Unified Security Gateway Quick Start Guide
© 2001—2008, FaceTime
®
Communications, Inc.
1
2
Unified Security Gateway Quick Start Guide
© 2001—2008, FaceTime
®
Communications, Inc.
Unified Security Gateway Quick Start Guide
© 2001—2008, FaceTime
®
Communications, Inc.
3
Cabling Unified Security Gateway
1. Connect the power cords, ideally to two
separate sources of power.
2. Connect an Ethernet cable from the SPAN/TAP
port of your switch to Line1 (Monitoring
interface) located to the right of the USB ports.
3. Connect an Ethernet cable from the LAN to
Line2 (Proxy port) located near the power
socket. This is the proxy port where the internal
IM clients can connect to the appliance.
4. Connect another Ethernet cable from the LAN
to the Management interface located on the top
half of the rear panel. This is the Management
interface for the appliance and you need to
configure network settings for this port using the
steps outlined in the
Initial Setup
section.
By default, the appliance is configured to use
two ports, one for monitoring the traffic and the
other for proxy and management functionalities.
If you want the appliance to use separate ports
for proxy and management functionalities, you
can configure a third port (Proxy port) through
the user interface. For information on
configuring the Proxy port, refer to the
Unified
Security Gateway System Administrator’s
Guide.
Initial Setup
1. Connect a monitor to the video input port of the
appliance.
2. Connect a keyboard to the keyboard input port
(USB port) of the appliance.
3. Switch on the power using the Power button
on the front panel.
The Boot screen appears. The screen times-out
after 3 seconds.
4. When prompted to configure the management
port (eth2), press
Y
.
5. Perform one of the following actions:
If you want to assign a static IP address:
a.
Specify an IP address (for example,
10.0.2.201).
b.
Specify the Netmask (for example,
255.0.0.0).
c.
Specify the default gateway (IP) (for
example, 10.0.0.1).
d.
Specify the Primary DNS server (for
example, 10.0.2.1).
e.
Select
OK
.
If you want to assign a dynamic IP address:
a.
Select
DHCP
.
b.
Select
OK
.
The Linux terminal displays the IP address—
static or dynamic—assigned to the appliance.
Note down this IP address to access the Web-
based user interface of the appliance.
Initial Configuration
1. Access the administrative user interface by
typing the following URL in the Web browser:
https://<IP Address>:8443/
2. Perform the following actions when your web
browser displays the following SSL-related
alerts:
Click
OK
if you see the Secure Connection
alert.
Click
Yes
when you get the digital certificate
alert.
3. Read the End User License Agreement (EULA)
and click
Accept
to accept the EULA.
4. In the System Administrative Password page,
type the user name in the
User Name
box. The
user name is
sysadmin
for the system
administrator.
5. Type the administrative password for the
sysadmin
user in the
Password
box and
confirm the password in the
Confirm Password
box.
6. Log on to the user interface with the
administrative credentials.
7. Go to the
Configuration
tab »
Server
Administration
panel » click
Network Settings
to open the Network Settings page.
8. Specify the following details:
Host Name of the appliance.
The domain name to which the appliance
belongs.
The Primary DNS server.
9. Go to the
Configuration
tab »
Authentication
and Authorization
panel » click
Authentication Settings
to open the
Authentication Settings page.
10. Specify the Primary Domain Controller to which
the appliance must send user authentication
requests.
11. Upgrade to the latest Firmware image. This
allows you to run the appliance using the most
recent release with the latest Malware, IM, and
P2P protocols, and report updates.
To obtain firmware updates, perform the
following steps:
a.
Configure the security appliance to connect
to the FaceTime download site through a
proxy server.
b.
Download the update package on to the
security appliance. You can schedule a
regular download of updates or download
the update package manually on to the
security appliance.
c.
Upgrade the firmware.
For detailed instructions, see the ‘Obtaining
Firmware Updates’ section in the
Unified
Security Gateway System Administrator’s
Guide
.
12. Download the latest Anti-Malware filter updates:
a.
Go to the
Configuration
tab »
Maintenance
panel. Click
Malware Updates
to open the
Malware Updates page.
b.
Type the following URL in the
URL for
Rear Panel of the Appliance
Power
Sockets
Video
Management
Interface
1
2
USB
Ports
LINE1
(Monitor Interface)
LINE2
(Proxy Port)
Note:
If you do not specify an IP address, the IP
address
192.168.1.3
is automatically assigned to the
appliance.
Note:
Ignore the Login prompt in the terminal
window and proceed with the instructions in the
Initial Configuration
section.
Note:
After you specify the Primary DNS server and
the domain name for the appliance, the FaceTime
webfiltering database starts getting downloaded on to
the system.
