Manuals / Juniper Networks / Household Appliance / Home Security System

Juniper Networks IDP250 manual J-SecurityCenter Updates Overview

Models: IDP250

1 84

Download 84 pages 43.14 Kb

Page 33

Chapter 2: Software Overview

For IDP deployments, centralized management provides the following benefits:

■Centralized management for IDP appliances and other network devices

■Consolidated logs from different devices in a single repository

■Centralized management of enterprise security policies

■Simplified management for attack signature updates

■Role-based administration

For information about installing NSM and using NSM distributed management features, management objects (such as address objects, service objects, and templates), and navigational and display features, see the NSM documentation.

J-Security Center Updates Overview

The Juniper Networks Security Center (J-Security Center) routinely makes important updates available to IDP security policy components, including updates to the IDP detector engine and the NSM attack database.

The IDP detector engine is a dynamic protocol decoder that includes support for decoding more than 60 protocols and more than 500 service contexts. You should update IDP detector engine when you first install IDP, whenever you upgrade, and whenever alerted to do so by Juniper Networks. You can view release notes for detector engine updates at

http://www.juniper.net/techpubs/software/management/idp/de/.

The NSM attack database stores data definitions for attack objects. Attack objects are patterns comprising stateful signatures and traffic anomalies. Security policy rules direct the IDP engine to inspect traffic for attack objects. We recommend you schedule automatic updates for the NSM attack database.

For more information about detector engine and attack object updates, see the IDP Administration Guide.

J-Security Center Updates Overview ■ 17

Image 33

Juniper Networks IDP250 manual J-SecurityCenter Updates Overview

Contents

Release IDP250 Installation GuideJuniper Networks, Inc Part Number 530-029729-01,RevisionCopyright 2009, Juniper Networks, Inc END USER LICENSE AGREEMENT 7.Ownership. Juniper and Juniper’s licensors, respectively, retain ownership of all right, title, and interest including copyright in and to the Software, associated documentation, and all copies of the Software. Nothing in this Agreement constitutes a transfer or conveyance of any right, title, or interest in the Software or associated documentation, or a sale of the Software, associated documentation, or copies of the Software Page Page Table of Contents PartHardware and Software Overview Adding the IDP Appliance to NSM Performing the InstallationPart PartPart IndexPart Partx Table of Contents IDP250 Installation GuideObjectives PrefaceAudience Documentation ConventionsTable 3 Syntax Conventions Table 2 Text ConventionsBold typeface like this Click User ObjectsRelated Documentation Table 4 Related IDP DocumentationTable 5 Related NSM Documentation Self-HelpOnline Tools and Resources Requesting Technical SupportOpening a Case with JTAC xvi Requesting Technical Support IDP250 Installation GuideHardware and Software Overview PartHardware and Software Overview 2 Hardware and Software Overview IDP250 Installation GuideHardware Overview ChapterIDP250 Overview Hard Drive Power SupplyFans System Status LEDsSerial Console Port USB PortManagement Interface Port Figure 2 Management Interface Port LEDsHigh Availability Interface Port Copper Ports Traffic Interface PortsFiber Ports Traffic Interface Features Deployment Mode Internal BypassGuide Figure 6 Internal Bypass NICs OffExternal Bypass Peer Port ModulationFigure 8 Peer Port Modulation Layer 2 Bypass14 Traffic Interface Ports IDP250 Installation GuideSoftware Overview On-BoxSoftware OverviewChapter Centralized Management with NSM Overview Table 11 IDP On-BoxUtilities continuedFigure 9 IDP-NSMCommunication J-SecurityCenter Updates Overview 18 J-SecurityCenter Updates Overview IDP250 Installation GuidePart Performing the Installation20 Performing the Installation IDP250 Installation GuideInstallation Overview Before You BeginChapter Basic Steps IDP250 Installation Guide22 Basic Steps Chapter Rack Mounting Kits and Required ToolsFigure 10 1-RUMidmount Bracket Mounting to Midmount BracketsMounting to Rack Rails Connecting Power26 Connecting Power IDP250 Installation GuideChapter Performing the Initial ConfigurationIDP250 Installation Guide Table 13 Getting Started Configuration ToolsDefaults Applied 28 Performing the Initial Configuration9600 bps 8 data bits 8.Type your netmask and press Enter To get started with the QuickStart wizard Installing the Product License Key Installing the Product License Key Related Topics Basic Steps on pageroot@localhost ~ scio lic add lic.txt 34 Installing the Product License Key IDP250 Installation GuideThis chapter includes the following topics ChapterConnecting Devices That Support Auto-MDIX Connecting Devices That Do Not Support Auto-MDIX Connecting Devices to Support Internal BypassConnecting and Disconnecting Fiber Cables Verifying Traffic Flow Part Adding the IDP Appliance to NSMAdding the IDP Appliance to NSM on page Adding the IDP Appliance to NSM40 Adding the IDP Appliance to NSM IDP250 Installation GuideAdding a Reachable IDP Device to NSM Reviewing Compatibility with NSMAdding the IDP Appliance to NSM ChapterTo import an IDP device with a known IP address NOTE In NSM, passwords are case-sensitive c.Enter ssh-keygen -l -fssh host dsa key b.Enter cd /etc/ssh9.Click Finish IDP250 Installation Guide Basic Steps on page46 Adding a Reachable IDP Device to NSM Part Installing Field Replaceable Units on pageUpgrading Software on page Reimaging the Appliance on pageIDP250 Installation Guide Updating Software NSM Procedure Upgrading SoftwareChapter 5.Click Next and complete the wizard steps Upgrading Software CLI Procedure c.Click OK Installing Field Replaceable Units Replacing a Power SupplyChapter 54 Replacing a Power Supply IDP250 Installation GuideReimaging the Appliance Reimaging and Relicensing an ApplianceChapter 56 Reimaging and Relicensing an Appliance IDP250 Installation GuidePart Technical Specifications on pageCompliance Statements on page Common Criteria EAL2 Compliance on pageIDP250 Installation Guide Technical Specifications IDP250 Technical SpecificationsChapter Table 18 Environmental Specifications Table 17 Power Cord SpecificationsIDP250 Installation Guide SpecificationsCompliance Statements Standards ComplianceChapter 62 Standards Compliance IDP250 Installation GuideCommon Criteria EAL2 Compliance Common Criteria EAL2 ComplianceChapter Table 21 Common Criteria EAL2 Compliance64 Common Criteria EAL2 Compliance IDP250 Installation GuidePart IndexIndex on page Index66 Index IDP250 Installation GuideIndex Symbols