manualshive.com logo in svg

Blue Coat SG200 200 A, Installation Manual

The Blue Coat SG200 200 A is a powerful security gateway for your network. Ensure proper installation with the free Installation Manual available for download at manualshive.com. This comprehensive manual includes step-by-step instructions to help you set up and maximize the performance of your security gateway.

Share
Download
background image

30 

Blue Coat SG200 Series

Figure 2-19:   Initial Setup—Secure the Serial Port (Optional)

8

(Optional) On page 4, you can restrict access to the SG200.

Figure 2-20:   Initial Setup—Page Four

Page 5 displays. This page explains how to access the SG200 from an SSH Client or with a Web 
browser. See 

Section E: “Logging on to the SG200

on page  37 for more information.

Note:

For maximum security, restrict physical access to the SG200. 

Do you want to secure the serial port? Y/N [Yes] 

Y

Enter setup password: 

”******”

Verify setup password: 

”******”

WARNING:

If you continue and enable the secure serial port it will not be 

possible to enter the setup console without the setup password. If 

the setup password is lost, assistance from Blue Coat Systems will be 

required and all system configuration may be lost. It is recommended 

that this password be stored in a physically secure location. Access 

to the CLI on the serial port will challenge for credentials.

To enable the secure serial port, re-enter the setup password: 

”******”

--------------------- (page 4 of 5) --------------------

Press <ESC> at any time to return to the main menu

DIRECTIONS:

The console username and password are special: they can be used to 

log in to the CLI or Web Management interface even in circumstances 

where this is denied by VPM or CPL policy. This makes the console 

account useful in emergencies, as a way to log in when policy is 

broken, but it may also create a security hole.

To close the security hole, we recommend that you restrict the use of 

the console account to specific workstations, identified by their IP 

address.

This dialog allows you to add one IP address to the list of 

workstations that are authorized to use the console account. (This 

same list is also used to restrict which workstations can use SSH 

with RSA authentication.) Additional workstations may be configured 

later, from the command line interface or the Web interface.

WARNING: The console account can currently be used to log in from any 

workstation.

Would you like to restrict access to an authorized workstation? Y/N 

[Yes] 

Y

Authorized workstation [0.0.0.0]:

10.2.33.1

Summary of Contents for SG200 200 A

Page 1: ...Blue Coat Systems SG200 Series Installation Guide Version SGOS 4 2 x and 5 1 x...

Page 2: ...or other means without the written consent of Blue Coat Systems Inc All right title and interest in and to the Software and documentation are and shall remain the exclusive property of Blue Coat Syst...

Page 3: ...on 21 200 C Configuring the SG200 Using a Direct Serial Port Connection 27 Section D Configuring the SG200 from a Remote Location About Remote Configuration 32 Section E Logging on to the SG200 Chapte...

Page 4: ...lass A Digital Warning 55 EC Community EMC Warning 55 Canadian EC EMC Warning 55 Australia New Zealand EMC Warning 55 Taiwan BSMI Notification 56 Japan VCCI EMC Notification 56 China CCC Notification...

Page 5: ...ccess the Blue Coat ProxySG Configuration and Management Guide Suite by clicking the Help button on any screen in the Management Console the SG200 user interface This chapter explains how to unpack th...

Page 6: ...ctivity Green at least one disk is being accessed can also indicate compact flash drive access Adapter Port LEDs Network Adapter Ports 0 and 1 Off no link Green link Flashing Green to Amber link and n...

Page 7: ...Connects to a PC serial terminal or standalone serial console box Use this port to configure or maintain the SG200 using the command line interface CLI Ethernet Adapter Ports 0 and 1 Two full duplex a...

Page 8: ...to mark the positions on the wall for the two anchors drill holes in the wall just large enough to fit each anchor 2 Line up the holes on the wall mounting bracket with the anchors Use a Phillips scre...

Page 9: ...on each side as shown in Figure 1 5 Figure 1 5 Attach the Brackets to the SG200 2 While fully supporting the weight of the SG200 mount the brackets onto the equipment rack using three equipment rack s...

Page 10: ...the left most LED glows solid amber 4 After the SG200 boots up verify that the Power LED behaves as described below If the Power LED is solid green after booting up an initial configuration has alrea...

Page 11: ...te Web browser setup Use this method under the following circumstances You want to place the SG200 directly into the network and use a standalone serial terminal or terminal emulator to configure it S...

Page 12: ...guration Using a Direct Serial Port Connection on page 21 skip the procedure below and place the SG200 directly into your network see Section B Placing the SG200 into the Network on page 20 Also skip...

Page 13: ...work Connection If the network connection LEDs are not green check the following Verify that each cable is connected properly such as to a switch or a hub Try using a different network connection cabl...

Page 14: ...rocedure described in Connecting the SG200 to a PC on page 12 2 Power on the SG200 3 Enter the following URL into your browser proxysg bluecoat com 8083 A security warning dialog appears 4 Click Yes o...

Page 15: ...is already in a valid hashed format Figure 2 4 Initial Configuration Page Console Account Username and Password 7 Select the default policy for proxied services Selecting Allow permits all proxied tr...

Page 16: ...ole setup allowing only authorized personnel the ability to reconfigure the appliance WARNING If you set the serial console password and then lose the password you must restore the appliance to its or...

Page 17: ...the SG200 into the network see Section B Placing the SG200 into the Network on page 20 When you have set the basic networking parameters and connected the SG200 to the network you are ready to fully...

Page 18: ...ibed in Connecting the SG200 to a PC on page 12 2 Power on the SG200 3 Enter the following URL into your browser https proxysg bluecoat com 8083 A security warning dialog appears 4 Click Yes or OK in...

Page 19: ...ed Secure the serial port d Enter the network settings IP Address Subnet Mask Gateway DNS Server e Optional Configure the Application Delivery Network ADN settings The ADN settings optimize the delive...

Page 20: ...ace the SG200 into the Network 1 Connect the SG200 to the WAN connect one end of an Ethernet cable straight or crossover depending on your network topology to one of the SG200 s Ethernet ports either...

Page 21: ...can occur if there are non standard PC serial port settings The following procedure is for 200 A and 200 B Appliances running SGOS 4 x or later Do the procedure by reading on screen material and enter...

Page 22: ...he first time network configuration 4 On page 1 press Enter to enter the bridge name passthru 0 and enter the IP address IP subnet mask IP gateway and DNS server parameters Emulation VT 100 Note If yo...

Page 23: ...rform additional management tasks If you have a pass through card you can configure it by using the bridge name passthru slot number For example if the pass through card is at slot 2 the bridge name w...

Page 24: ...6 page 2 of 5 Press ESC at any time to return to the main menu DIRECTIONS The console username password and enable password are special administrative credentials which can be used to log in to the co...

Page 25: ...page 3 of 5 Press ESC at any time to return to the main menu DIRECTIONS The console username and password are special they can be used to log in to the CLI or Web Management interface even in circumst...

Page 26: ...st of all CLI commands refer to the Blue Coat ProxySG Command Line Reference For information about configuring and administering the SG200 including information about setting policies that will explic...

Page 27: ...ime as shown in the following steps 1 Power on and connect the serial terminal or PC as described below the SG200 must be powered off Serial terminal Connect the terminal s serial cable to the SG200 s...

Page 28: ...subnet b Need the console password and enable password SYSTEM STARTUP TEMPORARILY SUSPENDED Press enter three times to activate the serial console Welcome to the ProxySG Appliance Setup Console page...

Page 29: ...onsole password and then lose the password you must restore the appliance to its original factory defaults to access the Management Console or CLI see Resetting the SG200 to Its Factory Defaults on pa...

Page 30: ...ials To enable the secure serial port re enter the setup password page 4 of 5 Press ESC at any time to return to the main menu DIRECTIONS The console username and password are special they can be used...

Page 31: ...ers and connected the SG200 to the network you are ready to fully configure the appliance For a list of all CLI commands refer to the Blue Coat ProxySG Command Line Reference For information about con...

Page 32: ...or locally The remote configuration method is useful in the following circumstances You have appliances destined for multiple locations but do not want to have to first ship them to a single location...

Page 33: ...ord If you enter the passwords in plain text click hash the password for each password If you enter the passwords in hashed format select password is in hashed format for each password A hashed passwo...

Page 34: ...Port and enter the password If you enter the password in plain text click hash the password If you enter the password in hashed format select password is in hashed format A hashed password must be in...

Page 35: ...as the SG200 and you are planning to complete the initial configuration using a URL provided to you by a remote administrator To Configure the SG200 Using a Remotely Generated URL 1 Place the SG200 in...

Page 36: ...e Note You might need to modify the network parameters on your PC so that the URL works to configure the SG200 Consult the remote administrator if you suspect that this is required When you have set t...

Page 37: ...oft Internet Explorer 6 Netscape Communicator 7 2 and Firefox 1 0 3 Enter the IP address configured during initial configuration followed by the port number 8082 For example enter https 10 25 36 47 80...

Page 38: ...on or an SSH client such as PuTTY or F Secure To connect to the SG200 CLI using Telnet you must first enable the Telnet Console Refer to Volume 3 Proxies and Proxy Services of the Blue Coat ProxySG Co...

Page 39: ...installed before proceeding with the following steps 1 Start the SG200 2 Launch your SSH Client enter the following settings as necessary The IP address that you configured during initial configuratio...

Page 40: ...40 Blue Coat SG200 Series...

Page 41: ...he left glows green to indicate a functional network connection Figure 3 1 Verify the Network Link If the LED on the left is not green for either connection a network link is not established Check the...

Page 42: ...he same subnet as one of the IP addresses Or you can add a static route on the host client Verify that the browser is not proxied To change or check the browser settings complete one of the following...

Page 43: ...problem with the SG200 If accessing a SG200 located on a remote network any segment other than the segment to which the workstation is attached verify that other servers on that network are accessible...

Page 44: ...nhealthy environment statistics Figure 3 4 Sensor Statistics Window 4 Close the Sensor statistics window when you are finished 4 2 2 x To Identify a System Problem or Failure through the CLI Use the f...

Page 45: ...y These include the range for upper and lower critical readings for each environmental statistic followed by the current reading and threshold status Figure 3 6 System Resource Metrics CLI output SGOS...

Page 46: ...setting the SG200 to Its Factory Defaults When the SG200 is powered on and has booted up but an initial configuration has not yet been performed the Power LED flashes green and amber If the Power LED...

Page 47: ...SGOS detects the card upon system bootup and automatically creates a bridge the two Ethernet ports on the appliance serve as the bridge ports If the SG200 is powered down or loses power for any reaso...

Page 48: ...e SG200 chassis away from you at the same time Lift the cover up and off Figure 3 9 Remove the Rack Mounting Brackets and the Cover Important The appliance will not remain grounded if you take off the...

Page 49: ...u are facing the front of the SG200 the pass through card is located near the back of the SG200 on the left Figure 3 10 Remove the Pass Through Card Screw 7 Remove the pass through card grasp it on tw...

Page 50: ...you can configure software bridging which unlike hardware bridging allows you to configure failover Failover is accomplished by creating virtual IP addresses on each proxy creating a failover group a...

Page 51: ...a new certificate and then edit the HTTPS Console service to use it For information about creating a new certificate and editing the HTTPS Console service refer to Volume 5 Securing the ProxySG of the...

Page 52: ...52 Blue Coat SG200 Series...

Page 53: ...L nge 356 mm 14 in Weight Gewicht System 2 5 kg 5 6 lb Power adapter 0 5 kg 1 lb Power Input AC for external adapter Stromversorgung 100 240V 1 8 A 50 60 Hz DC for Server 19V 3 42A Disk Drives Festpla...

Page 54: ...54 Blue Coat SG200 Series...

Page 55: ...ordance with the instruction manual might cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the...

Page 56: ...ie Remplacer uniquement avec une batterie de meme type ou d un type equivalent recommande par le constructeur Metter au rebut less batteries usagees conformement aux instructions du fabricant VORSICHT...

Page 57: ...Statements 57 Connection to ports not defined for normal operation according to this manual might result in excessive radiated emissions The user is then responsible for all corrective action in the...

Page 58: ...58 Blue Coat SG200 Series Declaration of Conformity...

Page 59: ...ation access 25 30 terminal emulator parameters 21 27 using a Web browser 14 17 conditions required 14 18 connecting the SG200 to a PC 12 placing the SG200 into a network 20 problems with first time c...

Page 60: ...6 27 31 SG200 invalid certificate 51 placing into the network 20 problems powering on 42 removing the pass through card 47 50 resetting to factory defaults 46 specifications 53 specifications environm...

Reviews:

No comments

Related manuals for SG200 200 A

Recon Sentinel Quick Start Manual preview
Sentinel
Brand: Recon Pages: 2
Fortinet FortiDB-400B Quick Start Manual preview
FortiDB-400B
Brand: Fortinet Pages: 2
Fortinet FortiGate 5050-R Chassis Manual preview
FortiGate 5050-R
Brand: Fortinet Pages: 28
Fortinet FortiGate 3600A Installation Manual preview
FortiGate 3600A
Brand: Fortinet Pages: 64
Radware DefensePro VA Installation And Maintenance Manual preview
DefensePro VA
Brand: Radware Pages: 83
Watchguard Firebox M4800 Hardware Manual preview
Firebox M4800
Brand: Watchguard Pages: 18
SonicWALL Email Security 6000 Getting Started Manual preview
Email Security 6000
Brand: SonicWALL Pages: 37
Netgate XG-7100 Product Manual preview
XG-7100
Brand: Netgate Pages: 56
Netgate SG-3100 Manual preview
SG-3100
Brand: Netgate Pages: 65

Brands by name

Popular brands

Load more brands