Intel Mcafee data loss prevention prevent User manual

This quick start guide provides high-level instructions for setting up a McAfee® Data Loss Prevention

Prevent (McAfee DLP Prevent) hardware appliance.

For complete details, or if you are setting up a virtual appliance, see the McAfee Data Loss Prevention

Product Guide for your version of 10.x. For setting up a McAfee DLP appliance at version 9.3.x, see the

product guide for your version.

1 Check your shipment

Each product ships with all the items needed to install the appliance on a network. Check the

contents list to verify that you received all these items.

2 Download product documentation

aGo to the ServicePortal at https://support.mcafee.com and click the Knowledge Center tab.

bIn the Knowledge Base pane under Content Source, click Product Documentation.

cSelect a product and version, then click Search to display a list of documents.

dDownload these documents.

•McAfee Data Loss Prevention Product Guide

•McAfee Data Loss Prevention Hardware Guide

3 Plan your configuration

Use the product guide deployment chapter to plan the integration of McAfee DLP products in your

network.

aFamiliarize yourself with the McAfee DLP deployment options.

bComplete the deployment checklist.

Quick Start Guide

Revision B

McAfee Data Loss Prevention Prevent

version 10.x

4 Identify network ports

Locate the network ports on your appliance. Unlabeled ports are not used.

Figure 1 Model 4400 appliance port configuration

1Serial port 4Remote access port (RMM)

2OOB port 5Unused (Ethernet port 2)

3LAN1 port 6Unused (Ethernet port 3)*

*If the appliance has a fiber NIC, the LAN1 port is Ethernet port 3 (callout 6).

Figure 2 Model 5500 appliance port configuration

1Unused (Ethernet port 3) 4LAN1

2Unused (Ethernet port 2)* 5Serial port

3OOB port 6Remote access port (RMM)

*If the appliance has a fiber NIC, the LAN1 port is Ethernet port 2 (callout 2).

Figure 3 Model 6600 appliance port configuration

1LAN1 4Serial port

2Unused 5Remote access port (RMM)

3OOB port

5 Install the extensions

Prepare McAfee® ePolicy Orchestrator® (McAfee® ePO™) for McAfee DLP Prevent integration.

For information on manually installing the extensions, see the product guide.

For details about product features, usage, and best practices, click ? or Help.

aIn McAfee ePO, select Menu | Software | Software Manager.

bIn the left pane, expand Software (by Label) and select Data Loss Prevention.

cSelect the entry for McAfee DLP Prevent.

These extensions are included:

• McAfee DLP

• Common UI

• Appliance Management Extension

• McAfee DLP Prevent

dClick Check In.

eSelect the checkbox to accept the agreement, then click OK.

6 Configure network information

Configure the DNS server, NTP server, and Smart Host in McAfee ePO.

For details about product features, usage, and best practices, click ? or Help.

aIn McAfee ePO, select Menu | Policy | Policy Catalog.

bFrom the Product drop-down list, select Common Appliance Management.

cSelect the My Default policy.

dAdd the DNS server and the NTP server, then click Save.

eFrom the Product drop-down list, select DLP Prevent Server.

fSelect the My Default policy for Email Settings.

gEnter the IP address of the Smart Host, then click Save.

7 Set up the appliance

Prepare the appliance for network integration.

By default, each appliance is configured with these IP addresses after installation:

•LAN1 — 10.1.1.108/24

Use the LAN1 network for SMTP or ICAP traffic. You can also use it for management traffic.

•OOB — 10.1.3.108/24

(Optional) Use the out-of-band (OOB) network for management traffic including McAfee ePO

communication.

If your network uses DHCP, the first IP address that the DHCP server assigns to the

appliance is used instead. You can manually configure the IP address with the Setup Wizard.

The appliance does not support using a continuous DHCP configuration.

The default gateway for the appliance uses the LAN1 network. Configure any routing required on the

OOB interface using static routes.

aInstall the appliance in a rack.

bConnect a monitor, keyboard, and mouse to the appliance.

cConnect the LAN1 interface of the appliance to your network.

d(Optional) Connect the OOB interface to another network.

8 Install the appliance

Install the software and run the Setup Wizard.

aPrepare the appliance for installation.

•6600 appliances — Turn on the appliance.

•4400 and 5500 appliances

1Using the installation ISO file, create or set up the external imaging media. You can

perform the initial installation using these methods:

• USB drive

Use image writing software, such as Launchpad Image Writer, to write the

image to the USB drive. For more information, see KB87321.

• USB CD drive

• (4400 appliances only) Integrated CD drive

• Virtual CD drive using the remote management module (RMM)

2Insert or connect the media to the appliance.

3Turn on the appliance.

4Before the operating system starts, press F6 for the boot menu and select the external

media.

R3c0n3x is the BIOS password for 4400 appliances.

bFollow the onscreen prompts.

When the installation completes, the appliance restarts.

cComplete the Setup Wizard using the information in the on-screen help.

McAfee DLP Prevent is installed and registered to McAfee ePO.

If the installation fails, call McAfee technical support. Do not perform the installation again.

9 Perform post-setup tasks

• Configure an evidence server to store the files that triggered rule violations.

• Configure one or more syslog servers if required.

• Verify connectivity and mail flow between the mail transfer agent (MTA) server and McAfee DLP

Prevent.

• Verify that the X-RCIS-Action: Allow header is added to received email.

• Verify connectivity between the web proxy server and McAfee DLP Prevent.

• Create classifications and rules to detect potential violations within your network.

For more information on these tasks, refer to the product guide.

Intel and the Intel logo are trademarks/registered trademarks of Intel Corporation. McAfee and the McAfee logo are trademarks/

registered trademarks of McAfee, Inc. Other names and brands may be claimed as the property of others.

80B00

Table of contents

Popular Firewall manuals by other brands

NETGEAR

NETGEAR ProSafe FVS318N Cli reference manual

NETGEAR

NETGEAR FVS318G - ProSafe Gigabit VPN Firewall Data Sheet... installation guide

DECRYPTUM

DECRYPTUM PR 2080TI/12 4U user manual

One Identity

One Identity Safeguard 2000 Setup guide

Hirschmann

Hirschmann EAGLE 20 TX/TX user manual

Cisco

Cisco IronPort M1070 quick start guide

Andrisoft

Andrisoft wanguard 6.2 user guide

Barracuda

Barracuda F800 CCC manual

Draytek

Draytek Vigor2860 Series user guide

Nokia

Nokia IP740 - Remote Access Server Product guide

PaloAlto Networks

PaloAlto Networks PA-5200 Seriesp Hardware reference

Arista

Arista DCA-NDR-S1 quick start guide

Cisco

Cisco ASA 5512-X quick start guide

Fortinet

Fortinet FortiGate FortiGate-300 Administration guide

BESTEK

BESTEK NSP-10H6 user manual

Fortinet

Fortinet FortiGate-50A installation guide

Tosibox

Tosibox Lock 200 quick start guide

Trend Micro

Trend Micro TippingPoint NX-Platform Hardware Installation and Safety

Intel McAfee Data Loss Prevention Prevent User manual

Popular Firewall manuals by other brands