Consider
Connect
Configure
Gather network information
Use this table to record
important network information
you need to configure the
appliance.
IPAddress
Subnet Mask
Default Gateway
Enter network information
Enter the network information you gathered in Step 1 as follows:
Press ENTER (carriage return symbol) on the LCD panel. The LCD displays a message: "Do you want to configure the appliance?"
Select OK, and then press ENTER.
Press ENTER on the LCD panel to display the IP address screen.
When you have completed all fields on the screen, press ENTER.
Select OK to move forward, and then press ENTER to confirm your selection.*
Complete these steps again to enter the subnet mask and the default gateway.
.
1
2
3 Save network information
Once you have entered all your network information, a final confirmation screen appears in the LCD screen.
4 Record your password
When you confirm your settings, the appliance saves your
information, and then generates a unique, alphabetic,
case-sensitive password. Record this password, because
you
must
use it to log on to the appliance
Proventia Password
5 Log on to the appliance
What's
next?
Once you have logged on to the appliance and configured advanced settings such as your DNS and host name, your adapter
modes, your port link settings, and your backup and recovery settings, you will be ready to install your license and setup
appliance management.
The
Proventia Network Intrusion Prevention System User Guide
walks you through these and other important tasks, such as:
Creating firewall rules to protect your network
T
racking alerts
Monitoring important system information
Connect the appliance
A Connect the power cords.
You must connect both power cords to the
appliance to prevent warning signals
from sounding.
B
Connect the management port.
Always connect your network to
management port 1, on the left, using a
straight-through cable. Management
port 2, on the right, is the kill (TCP reset)
port.
C
Connect the protected ports.
To run the appliance in inline protection or
inline simulation mode, plug cables into
both monitoring ports. To run in passive
mode, plug one cable into the first port of
the pair only, leaving the second port
empty.
D
(Optional) Connect the serial console.
Complete this step only if you want to
connect the appliance directly to a
computer to complete advanced
configuration.
E
Turn on the appliance.
The ISS
Proventia screen appears, and
you are ready to begin configuration.
Getting
Started
Select a monitoring mode
The mode you select affects how you connect your appliance to the network. Consider the following:
Mode
Responses
Benefits
Inline Protection
Block, Quarantine, Firewall
Monitors network and actively blocks malicious traffic
Allows you to realize the full benefit of the IPS
Inline Simulation
Block, Quarantine
(Simulated)
Monitors network without affecting traffic patterns
Helps you baseline and test your security policy
Passive Monitoring Block
Replicates traditional IDS technology
Monitors traffic without sitting inline
1
2 Review common deployment scenarios
Router to Switch/Hub
Router to Router
Legend
Switch/Hub 1 to Switch/Hub 2
Gather materials
Proventia Network IPS appliance
Proventia serial console cable (blue)
Ethernet crossover cable (red)
For each inline segment:*
a pair of Ethernet cables, straight-through or crossover, depending on your network type
a crossover adapter
additional Ethernet cables as needed
Two power cords
*ISS provides one crossover adapter and two one-foot Ethernet cables (green) per segment.
The following tasks describe how to use the LCD panel to connect the appliance to the network. You can also connect the
appliance using the Proventia Setup program. You must complete the initial configuration using only one method or the other. For
more information on using Proventia Setup to connect to the network, refer to Chapter 3, "Configuring Appliance Settings," in the
Network Intrusion Prevention System User Guide.
•
•
•
•
•
•
•
•
•
Select OK to save all network information and enable the Management port, or select Cancel to return to the ISS Proventia
screen without saving any of the information you entered. Press ENTER to confirm your selection.
You are ready to log on to the appliance and configure advanced settings. You can log on to the appliance either from a local
computer by directly connecting the appliance to a computer using a serial console cable, or from a remote computer through
a terminal emulation session. For more information about logging on to the appliance and accessing Proventia Setup, see
Chapter 3, "Configuring Appliance Settings," in the
Proventia Network Intrusion Prevention System Users Guide.
This card provides connection and initial configuration information for the Proventia Network Intrusion
Prevention System (IPS) GX5000 series model appliances. The steps you perform here will allow you remote
network access to the appliance so that you can perform more advanced configuration tasks. You will find
more advanced configuration information in the
Proventia Network Intrusion Prevention System User Guide
available on the Web at www.iss.net/download.
*If you select Cancel and then press ENTER, all fields are cleared, and no information is saved. You can re-enter information as necessary.
Press the UP and DOWN buttons to select a number, and then press the RIGHT ARROW button to move to the next field.
Configuring your security policy, including specifying events and responses
owners, as indicated. All marks are the property of their respective owners and used in an editorial context without intent of infringement. Specifications and content are subject to change without notice.
Copyright© 2006 Internet Security Systems, Inc. All rights reserved worldwide
Internet Security Systems and Ahead of the threat are trademarks, and the Internet Security Systems logo and Proventia are registered trademarks, of Internet Security Systems, Inc. All other marks and trade names mentioned are the property of their
Distribution: General
MSM-ISSQSCGX5108C
1
2