Manualshelf

Installation guide

ManualsBrandsMcafee ManualsOtherFIREWALL 2.1-GETTING STARTED
21222324252627282930
24
Chapter 3 Installing Licenses
Getting Started with IPS and Layer 2 Firewall Licenses
Each IPS engine, Layer 2 Firewall, and Master Engine must have its own license. IPS engines
may use a Security Engine Node license or an IPS-specific license. Layer 2 Firewalls and Master
Engines always use a Security Engine Node license. The correct type of license for each engine
is generated based on your Management Server proof-of-license (POL) code or the appliance
proof-of-serial (POS) code.
Virtual IPS engines and Virtual Layer 2 Firewalls do not require a separate license. However, the
Master Engine license limits the number of Virtual Resources that can be created. The limit for
the number of Virtual Resources limits how many Virtual IPS engines or Virtual Layer 2 Firewalls
can be created.
The Management Server’s license may be limited to managing only a certain number of IPS
engines, Layer 2 Firewalls, or Master Engines. Virtual IPS engines and Virtual Layer 2 Firewalls
do not count against this limit.
With appliances version 5.0 or newer, it is possible to download and install engine licenses
automatically. For additional information on automatic downloading and installation of appliance
licenses, see the McAfee SMC Administrator’s Guide.
If there is no connection between the Management Server and the License Center, the
appliance can be used without a license for 30 days. After this you must generate the license(s)
manually at the License Center web page and install them on the Management Server using the
Management Client before your system is fully operational.
What’s Next?
If you need new licenses, proceed as explained in the Configuration Overview (page 25).
If you do not need new licenses for the IPS engines, Layer 2 Firewalls, or Master
Engines, and NAT is applied to communications between any SMC components,
proceed to Configuring NAT Addresses (page 27).
If you do not need new licenses for the IPS engines, Layer 2 Firewall engines, or Master
Engines, and NAT is not applied to the communications, you are ready to define the
engine element(s). Continue according to the element type:
Defining IPS Engines (page 33)
Defining Layer 2 Firewalls (page 43)
Configuring Master Engines and Virtual IPS Engines (page 53)
Configuring Master Engines and Virtual Layer 2 Firewalls (page 67)