Sensor to NSM Chapterb.Select Device is Reachable default Figure 12 Begin Add Device ProcedureFigure 13 Add Device Wizard - Device Name 6. Enter the following connection information b.Log in as root Checking the Status of Your Sensor Figure 19 Viewing Device StatusIDP 75, 250, 800, and 8200 Installation Guide 34„ Checking the Status of Your SensorUpdating Software on the Sensor Loading a Sensor Image into NSMChapter Upgrading Sensor Software Updating IDP Sensor Software Without NSMReimaging the IDP Sensor IDP 75, 250, 800, and 8200 Installation Guide 38„ Reimaging the IDP SensorServicing the Device Replacing a Power Supply IDP 800, and 8200 OnlyRemove a Power Supply ChapterInstall a Power Supply Replacing a Hard Drive IDP 800 and 8200 OnlyRemove a Hard Drive Install a Hard Drive IDP 75, 250, 800, and 8200 Installation Guide 42„ Replacing a Hard Drive IDP 800 and 8200 OnlyBridge Mode Advanced ConfigurationAdvanced Deployment Modes ChapterAdvantages IDP 75, 250, 800, and 8200 Installation GuideFigure 21 Bridge Mode DisadvantagesAdvantages Router ModeFigure 22 Router Mode DisadvantagesProxy-ARPMode IDP High Availability Deployment ModesSpecifications Appendix AIDP 75 Technical Specifications IDP 250 Technical Specifications IDP 800 Technical Specifications IDP 8200 Technical Specifications Safety Compliance EMI ComplianceImmunity Index IDP 75, 250, 800, and 8200 Installation Guide 54 „ Index