Stormshield SN2000 Скачать руководство пользователя

Страница: 1 / 59

USER GUIDE

Stormshield Network Firewalls

PRODUCT PRESENTATION
AND INSTALLATION

SN Range

Date

Version

Details

August 2014

V1.0

Creation

November 2014

V1.1

Update

May 2015

V1.2

Update (SN910)

Reference: snengde_installation-product-SN-range

Содержание SN2000

Страница 1: ...ield Network Firewalls PRODUCT PRESENTATION AND INSTALLATION SN Range Date Version Details August 2014 V1 0 Creation November 2014 V1 1 Update May 2015 V1 2 Update SN910 Reference snengde_installation...

Страница 2: ...of use 30 Installation 31 Connecting to the mains 33 Connecting for the administration of the product 34 Connecting to the network 34 INITIAL CONNECTION TO THE PRODUCT 35 Requirements 35 Connection 36...

Страница 3: ...the chapter Documentation Products concerned SN150 SN200 SN300 SN500 SN700 SN900 SN910 SN2000 SN3000 and SN6000 General conditions of use and user license version 2 1 October 2014 To view the current...

Страница 4: ...act has been signed NETASQ only guarantees the software of the Product s hereinafter referred to as the Software for a period of ninety 90 days against serious defects and malfunctions compared to the...

Страница 5: ...with the prerequisites and conditions of use described herein The same holds for all the consequences of an action inaction error omission or default attributed to the Customer or any service provide...

Страница 6: ...s of any rights of third parties on the Product s allowing it to grant the Customer use of said Product s 4 Intellectual Property Copyright NETASQ 2014 All rights reserved Any copying adaptation or tr...

Страница 7: ...esult in the payment of damages or late penalties 7 Exporting NETASQ informs that the Products may contain technology and Software subject to US and EU laws on the control of exports as well as subjec...

Страница 8: ...te on an Evaluation Assurance Level or EAL scale of 1 to 7 a product s capacity to provide security functions for which it had been designed as well as the quality of its life cycle development produc...

Страница 9: ...istrator is permitted to connect via the local console on NETASQ Firewall VPN appliances and only when installing the Firewall or for maintenance operations apart from actual use of the equipment He i...

Страница 10: ...will be marked with the mandated crossed out wheeled bin symbol This symbol means that the product meets the requirements laid down by the WEEE directive with regards to the destruction and reuse of w...

Страница 11: ...to the rules packet by packet The SN Firewall is based on a sophisticated packet filtering mechanism that provides a high level of security All Firewalls integrate the ASQ Active Security Qualificati...

Страница 12: ...w of information relating to the Firewall s activity and its configuration Through SN Activity Reports available from a dedicated portal you can view how Internet access is used the various attacks th...

Страница 13: ...ed in a cardboard box sealed by one or two warranty seals On this packaging there is a label indicating information identifying the product it contains and its version Check that this information corr...

Страница 14: ...pasted on the back panel of the product on the underside for SN150 SN2000 SN3000 and SN6000 models displays the serial number and the password for registering your product Figure 5 Serial number label...

Страница 15: ...SN2000 and SN3000 or an A to B USB cable SN150 For SN500 SN700 SN900 and SN910 models the packaging should also contain A set of brackets and screws for mounting the Firewall in a rack 4 non slip rub...

Страница 16: ...ble to disconnect the product ensure that the connection to the power supply is always easily accessible Warranty and safety rules Under no circumstances should you take apart a Stormshield Network ap...

Страница 17: ...s component In the event of hardware problem with your Firewall or if one of the elements does not match its description please contact your certified partner Installing an appliance outside a rack Yo...

Страница 18: ...n console mode it is possible to log on to the Firewall directly using a computer The default baud rate on this model is 115200 baud 8N1 2 The USB port 2 0 can be used for secure configuration or upda...

Страница 19: ...ot for the SD card 4 The mini din PS2 port allows connecting a keyboard 5 The serial port allows accessing the product in console mode it is possible to connect the Firewall directly from a computer T...

Страница 20: ...sible to log on to the Firewall directly using a computer The default baud rate on these models is 9600 baud 8N1 3 Two USB 3 0 ports that can be used for secure configurations or upgrades You may also...

Страница 21: ...r the SSD has been accessed blue LED on the right and installed green LED on the left Rear panel connectors 1 Two ports dedicated to the management of the appliance or a High Availability configuratio...

Страница 22: ...bottom blue LED and installed top green LED 2 Two mains sockets for redundant power supplies 3 The serial port allows accessing the product in console mode it is possible to connect the Firewall direc...

Страница 23: ...nnecting to the Internet The second zone is by default identified in internal mode IN It consists of two switched ports The third zone allows you to define a third protection zone DMZ and consists of...

Страница 24: ...0 model holds twelve 1GbE ports and two SFP sockets for adding 1GbE transceivers Specifications of Stormshield Network approved transceivers are set out in APPENDIX E FIBER TRANSCEIVERS SN910 model 1I...

Страница 25: ...alled in a RAID configuration The SN3000 model offers ten 1GbE ports and allows the addition of two extension modules with RJ45 1GbE or fiber 1GbE or 10GbE connectors Specifications of Stormshield Net...

Страница 26: ...UT definition The OUT 1 or External network port is reserved for the modem or Internet router Access to this interface is blocked by default then you will not be able to access the configuration inter...

Страница 27: ...cording to the volume of traffic Right LED SPEED Yellow On Media speed negotiated at 1 Gbps Green On Media speed negotiated at 100 Mbps Off Media speed negotiated at 10 Mbps SN2000 and SN3000 models F...

Страница 28: ...ft LED LINK Green On Link established between the Ethernet port and the connected appliance 100 Mbps Off Ethernet port switched off or link not established with the connected appliance Right LED ACTIV...

Страница 29: ...y default a green LED lights up when the link is established and blinks according to the volume of the traffic SN910 SN2000 and SN3000 models equipped with a 1Gbps extension module and SFP transceiver...

Страница 30: ...installation all unauthorized access to the Firewall has to be avoided NOTE Ensure that the cables do not obstruct passageways to prevent them from being pulled out or the product from falling Your S...

Страница 31: ...and SN6000 appliances are sold with a set of rails A fastening system for placing the appliance in a rack in the form of a rack mount shelf can be included by special order for SN150 SN200 and SN300 m...

Страница 32: ...ibed in SN2000 SN3000_rack mounting and SN6000 _rack mounting These documents are delivered with the SN2000 3000 and SN6000 products and are available in the Document base section in your Secure area...

Страница 33: ...vent of an accidental power cut the product will automatically start up once it is powered up again NOTE For SN3000 and SN6000 models 48V DC power supply modules may be provided separately upon reques...

Страница 34: ...proved SFP 1Gbps or SFP 1Gbps 10Gbps transceivers available in the catalogue For the choice of the type of network cable according to the network port and the selected connectors see the APPENDIX D EX...

Страница 35: ...configuration interface on Stormshield Network Firewalls can be accessed via a web browser and benefits from the latest breakthroughs in user friendliness and simplicity of use It is compatible with...

Страница 36: ...kstation can either be linked directly to the Firewall s internal interface or connected to the local network which is itself connected to the Firewall s internal interface For a direct connection of...

Страница 37: ...he IP address 10 0 0 1 and the subnet mask 255 0 0 0 Network configuration of your client workstation If DHCP has not been enabled on your client workstation or for manual configurations modify the Ne...

Страница 38: ...s for the 3 LEDs Online Status and Power to light up NOTE When you hear 8 consecutive beeps you will be able to insert a USB key containing a configuration if necessary Console mode will display the f...

Страница 39: ...lows authenticating the portal via a certificate thereby assuring the administrator that he is indeed logged in to the desired appliance This certificate can either be the appliance s default certific...

Страница 40: ...efinition of this password must observe the best practices described in the User Guide in the chapter Welcome under the section User awareness sub section User password management available at http do...

Страница 41: ...rk products It aims to improve a better understanding of how they work Go to the Knowledge base in your Secure area Assistance In the event of a hardware issue on your Firewall or if one of the elemen...

Страница 42: ...ck on Shut down the Firewall Then wait for several minutes until the Power LED goes out SN2000 SN3000 and SN6000 To shut down your Firewall press once on the ON button For SN2000 and SN3000 models the...

Страница 43: ...mshield Network products registered in this area Select the product for which you wish to retrieve the license by clicking on the product s serial number Details of the license will be displayed NOTE...

Страница 44: ...o the Firewall NOTE The Online and Status LEDs will blink throughout the entire initialization phase 2 consecutive beeps except on SN150 models and the lighted up Online LED indicate the end of the pr...

Страница 45: ...and or until you hear an audible signal The reset procedure will automatically be launched After a few minutes the initial settings will be recovered and the Firewall will reboot SN6000 Model It is p...

Страница 46: ...storage media such as a USB key or an external hard disk The type of SD card must be at least Class 6 and compliant with the SDHC standard The maximum memory size supported is 32 GB Initial connectio...

Страница 47: ...The number of reports enabled can be increased on models that are equipped with hard disks or with the help of an SD card and by subscribing to the External storage option except SN150 Please refer to...

Страница 48: ...ension modules 8 port 1 GbE copper module RJ45 connectors 1000 100 10Base T 4 port 1 GbE fiber module 4 SFP sockets supporting the following transceivers o SFP fiber transceiver 1000Base SX 1Gbps Ethe...

Страница 49: ...supply Specific instructions on the location of modules are as follows Modules have to be inserted from left to right starting with the top row There must not be any empty slots between two modules in...

Страница 50: ...t back the filler panel by screwing in the 2 knurled screws Reconnect the Firewall to the power supply Using the Power button on the front panel start the Firewall Inserting an extension module on SN6...

Страница 51: ...er and the optic fiber are equipped with a connector plug When you plug this optic fiber into the transceiver remove the connector plugs and keep them away from dust for later use IMPORTANT Do not exc...

Страница 52: ...widget On SN3000 and SN6000 models the RAID section in the Hardware widget informs you about the SMART status of the SSDs as well as the RAID status You may also log on to the appliance in console mo...

Страница 53: ...w SSD which you would have obtained from your partner then type the following command to scan the newly inserted SSD nraid z Next type the command to rebuild the RAID nraid r Big Data Option If you ha...

Страница 54: ...from the 48VDC source Next on the module remove the protective cover 1 then use a screwdriver to disconnect the three supply wires 2 Remove the module push the release lever sideways toward the extra...

Страница 55: ...urce green AC mains blue 48VDC blinking SN3000 running module installed and connected to a power source green AC mains blue 48VDC not blinking module installed and not connected to a power source red...

Страница 56: ...supply plug in the supply cable s connector 1 Verify that the connector is locked in place by pulling it gently Each PSU module is equipped with a light showing its state two colours green red Module...

Страница 57: ...certain components and controlling appliances control reboot interruption etc Settings When starting the product once the Stormshield logo appears press del to access the BIOS Next go to the section...

Страница 58: ...nistration password immediately in the menu Configuration Users You are further advised to place the IPMI interface on a dedicated administration network If necessary the following Supermicro document...

Страница 59: ...Page 59 59 snengde_installation product SN range v1 2 Copyright Netasq 2015 PRESENTATION AND INSTALLATION GUIDE SN RANGE documentation stormshield eu...

Результаты поиска

Содержание SN2000

Отзывы:

Похожие инструкции для SN2000

Бренды по названию

Популярные бренды

Stormshield SN2000, Руководство по установке

Результаты поиска

Содержание SN2000

Отзывы:

Похожие инструкции для SN2000

Бренды по названию

Популярные бренды