Manuals / Juniper Networks / Computer Equipment / Network Card

Juniper Networks IDP75, IDP250 manual Adding the Sensor to NSM, Adding Your Sensor to NSM, Chapter

Models: IDP250

1 68

Download 68 pages 1.06 Kb

Page 43

Chapter 5

Adding the Sensor to NSM

This chapter describes how to add the IDP sensor to NetScreen-Security Manager (NSM) and push the Recommended policy. When you have completed the steps in this chapter, your IDP sensor will be protecting your network.

You must have NSM installed to complete the steps in this chapter. See the

NetScreen-Security Manager Installation Guide.

This chapter has the following sections:

Adding Your Sensor to NSM on page 29

Checking the Status of Your Sensor on page 33

Adding Your Sensor to NSM

This procedure assumes your sensor is installed, has a static IP address, and is reachable using SSH. If your sensor is not yet available, has a dynamic IP address, or is not reachable using SSH, see the IDP Concepts and Examples Guide for other procedures.

To import an IDP 75, 250, 800, or 8200 sensor with a known IP address:

1.In NSM, select Tools > View / Update NSM Attack Database to run the attack database wizard. This makes sure your attack database is up to date.

2.From the domain menu, select the domain in which to import the device.

3.Select Device Manager > Security Devices from the left navigation pane (Figure 12).

Adding Your Sensor to NSM 29

Image 43

Juniper Networks IDP75 Adding the Sensor to NSM, Adding Your Sensor to NSM, NetScreen-SecurityManager Installation Guide

Contents

Releases 4.1r2a and April IDP 75, 250, 800, and 8200 Installation GuideJuniper Networks Intrusion Detection and PreventionFCC Statement Copyright NoticeDisclaimer About This Guide Table of ContentsPlanning an Installation Installing the SensorChapter Index vi„ Table of Contents IDP 75, 250, 800, and 8200 Installation GuideList of Figures viii„ List of Figures IDP 75, 250, 800, and 8200 Installation GuideList of Tables x„ List of Tables IDP 75, 250, 800, and 8200 Installation GuideAudience About This GuideConventions Documentation Web Access for DocumentationRequesting Technical Support Requesting Technical Support „ Self-HelpOnline Tools and ResourcesOpening a Case with JTAC About This Guidexiv„ Requesting Technical Support IDP 75, 250, 800, and 8200 Installation GuideInstallation Roadmap Planning an InstallationChapter IDP Sensor Placement IDP Configuration BasicsIDP Sensor Deployment Mode IDP Configuration Basics „ Chapter 1 Planning an InstallationFigure 1 Sniffer Mode Passive Disadvantages IDP 75, 250, 800, and 8200 Installation Guide4„ IDP Configuration Basics AdvantagesAdvantages NetScreen-SecurityManagerDisadvantages 6„ IDP Configuration Basics IDP 75, 250, 800, and 8200 Installation GuideIDP Sensors Hardware OverviewChapter IDP 250 Sensor IDP 75 SensorIDP 800 Sensor IDP 8200 Sensor Traffic Ports Forwarding Interfaces Configurable NIC StatesTable 4 NIC State Options Normal StateNIC Bypass State SettingsIDP 75, 250, 800, and 8200 Installation Guide NIC Bypass and Cable ChoicesExternal Bypass Unit State NICs Off StateConsole Serial Port Power SuppliesPeer Port Modulation Management PortsSystem Status LEDs IDP Sensor LEDsManagement and High Availability Port LEDs Hard Drive LEDs on Front Panel Traffic Port LEDsFront Panel LED Power Supply LEDs on Back PanelTable 11 Power Supply LED Definitions Table 10 Hard Drive LED DefinitionsGeneral Installation Guidelines Installing the SensorChapter Rack Mounting the IDP Sensor Mounting Using Device Rack RailsRequired Tools Mounting Using Midmount Brackets Connecting Power Simple Configuration Settings Configuring the IDP SensorInitial Configuration Options Simple ConfigurationAdvanced Configuration Simple Configuration ValuesConnecting to the Sensor „9600 bps „8 data bits Connecting Directly Using the Management Port Using the Management Port to Configure the SensorConnecting Remotely Using the Management Port Configuration Information QuickStart Simple ConfigurationACM Advanced Configuration Configuration InformationSection Configuration InformationManager Administrator’s Guide Administrator’s GuideConnecting the High Availability Port Connecting Forwarding InterfacesVerifying Traffic Flow Chapter NetScreen-SecurityManager Installation GuideAdding the Sensor to NSM Adding Your Sensor to NSMFigure 12 Begin Add Device Procedure b.Select Device is Reachable defaultFigure 13 Add Device Wizard - Device Name 6. Enter the following connection information b.Log in as root Figure 19 Viewing Device Status Checking the Status of Your Sensor34„ Checking the Status of Your Sensor IDP 75, 250, 800, and 8200 Installation GuideLoading a Sensor Image into NSM Updating Software on the SensorChapter Updating IDP Sensor Software Without NSM Upgrading Sensor SoftwareReimaging the IDP Sensor 38„ Reimaging the IDP Sensor IDP 75, 250, 800, and 8200 Installation GuideChapter Replacing a Power Supply IDP 800, and 8200 OnlyRemove a Power Supply Servicing the DeviceReplacing a Hard Drive IDP 800 and 8200 Only Install a Power SupplyRemove a Hard Drive Install a Hard Drive 42„ Replacing a Hard Drive IDP 800 and 8200 Only IDP 75, 250, 800, and 8200 Installation GuideChapter Advanced ConfigurationAdvanced Deployment Modes Bridge ModeDisadvantages IDP 75, 250, 800, and 8200 Installation GuideFigure 21 Bridge Mode AdvantagesDisadvantages Router ModeFigure 22 Router Mode AdvantagesIDP High Availability Deployment Modes Proxy-ARPModeAppendix A SpecificationsIDP 75 Technical Specifications IDP 250 Technical Specifications IDP 800 Technical Specifications IDP 8200 Technical Specifications EMI Compliance Safety ComplianceImmunity Index 54 „ Index IDP 75, 250, 800, and 8200 Installation Guide