Tufin T-800 User manual

T-800/1200 Quick Start Guide

Version 13.11

Table of Contents

Table of Contents 2

Chapter 1: Introduction 3

Welcome 3

Overview 3

Chapter 2: The T-800/1200 Front and Rear Panels 4

Front Panel 4

Front Panel LEDs and Buttons 4

Rear Panel 6

Chapter 3: Setting Up The T-800/1200 7

Power up and Connect to the Network 7

Advanced CLI Configuration 7

Chapter 4: Installing and Configuring Tufin Orchestration Suite Classic 8

Install Tufin Orchestration Suite Classic 8

Configure SecureTrack 8

Configure SecureChange 11

Chapter 5: Installing and Configuring Tufin Orchestration Suite Aurora 13

Network Requirements for Tufin Orchestration Suite Aurora 13

Install Tufin Orchestration Suite Aurora 13

Configure SecureTrack 15

Configure SecureChange 16

Chapter 6: Setting up the Remote Management Module 18

Prerequisites for Remote Computer 18

Ports 18

Configure RMM Using BIOS 18

Configure RMM Using SSH or a Console 19

Installing TufinOS 20

Chapter 7: Restoring Factory Defaults 21

The Next Step 22

Support 22

Tufin at a Glance 22

Trademarks 22

T-800/1200 Quick Start Guide

Table of Contents

Chapter 1: Introduction

Welcome

Congratulations on choosing the T-800/1200 Appliance from Tufin Technologies, the industry’s most comprehensive Security Policy Orchestration

solution. Our worldwide technical services team is available to you through the web, email, or telephone. See http://www.tufin.com/support for your

preferred mode of communication. We look forward to supporting all of your current and future firewall operation’s needs.

Overview

Information in this guide applies to the T-800 and the T-1200 appliances.

The new T-Series Appliances are a Tufin-in-a-box solution that provides IT organizations with a quick, robust installation that lowers total cost of

ownership. T-Series Appliances are designed to support both Tufin Orchestration Suite Classic (default) and Aurora. You can choose which

product to install.

Using distributed deployment architecture, Tufin’s T-Series Appliances enable virtually unlimited scalability – multiple appliances can be connected

on-demand at multiple sites, according to network needs. With enterprise-grade memory and SSD drives, the T-Series combines power and

flexibility in several models to scale to the needs of mid-size to large enterprises and ensure optimal performance for your organization.

The T-Series Appliances come pre-installed with TufinOS and are designed to support both Tufin Orchestration Suite Classic (default) and Aurora.

You will need to choose the desired Tufin Orchestration Suite product and install it using the instructions provided in this document.

When setting up the appliance, we recommend that you also configure the Remote Management Module (RMM). With this module you can install

newer versions of TufinOS on the appliance without having to physically access the server.

All Tufin Appliances are rigorously lab-tested by our network security experts.

This document provides:

lShipping container contents, and descriptions of the appliance panels

lA step by step guide to getting the appliance and software up and running

lInstructions for restoring factory defaults

To set up device monitoring by SecureTrack, to configure SecureChange, or for more information about the Tufin Orchestration Suite, see the

Tufin Knowledge Center at https://forum.tufin.com/support/kc/latest (for Classic) or https://forum.tufin.com/support/kc/aurora (for Aurora).

Shipping Container Contents

Item Description

Appliance T-800/1200 appliance

Cables 2 power cables

1 RJ-45 (CAT 5e) network cable

1 DB9 console cable

USB flash drive USB flash drive for appliance recovery

Documentation This Quick Start Guide

Other hardware Rack mounting kit

Appliance front bezel

T-800/1200 Quick Start Guide

Chapter 1: Introduction

Chapter 2: The T-800/1200 Front and Rear Panels

These sections describe the different elements in the front and rear panels.

Front Panel

Item Description

A Service/Asset Tag

B Hard drive bay 0

C Hard drive bay 1

D Hard drive bay 2

E Hard drive bay 3

F Hard drive bay 4

G Hard drive bay 5

H Hard drive bay 6

I Hard drive bay 7

J Front panel LEDs and buttons

K 2 USB 3.0 Ports

Front Panel LEDs and Buttons

All control buttons and status LEDs are located on the front of the appliance.

Item Feature Description

A Information

LED

Indicates system status as follows:

lContinuously on and red: An overheat condition has occurred (which may be caused by cable

congestion).

lBlinking red (1Hz): Fan failure, check for an inoperative fan.

lBlinking red (0.25Hz): Power failure, check for a non-operational power supply.

lSolid blue: UID has been activated locally to locate the server in a rack environment.

lBlinking blue: UID has been activated using IPMI to locate the server in a rack environment.

T-800/1200 Quick Start Guide

Chapter 2: The T-800/1200 Front and Rear Panels

Item Feature Description

B NIC LED When flashing, indicates network activity on LAN1.

C NIC LED When flashing, indicates network activity on LAN2.

D HDD When flashing, indicates activity on the hard drive.

E Power LED Indicates power is being supplied to the system power supply units. This

LED is illuminated when the system is operating normally.

F UID

button/LED

The unit identification (UID) button turns on or off the blue light function of the Information LED and a blue LED

on the rear of the chassis. These are used to locate the server in large racks.

PWR Power button The main power switch applies or removes primary power from the power supply to the server but maintains

standby power.

T-800/1200 Quick Start Guide

Chapter 2: The T-800/1200 Front and Rear Panels

Rear Panel

Item Description Notes

A Power supply 1

B Power supply 2

C LAN 10GB ethernet port 1

D LAN 10GB ethernet port 2

E LAN 10GB ethernet port 3

F LAN 10GB ethernet port 4

G 2 USB 3.0 ports

H IPMI LAN Dedicated IPMI management interface that gives you remote management (“lights-out

management”) of the system.

I Serial port Standard serial port that gives you serial access to the system via console redirection.

J VGA port

K 1 PCI-E 3.0 low profile slot

L 2 PCI-E 3.0, full height, full

length slots

Note: For Tufin Orchestration Suite 2.0 (Aurora), you must use only LAN Ethernet port 1 (C in the figure) for all network

connections.

T-800/1200 Quick Start Guide

Chapter 2: The T-800/1200 Front and Rear Panels

Chapter 3: Setting Up The T-800/1200

Power up and Connect to the Network

Note: The appliances have a predefined IP address. Before racking the appliances, make sure to change the IP address either

in the first-time wizard (as described Chapter 4: Configure SecureTrack), or using a console connection (see Advanced CLI

Configuration) in CLI. For CLI instructions, see https://forum.tufin.com/support/kc/latest/Content/Suite/1584.htm.

To power up the appliance and connect it to the network:

1. Connect the power cable.

2. Boot up the appliance by pressing the Power button on the front panel.

3. Connect a network cable to the ethernet port 1 (Chapter 2: Rear Panel, item C) and to a PC (with a crossover cable), or to a local network

that is in the same subnet as the eth0 port. If you have not changed it, the default is 192.168.1.100/24.

Advanced CLI Configuration

You can achieve CLI access using a console connection or SSH access. To use a console connection, configure the terminal to match the

following appliance console port settings:

l57600 bits per second

l8 Data bits

lParity: None

lStop bit: 1

lFlow Control: None

T-800/1200 Quick Start Guide

Chapter 3: Setting Up The T-800/1200

Chapter 4: Installing and Configuring Tufin Orchestration

Suite Classic

This section includes instructions to install and configure Tufin Orchestration Suite Classic R21-1 and above running on TufinOS 3.60.

Install Tufin Orchestration Suite Classic

1. Install Tufin Orchestration Suite Classic (SecureTrack and SecureChange/SecureApp):

a. Open a command line via SSH to the IP address of eth0 (if you have not changed it: 192.168.1.100).

b. Log in as tufin-admin with password admin.

You are prompted to change the default password when you first log in.

c. To install Tufin Orchestration Suite Classic, run the following commands:

screen -S install

sudo su –

cd /opt/tufin/data/classic

sh <filename>

The installation file is in /opt/tufin/data/classic.

d. Follow the installation instructions in the command line.

If you disabled SecureTrack and will not be using it on this appliance, skip to Configure SecureChange.

2. (SecureTrack only) Log into SecureTrack:

a. To access SecureTrack with Mozilla Firefox or Google Chrome, browse with HTTPS to the IP address of eth0. If you have not

changed the IP address, browse to: https://192.168.1.100.

b. Accept the certificate.

The login window appears.

c. Log in with these credentials (admin/admin) and click Login.

Configure SecureTrack

After logging into SecureTrack for the first time, the SecureTrack Setup Wizard opens. The wizard includes the following pages:

T-800/1200 Quick Start Guide

Chapter 4: Installing and Configuring Tufin Orchestration Suite Classic

lLogin: For security reasons, change the admin password.

lEULA: Read and accept the End User License Agreement.

lPassword: Type system for the Old Password of the TufinOS root user, and change the password.

T-800/1200 Quick Start Guide

Chapter 4: Installing and Configuring Tufin Orchestration Suite Classic

lNetworking (optional): Configure networking (DNS settings can also be configured later from SecureTrack's web interface)

lTime: Configure date and time settings.

lUser Details: Configure the admin user’s details. Username and password cannot be changed in this page.

T-800/1200 Quick Start Guide

Chapter 4: Installing and Configuring Tufin Orchestration Suite Classic

Other manuals for T-800

This manual suits for next models

Table of contents

Other tufin Firewall manuals

tufin

tufin T-1100 User manual

Popular Firewall manuals by other brands

Fortinet

Fortinet FSM-500F Configuration guide

Cisco

Cisco Meraki MX100 installation guide

Cisco

Cisco S190 quick start guide

Fortinet

Fortinet FortiGate Voice Series install guide

SecureLogix

SecureLogix ETM System installation guide

Huawei

Huawei USG6000 Series Upgrade guide

NETGEAR

NETGEAR ProSafe FVX538 Reference manual

Lanner

Lanner FW-8877 user manual

Nexcom

Nexcom DNA 1150 user manual

Cisco

Cisco 3110 Hardware installation guide

Fortinet

Fortinet FortiGate-60 series install guide

ADTRAN

ADTRAN NetVanta 2300 Specifications

Swisscom

Swisscom Internet Backup manual

SonicWALL

SonicWALL NSa 5700 quick start guide

DPtech

DPtech FW1000 SERIES Maintenance manual

FEITIAN

FEITIAN MultiPass FIDO product manual

Trend Micro

Trend Micro Deep Edge quick start guide

Smoothwall

Smoothwall S10 Appliance Getting started guide

tufin T-800 User manual

Popular Firewall manuals by other brands