IBM GX7000 Series User manual
IBM Security Network Intrusion Prevention System Getting
Started Instructions for GX7000 Series Appliances
This document helps you do the following tasks:
vConnect the appliance
vConfigure network settings
vConnect to IPS Local Management Interface
vInstall the product license
vUpdate the appliance
After you finish these tasks:
vUse the applicable IBM®Security Network Intrusion Prevention System (IPS) Installation Guide to
install specific firmware versions
vUse the applicable IBM Security Network Intrusion Prevention System (IPS) Appliance User Guide or
Help system to
– Set up appliance management
– Configure your security policies, including specifying events and responses
– Create firewall rules to protect your network
– Track alerts
– Monitor important system information
Reference Key
GX7000 Series appliance forms may vary from the image below depending on the model.
vA:LCD Controller Module - used for initial network configuration, restarting or shutting down the
appliance, and obtaining IPS version information. Also used to view the serial number of the
appliance, if desired.
vB:Management Ports -
© Copyright IBM Corp. , 2011 1
Management Port 1 is used to communicate with IPS Local Management Interface and SiteProtector
Management
Management Port 2 is used exclusively for sending TCP Reset responses
vC:Serial Console Port - used for terminal-based setup and recovery.
vD:USB Ports - used for retrieving data and installing firmware.
vE:Protected Ports - used for either inline intrusion prevention (IPS mode) or passive intrusion
detection (IDS mode). Inline prevention uses a pair of ports per segment. Passive detection uses a
single port per segment.
Requirements
The following list identifies much of the equipment needed to cable the appliance.
vPower cable
vSerial console cable
vEthernet crossover cable
vFor each inline segment:
– A pair of Ethernet cables, straight-through or crossover, depending on your network type
– A crossover adapter
vAdditional Ethernet cables, as needed
vPC with a web browser and an Internet connection
Cable the appliance
Keep management and monitoring communication separate so that network traffic can pass
uninterrupted through the appliance's network interface card (NIC).
Procedure
1. Connect the power cable(s) to the appliance. If your appliance has two power cords, you must
connect both.
2. Connect Management port 1 to the network you will use to manage the appliance.
Note: TCP Reset: Management port 2 is the TCP Reset port. The appliance does not send TCP Reset
responses from this port until you configure TCP Reset.
3. Connect the network cables to the protected ports. To run the appliance in passive mode, only connect
the first protected port in the pair to the network.
4. Turn on the appliance.
Network information
Record the network information needed to configure the appliance.
Setting Your network information
IP address When you start the appliance, the appliance has an address assigned to it.
Subnet mask __________-__________-__________-__________
Default gateway __________-__________-__________-__________
Options for connecting to the network
You have many options to connect the appliance to the network.
2Network IPS Appliances: IBM Security
The best practice is to use zero configuration networking and then to use IPS Setup, the web-based
configuration wizard, to configure network settings for the IPS system. Find specific information on this
method in the Installation Guide, Chapter 2. "Configuring network settings for the Network IPS system,"
located on the IBM Security Product Information Center at http://publib.boulder.ibm.com/infocenter/
sprotect/v2r8m0/index.jsp, in the IBM Security Network IPS section.
If not using zero configuration networking, use one of the following methods to configure a network
connection:
v“Configure a network connection using a serial console”
v“Configure a network connection using the LCD panel”
Configure a network connection using a serial console
Procedure
1. Connect the serial console cable to the appliance and a computer to complete the initial configuration.
2. Connect to the appliance using Hyperterminal or another terminal emulation program. Follow the
instructions listed in the documentation for the chosen program.
3. Use the following settings to connect.
Option Description
Communication Port Typically COM1
Emulation VT100
Bits per second 9600
Data bits 8
Parity None
Stop bits 1
Flow control None
What to do next
Go to the next procedure in the getting started process, “Configuring network settings” on page 4.
Configure a network connection using the LCD panel
About this task
Note: You cannot use an IPv6 address when using the LCD panel. If using an IPv6 address, connect to
the network using a serial console.
Procedure
1. Determine and record your subnet mask and default gateway. When you start the appliance, the
appliance has an address assigned to it. Use this IP address for setup or change it to a desired
address.
2. Press Enter on the LCD panel. The LCD displays a message asking if you want to set up the
network.
3. Select OK, and then press Enter.
4. Press Enter again to display the IP Address screen. If you do not want to change the IP address,
record the address for your records, then press Enter to move onto the Subnet Mask screen. If you
want to change the address to another IPv4 address, use this screen.
IBM Security Network Intrusion Prevention System Getting Started Instructions for GX7000 Series Appliances 3
5. Press UP and DOWN to select numbers and then press the Right arrow to move to the next field.
6. When you have completed all the fields, press Enter.
7. Select OK to move forward, and then press Enter to confirm your selection.
8. Provide the subnet mask and default gateway just like the IP address.
9. After you enter all your network information, a final confirmation screen appears. Select OK to save
all network information and enable the Management port, or select Cancel to not save any
information.
10. After you confirm the settings, the appliance generates a temporary, case-sensitive password. Record
this password; you must use it when you log on to the appliance.
11. Connect to the appliance using a secure network connection and the appliance's IP address to
complete the initial configuration.
What to do next
Go to the next procedure in the getting started process, “Configuring network settings.”
Configuring network settings
Configure your appliance using a version of IPS Setup (either web-based or on the appliance) after using
zero configuration networking or after configuring a network connection using a serial console or the
LCD panel.
Configure appliance settings
Use one of the following procedures to access IPS Setup depending on the method used to connect the
appliance to the network.
Note: IPS Setup offers the option to upload a license. The appliance needs a properly configured license
file to run at full capability. For more information concerning uploading licenses, see the section “Install
the product license” on page 5.
Method Actions
Zero configuration networking 1. From the Bonjour menu, select the Network IPS
system you want to configure. The Network IPS
name is displayed as "IBM Security
<MODEL>-<SERVICE>[ID#]"
2. At the unconfigured login prompt, type the following
login credentials, and then press Enter:
vUsername = admin
vPassword = admin
3. Follow the on screen instructions to complete the
setup
Note: For specific information on this procedure, see the
Installation Guide at http://publib.boulder.ibm.com/
infocenter/sprotect/v2r8m0/index.jsp, in the IBM
Security Network IPS section.
4Network IPS Appliances: IBM Security
Method Actions
Serial console 1. Connect to the appliance using a secure network
connection and the appliance's IP address
2. At the unconfigured login prompt, type the following
login credentials, and then press Enter:
vUsername = admin
vPassword = admin
3. Follow the on screen instructions to complete the
setup
LCD panel 1. Connect to the appliance using a secure network
connection and the appliance's IP address
2. At the unconfigured login prompt, type the following
login credentials, and then press Enter:
vUsername = admin
vPassword = the case-sensitive password the
appliance generated for you
3. Follow the on screen instructions to complete the
setup
Connecting to IPS Local Management Interface
IPS Local Management Interface is the web-based management interface you use to monitor appliance
status, to configure and manage settings, and to review and manage appliance activities.
About this task
Procedure
1. Start your web browser.
2. Type https://<appliance IP address> or type https://<appliance host name> if you are using a
DNS server.
3. If needed, log in using the user name admin and the applicable IPS Local Management Interface
password.
Install the product license
IBM Security Network IPS requires a properly configured license file in order to run at full capability.
You must save the license file to the appropriate location so that the IPS Local Management Interface
software can locate and acknowledge it.
About this task
Register your customer license and download the license from the IBM Security Registration Center. If
the license was not uploaded during initial configuration, install the license using the menu option
Manage System Settings →Updates and Licensing →Administration.
Note: For more information on installing a product license and applying initial updates, see the
Installation Guide located at http://publib.boulder.ibm.com/infocenter/sprotect/v2r8m0/index.jsp, in the
IBM Security Network IPS section.
IBM Security Network Intrusion Prevention System Getting Started Instructions for GX7000 Series Appliances 5
Apply initial updates
Ensure you have applied the latest updates to the appliance.
You can install the following update types:
vFirmware updates: These updates include new program files, fixes or patches, enhancements, or Help
updates.
vIntrusion prevention updates: These updates contain the most recent security content provided by the
IBM X-Force research and development team.
Apply initial updates using the menu option Manage System Settings →Updates and Licensing →
Administration.
Note: For specific information on installing a product license and applying initial updates, see the
Installation Guide located at http://publib.boulder.ibm.com/infocenter/sprotect/v2r8m0/index.jsp, in the
IBM Security Network IPS section.
Next steps
Recovery CDs
To create a recovery CD of your IBM Network Security IPS firmware, download and save the firmware
from the IBM Security Download Center located at http://www.iss.net/download/. Find information
about installing Network IPS firmware in the Installation Guide located on the IBM Security Product
Information Center at http://publib.boulder.ibm.com/infocenter/sprotect/v2r8m0/index.jsp, in the IBM
Security Network IPS section.
Getting the latest documentation
To configure advanced settings, including management, security, and firewall settings, see the applicable
User Guide or Help system for more information. Find the latest documentation on the IBM Security
Product Information Center at http://publib.boulder.ibm.com/infocenter/sprotect/v2r8m0/index.jsp.
Customer Support
IBM Security Solutions provides technical support to customers that are entitled to receive support.
Before you contact IBM Security Solutions about a problem, see the IBM Support Portal at
http://www-947.ibm.com/support/entry/portal/Overview/Software/Software_support_%28general%29.
If you need to contact technical support, use the methods described in the IBM Software Support Guide
at http://www14.software.ibm.com/webapp/set2/sas/f/handbook/home.html. The guide provides the
following information:
vRegistration and eligibility requirements for receiving support
vCustomer support telephone numbers for the country in which you are located
vA list of information you must gather before contacting customer support
6Network IPS Appliances: IBM Security
Copyright statement
© Copyright IBM Corporation 2011. U.S. Government Users Restricted Rights — Use, duplication or
disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
IBM Security Network Intrusion Prevention System Getting Started Instructions for GX7000 Series Appliances 7
Table of contents
Other IBM Firewall manuals
IBM
IBM SP3001 Guide
IBM
IBM Proventia Network GX4004 User manual
IBM
IBM Proventia Management SiteProtector SP2001 User manual
IBM
IBM QRadar XGS 5200 Guide
IBM
IBM GX7 Series Guide
IBM
IBM SP3001 Guide
IBM
IBM Proventia Management SiteProtector SP1001 User manual
IBM
IBM Proventia Management SiteProtector SP2001 User manual
IBM
IBM Proventia User manual
IBM
IBM QRadar XGS 5200 Guide
Popular Firewall manuals by other brands
NETGEAR
NETGEAR ProSAFE SRX5308 datasheet
Lanner electronics
Lanner electronics FW-6420 user manual
IBASE Technology
IBASE Technology FWA6304-D25 user manual
NETGEAR
NETGEAR FVS318 - ProSafe VPN Firewall Router Specifications
D-Link
D-Link DFL-1000 Quick install guide
Alcatel-Lucent
Alcatel-Lucent 1200 user guide