Nokia IP150 Скачать руководство пользователя

Страница: 1 / 74

Part No. N450000666 Rev 002

Published May 2008

Nokia IP150 Security Platform

Installation Guide

Содержание IP150

Страница 1: ...Part No N450000666 Rev 002 Published May 2008 Nokia IP150 Security Platform Installation Guide ...

Страница 2: ...by Nokia Inc as is and any express or implied warranties including but not limited to implied warranties of merchantability and fitness for a particular purpose are disclaimed In no event shall Nokia or its affiliates subsidiaries or suppliers be liable for any direct indirect incidental special exemplary or consequential damages including but not limited to procurement of substitute goods or serv...

Страница 3: ...A and Canada 1 512 437 7089 email info ipnetworking_americas nokia com Europe Mid dle East and Africa Nokia House Summit Avenue Southwood Farnborough Hampshire GU14 ONG UK Tel UK 44 161 601 8908 Tel France 33 170 708 166 email info ipnetworking_emea nokia com Asia Pacific 438B Alexandra Road 07 00 Alexandra Technopark Singapore 119968 Tel 65 6588 3364 email info ipnetworking_apac nokia com Web Sit...

Страница 4: ...4 Nokia IP150 Security Platform Installation Guide ...

Страница 5: ...curity Platform Appliances 20 2 Installing a Nokia IP150 Security Appliance 23 Rack Mounting a Nokia IP150 Appliance 23 3 Connecting to the Ethernet Ports 27 Built In Four Port 10 100 1000 Ethernet Interface 27 Ethernet Features 27 Connecting to Ethernet Ports 28 4 Performing the Initial Configuration 31 Using a Console Connection 31 Connecting Power and Turning the Power On 32 Performing the Init...

Страница 6: ...Installing or Replacing the Nokia Encryption Accelerator Card 54 Before You Start 55 Configuring and Activating Nokia Encryption Acceleration 57 Replacing the Battery 58 6 Troubleshooting 63 General Troubleshooting Information 63 A Technical Specifications 67 Physical Dimensions 67 Space Requirements 67 Other Specifications 67 Appliance Interfaces 68 B Compliance Information 69 Declaration of Conf...

Страница 7: ...Nokia IP150 Security Platform Installation Guide 7 Tables Table 1 Text Conventions 12 Table 2 Pin Assignments for DB9 and DB25 Interface Cables 18 Table 3 Appliance Status LEDs 19 ...

Страница 8: ...8 Nokia IP150 Security Platform Installation Guide ...

Страница 9: ...ments for Console Connections 17 Figure 5 Appliance Status LEDs 18 Figure 6 Installing the Mounting Brackets 24 Figure 7 Rack mounted IP150 Appliance 25 Figure 8 Output Connector for the Ethernet Cable 28 Figure 9 Ethernet Crossover Cable Pin Connections 29 Figure 10 Power Switch Location 32 Figure 11 Nokia Network Voyager Reference Access Points 37 Figure 12 Hard Disk Drive Location 46 Figure 13 ...

Страница 10: ...10 Nokia IP150 Security Platform Installation Guide ...

Страница 11: ...appliance and how to physically connect it to a network and power Chapter 3 Connecting to the Ethernet Ports describes how to connect to the supported Ethernet ports Chapter 4 Performing the Initial Configuration explains how to make the appliance available on the network Chapter 5 Installing and Replacing Components describes how to configure and activate the built in encryption acceleration feat...

Страница 12: ...t Indicates command syntax or represents computer or screen output for example Log error 12453 bold monospace font Indicates text you enter or type for example configure nat Key names Keys that you press simultaneously are linked by a plus sign Press Ctrl Alt Del Menu commands Menu commands are separated by a greater than sign Choose File Open The words enter and type Enter indicates you type some...

Страница 13: ...he version of Nokia IPSO you are using Getting Started Guide and Release Notes for the version of Nokia IPSO you are using Nokia IPSO Boot Manager Reference Guide which describes how to use the Nokia IPSO boot manager Clustering Configuration Guide for the version of Nokia IPSO you are using Nokia Network Voyager inline help You can find the most up to date version of the Nokia IP150 Security Plat...

Страница 14: ...1 About this Guide 14 Nokia IP150 Security Platform Installation Guide ...

Страница 15: ...rpose one rack unit 1 RU disk based security appliance offering powerful yet cost effective UTM traditional firewall and next generation UTM applications including firewall VPN intrusion protection antivirus and web filtering With four ports of 10 100 1000 Base T RJ 45 Ethernet on board it delivers up to 500 Mbps large packet stateful firewall throughput and 75 Mbps of IPSec VPN performance The IP...

Страница 16: ...Ports Figure 3 shows the layout of the built in Ethernet ports and LEDs Figure 3 Built In Ethernet Interface Front Panel Details 00662 IP150 AUX CONSOLE POWER STATUS FAULT 1 2 3 4 Built in Ethernet ports 10 100 1000 Mbps Status LEDs Auxiliary AUX port Console port 00663 Power plug Power switch 00120 Activity LED yellow Link LED green RJ 45 connectors ...

Страница 17: ... as a modem connection for managing the appliance Figure 4 provides pin assignment information for console and serial connections Caution Nokia recommends that you use the console cable that was delivered with your appliance for your console connection Otherwise ensure that the pin assignments for your cable match those provided in this section Figure 4 Pin Assignments for Console Connections 0046...

Страница 18: ...status LEDs The system status LEDs are located on the front panel of the appliance as Figure 5 shows Figure 5 Appliance Status LEDs Table 2 Pin Assignments for DB9 and DB25 Interface Cables Console or serial pin and assignment DB9 cable output pin and assignment DB25 cable output pin and assignment Shield FG Shield FG 1 FG 2 RXD 3 TXD 2 TXD 3 TXD 2 RXD 3 RXD 4 DTR 6 DSR 6 DSR 5 SG 5 SG 7 SG 6 DSR ...

Страница 19: ...e to help prevent damage to the environment Nokia encourages you to dispose of these devices in an environmentally friendly manner The following resources are available to you to help with equipment disposal decisions Many Nokia products are labeled with information about the materials used in their manufacture that can help those who will process equipment after you have disposed of it The Nokia ...

Страница 20: ...e Managing IP150 Security Platform Appliances You can manage Nokia IP150 appliances by using one of the following interfaces Nokia Network Voyager an SSL secured Web based element management interface to Nokia IP security platforms Network Voyager is preinstalled on the IP150 appliance and enabled through the Nokia IPSO operating system With Network Voyager you can manage monitor and configure the...

Страница 21: ...g Nokia Horizon Manager a secure GUI based software image management and monitoring application With Horizon Manager you can securely install and upgrade the Nokia proprietary Nokia IPSO operating system plus hardware and third party applications such as Check Point VPN 1 FireWall 1 Horizon Manager can perform installations and upgrades on up to 2 500 Nokia IP security platforms offering administr...

Страница 22: ...1 22 Nokia IP150 Security Platform Installation Guide ...

Страница 23: ...u can rack mount Nokia IP150 Security appliances in a one unit space 1U in a standard configuration appliance rack Rack Mounting a Nokia IP150 Appliance Before you mount the appliance on the rack install the two side brackets with three screws on each side as shown in Figure 6 The brackets and screws are included with the materials you receive with the appliance ...

Страница 24: ...allation Guide Figure 6 Installing the Mounting Brackets You can mount IP150 appliances in a standard 19 inch rack with three mounting screws as Figure 6 shows IP150 AU X CO NSO LE PO WER STAT US FA ULT 1 2 3 4 00666 Serrated notches face up ...

Страница 25: ...Nokia IP150 Security Platform Installation Guide 25 Figure 7 Rack mounted IP150 Appliance IP150 AUX CO NSO LE PO WER ST ATU S FA ULT 1 2 3 4 00682 ...

Страница 26: ...2 26 Nokia IP150 Security Platform Installation Guide ...

Страница 27: ...50 appliance has four built in dual mode 10 100 1000 Mbps ports Ethernet Features The Ethernet interface supports tracing through tcpdump You can configure and monitor Ethernet interfaces with Nokia Network Voyager or the command line interface CLI Specifically you set the port speed and full duplex or half duplex mode by using Network Voyager or the CLI For information about how to access Network...

Страница 28: ... crossover cable Use IEEE 802 3 10 100 BASE TX 1000 BASE T CAT 5 unshielded twisted pair full duplex or half duplex cable You can order appropriate adapter cables separately You can order additional cables from a cable vendor of your choice The following figure shows the pin assignments for the cable The RJ 45 cable output connector is numbered from left to right with the copper tabs facing down a...

Страница 29: ...hernet Interface Nokia IP150 Security Platform Installation Guide 29 The following figure shows the pin assignments for the RJ 45 crossover cable Figure 9 Ethernet Crossover Cable Pin Connections 00017 1 1 2 3 4 5 6 7 8 1 2 3 4 5 6 7 8 ...

Страница 30: ...3 30 Nokia IP150 Security Platform Installation Guide ...

Страница 31: ...g Power and Turning the Power On Performing the Initial Configuration Connecting Network Interfaces Using Nokia Network Voyager Using Nokia Horizon Manager Using Check Point SmartCenter and Provider 1 Note Nokia recommends that you physically install all hardware components before you perform the initial configuration procedure this chapter describes For information about how to install other comp...

Страница 32: ...use a straight through cable For cable pin assignments for the console connection see Figure 4 on page 17 2 Connect the other end of the cable to the VT100 console or to a system running a terminal emulation program Connecting Power and Turning the Power On A power switch and a receptacle for the power cord are located on each power supply on the back of the appliance as shown in Figure 10 Figure ...

Страница 33: ...f the appliance to ensure that the power supply is operating correctly If the fans are not running or if the power LED is not illuminated make sure that The power cord is properly connected The power supply switch is on Power is turned on to the power strip or wall receptacle into which you plugged the appliance If the fans are still not running or if the power LED does not illuminate contact your...

Страница 34: ...d to a network interface a DHCP server on your network might configure the appliance with an incorrect host name and IP address this could happen if a DHCP server on your network is configured to respond to any request To reset the incorrect host name and IP address a Establish a console connection to the system b Enter the following rm config active or mv config active config active old c Reboot ...

Страница 35: ...ctions Using Nokia Network Voyager Use Nokia Network Voyager to configure and monitor your appliance For additional information about how to use Network Voyager see Viewing Nokia IPSO Documentation by Using Nokia Network Voyager later in this section To open Nokia Network Voyager 1 Open a Web browser on the host you plan to use to configure or monitor your appliance 2 In the Location or Address fi...

Страница 36: ...Guide This guide is the comprehensive reference source for Nokia Network Voyager To access this source look at the list in the navigation tree on the left side of the window as shown in Figure 11 You can also access the Nokia Network Voyager Reference Guide and other Nokia IPSO documentation at the Nokia support site https support nokia com or on the software CD that was delivered with your applia...

Страница 37: ...network as an admin cadmin or monitor user If you log in as a cadmin cluster administrator user you can change and view configuration settings on all the cluster nodes For information about how to administer a cluster see the traffic management commands section in the CLI Reference Guide for the version of Nokia IPSO you are using 2 If you log in as a monitor user you can execute only the show for...

Страница 38: ...ity Using Horizon Manager a network security professional can manage multiple devices simultaneously perform parallel software upgrades device verifications device configuration file backups and more Horizon Manager is designed to manage and configure a large number of Nokia security appliances that reside on a corporate enterprise managed service provider MSP or hosted applications service provid...

Страница 39: ...Point SmartCenter and Provider 1 Nokia IP150 Security Platform Installation Guide 39 Using Check Point SmartCenter and Provider 1 Nokia supports managing IP150 appliances with Check Point SmartCenter and Provider 1 ...

Страница 40: ...4 40 Nokia IP150 Security Platform Installation Guide ...

Страница 41: ...t before attempting to service an IP150 appliance Limit service of the appliance to the procedures described in this chapter Caution Protect your IP150 appliance and other electronic equipment from electrostatic discharge ESD damage by making sure you are properly grounded before you touch any component Replacing the Compact Flash Memory Card In the hard disk based IP150 appliances the compact fla...

Страница 42: ...mponents Caution You risk damage to the appliance or loss of data if you do not use the following procedure when you replace the compact flash memory Before You Start To replace the compact flash card in your appliance you need the following Physical access to the appliance A Nokia approved compact flash card Access to the appliance through Network Voyager A Phillips head screwdriver To replace co...

Страница 43: ...sh Memory Card Nokia IP150 Security Platform Installation Guide 43 4 Remove the three bottom cover screws and remove the cover as shown in the following figure 00676 I P 1 5 0 A U X CO N SO LE P O W ER ST A TU S FA U LT 1 2 3 4 ...

Страница 44: ...5 44 Nokia IP150 Security Platform Installation Guide 5 Gently remove the installed compact flash memory card Avoid pressing down on the surface of the card as much as possible 00678 ...

Страница 45: ...he surface of the card as much as possible 7 Replace the bottom cover reinstall the appliance in the rack and reconnect the appliance power cord 8 Turn on the power supply at the back of the appliance Replacing a Hard Disk Drive You can replace the hard disk drive to your IP150 appliance The following figure shows the location of the hard disk drive on the motherboard 00679 ...

Страница 46: ...rist strap and follow the instructions provided with the wrist strap before you handle the components or open the appliance If you do not have a grounding wrist strap make sure you are properly grounded before you touch any electronic component You must perform an orderly shutdown of the appliance and turn the power off whenever you remove the chassis tray assembly to service internal components 0...

Страница 47: ...k Voyager A Phillips head screwdriver To replace a hard disk drive 1 Use Network Voyager or the CLI to halt the appliance To use Network Voyager to shut the appliance down select System Configuration Reboot or Shutdown Halt To use the CLI to shut the appliance down enter halt at the prompt 2 Remove the power cord from the IP150 appliance and remove the appliance from the rack 3 Place the appliance...

Страница 48: ...6 To remove the installed drive assembly from the appliance remove the four drive bracket screws and remove the assembly 7 Remove the retaining screws that hold the drive unit from the sides of the bracket and remove the drive from the bracket 00674 00675 ...

Страница 49: ...ide 49 8 Install the new drive in the same manner as you removed it 9 Reinstall the two drive connectors 10 Replace the top cover reinstall the appliance in the rack and reconnect the appliance power cord 11 Turn on the power supply at the back of the appliance 00674a 00675a ...

Страница 50: ...t Nokia customer support for more information on the supported memory configurations Note Nokia recommends that you obtain memory kits only from Nokia or authorized resellers For further information contact the appropriate Nokia customer support site listed Nokia Contact Information on page 3 The DIMM sockets are located at the right of the motherboard as you look at the appliance from the front a...

Страница 51: ...rvice internal components Before You Start To upgrade or replace the memory in your appliance you need the following Physical access to the appliance Nokia memory upgrade kit and accompanying documentation Network or console access to the appliance Caution To protect the IP150 appliance and the memory modules from electrostatic discharge ESD make sure you are properly grounded before you touch the...

Страница 52: ...okia IP150 Security Platform Installation Guide 4 Remove the three bottom cover screws and remove the cover as shown in the following figure 00676 I P 1 5 0 A U X CO N SO LE P O W ER ST A TU S FA U LT 1 2 3 4 ...

Страница 53: ...ps outward and carefully pulling each DIMM upward as the following figure shows You might need to pull opposite ends of the DIMM alternately to gradually free it from the contact pins 6 The memory DIMMs are keyed to prevent improper insertion Press the new DIMM into the socket until it clicks into place and the retaining clips lock into position 00680 ...

Страница 54: ... at the back of the appliance The appliance automatically recognizes the new memory configuration You can verify this from the Network Voyager the CLI or the Nokia IPSO shell To verify the memory from the CLI enter show asset hardware To verify the memory from the Nokia IPSO shell enter dmesg grep real memory Installing or Replacing the Nokia Encryption Accelerator Card The Nokia encryption accele...

Страница 55: ...n the power off whenever you remove the chassis tray assembly to service internal components Before You Start To install or replace the encryption accelerator card in your appliance you need the following Physical access to the appliance A Nokia approved encryption accelerator card Access to the appliance through Network Voyager A Phillips head screwdriver To install or replace a Nokia encryption ...

Страница 56: ... 4 Remove the three top cover screws and slide the cover back to remove it from the appliance 5 If you need to remove an installed encryption accelerator card pull the two retaining clips outward as shown in the following figure 00667 00670 IP150 1 2 3 4 ...

Страница 57: ...figuring and Activating Nokia Encryption Acceleration The Nokia encryption accelerator software package is part of the Nokia IPSO operating system so the appliance automatically detects and configures the Nokia encryption accelerator card For the Nokia IP150 appliances SecureXL is on by default After you install the Nokia encryption accelerator card and reboot the appliance SecureXL automatically ...

Страница 58: ...strap and follow the instructions provided with the wrist strap before you handle the components or open the appliance If you do not have a grounding wrist strap make sure you are properly grounded before you touch any electronic component You must perform an orderly shutdown of the appliance and turn the power off whenever you remove the chassis tray assembly to service internal components To rep...

Страница 59: ...To install the battery 1 Use Network Voyager or the CLI to halt the appliance To use Network Voyager to shut the appliance down select System Configuration Reboot or Shutdown Halt To use the CLI to shut the appliance down enter halt at the prompt 2 Remove the power cord from the IP150 appliance and remove the appliance from the rack 3 Turn the appliance right side up and place it on a safe and pro...

Страница 60: ...tery holder Caution Replace the battery only with the same or equivalent type battery recommended by the manufacturer Dispose of used batteries according to the manufacturer s instructions 7 With the positive side facing up slide the new battery through the cutout in the battery holder Caution You must place the new battery into the battery holder observing the correct polarity The positive termin...

Страница 61: ...n Guide 61 8 Replace the top cover reinstall the appliance in the rack and reconnect the appliance power cord 9 Turn on the power supply at the back of the appliance After you replace the battery you need to reset the date and time using Network Voyager or the CLI ...

Страница 62: ...5 62 Nokia IP150 Security Platform Installation Guide ...

Страница 63: ... Solution Check cord Make sure it is properly seated at both ends Problem Power supply not providing power Solution Check power source If no power is present at the source take appropriate action such as inserting a new fuse or resetting circuit breaker Unable to Log In to the Console Port No Error Message Two laptop computers using terminal emulation programs or terminals should be able to commun...

Страница 64: ...o default settings or contact the Nokia customer support site listed in Nokia Contact Information on page 3 Problem Entered wrong password Solution Obtain a valid password or set the password to a default value Note You must have local serial access to your appliance console to perform this procedure With a keyboard and monitor directly connected to the appliance the boot prompt does not appear an...

Страница 65: ...ify the configuration as necessary For more information see the CLI Reference Guide for the version of Nokia IPSO you are using Do Not See Interfaces That Should be Present Problem Local IP150 appliance ports do not appear Solution Your IP150 appliance might be defective Contact the appropriate Nokia customer support site as listed in Nokia Contact Information on page 3 Note The problem could be w...

Страница 66: ... Nokia IP150 Security Platform Installation Guide Problem High collision rate on the hub Solution Disconnect connections one at a time until the problem is localized to one computer and troubleshoot further ...

Страница 67: ... appliance The appliance might overheat and become damaged For information about changes to the software requirements or additional applications that have become available since this guide was published contact your Nokia service provider as listed in Nokia Contact Information on page 3 Other Specifications Dimensions Height 1 69 in 4 30 cm single appliance Width 19 00 in 48 26 cm Depth 11 05 in 2...

Страница 68: ... MTBF At 25 58 320 hours At 40 54 088 hours AC input voltage 100 120V 200 240V Frequency 50 60Hz AC input current maximum 4 0A Power consumption 55 watts Interface Cable Type Cable Output Connector Ethernet IEEE 802 3 10 100 BASE TX 1000 BASE T unshielded twisted pair full duplex or half duplex RJ 45 ...

Страница 69: ...tary information Pursuant to ISO IEC 17050 this product complies with the requirements of the Low Voltage Directive 73 23 EEC and the EMC Directive 2004 108 EC Manufacturer s Name Nokia Inc Manufacturer s Address 313 Fairchild Drive Mountain View CA 94043 2215 USA Product Name IP150 Model Number IP150 IP151 Product Options All Serial Number 1 to 100 000 Date First Applied 2008 Safety UL 60950 1 Fi...

Страница 70: ...er Saleem Compliance Reliability Engineering Manager Security Mobile Connectivity Enterprise Solutions Mountain View California April 2008 FCC Part 15 Subpart B Class A US Canada EN55022A 2003 CISPR 22 Class A 2003 European Community CE EN55024 2003 European Community CE EN61000 4 2 EN61000 4 3 EN61000 4 4 EN61000 4 5 EN61000 4 6 EN61000 4 8 EN61000 4 11 EN61000 3 2 European Community CE EN61000 3...

Страница 71: ... radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense Caution Any changes or modifications not expressly approved by t...

Страница 72: ...B 72 Nokia IP150 Security Platform Installation Guide ...

Страница 73: ...s for modem 17 power 32 RJ 45 28 29 connector pin assignments for Ethernet network interfaces 28 console cable 32 console cable connection 32 D data communications equipment device 32 DHCP client startup 34 DHCP server initial configuration 31 DIMMs socket locations 50 documentation for the IP150 appliance 11 E end of life information 19 Ethernet cable output connector 28 crossover cable pin conne...

Страница 74: ...oyager 35 output connector Ethernet cable for the 28 output connector for the Ethernet cable 28 P pin assignments for modem connections 17 pin connections Ethernet crossover cable 29 pin connections for Ethernet crossover cables 29 power connections 32 R recycling retired equipment 19 replacing RAM memory 50 RJ 45 connector 28 29 S security platform configuring 31 specifications interfaces 68 spac...

Результаты поиска

Содержание IP150

Отзывы:

Похожие инструкции для IP150

Бренды по названию

Популярные бренды

Nokia IP150, Руководство по установке

Результаты поиска

Содержание IP150

Отзывы:

Похожие инструкции для IP150

Бренды по названию

Популярные бренды