Installation guide
4
Table of Contents
CHAPTER 7
Configuring Master Engines and Virtual IPS
Engines . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Configuration Overview . . . . . . . . . . . . . . . . . . 54
Adding a Master Engine Element . . . . . . . . . . . 55
Adding Nodes to a Master Engine . . . . . . . . . . 56
Adding a Virtual Resource Element . . . . . . . . . 56
Adding Physical Interfaces for Master Engines . 57
Adding VLAN Interfaces for Master Engines . . . 60
Adding IPv4 Addresses for Master Engines . . . . 62
Setting Global Interface Options for Master
Engines . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Adding a Virtual IPS Engine Element . . . . . . . . 64
Configuring Physical Interfaces for Virtual IPS
Engines . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
Adding VLAN Interfaces for Virtual IPS Engines . 65
Binding Engine Licenses to Correct Elements . . 66
CHAPTER 8
Configuring Master Engines and Virtual Layer 2
Firewalls . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Configuration Overview . . . . . . . . . . . . . . . . . . 68
Adding a Master Engine Element . . . . . . . . . . . 69
Adding Nodes to a Master Engine . . . . . . . . . . 70
Adding a Virtual Resource Element . . . . . . . . . 70
Adding Physical Interfaces for Master Engines . 71
Adding VLAN Interfaces for Master Engines . . . 74
Adding IPv4 Addresses for Master Engines . . . . 76
Setting Global Interface Options for Master
Engines . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
Adding a Virtual Layer 2 Firewall Element . . . . . 78
Configuring Physical Interfaces for
Virtual Layer 2 Firewalls . . . . . . . . . . . . . . . . . 79
Adding VLAN Interfaces for Virtual Layer 2
Firewalls . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Binding Engine Licenses to Correct Elements . . 81
CHAPTER 9
Saving the Initial Configuration . . . . . . . . . . . . 83
Configuration Overview . . . . . . . . . . . . . . . . . . 84
Saving the Initial Configuration . . . . . . . . . . . . 84
Preparing for Automatic Configuration . . . . . . 85
Preparing for Configuration Using the Engine
Configuration Wizard. . . . . . . . . . . . . . . . . . . 86
Transferring the Initial Configuration to the
Engines . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
CHAPTER 10
Configuring Routing and Installing Policies . . . 89
Configuring Routing . . . . . . . . . . . . . . . . . . . . 90
Adding Next-Hop Routers . . . . . . . . . . . . . . . 91
Adding the Default Route . . . . . . . . . . . . . . . 91
Adding Other Routes . . . . . . . . . . . . . . . . . . 91
Installing the Initial Policy . . . . . . . . . . . . . . . . 92
Commanding Engines. . . . . . . . . . . . . . . . . . 94
INSTALLING ENGINES
CHAPTER 11
Installing the Engine on Other Platforms . . . . . 97
Installing the Engine on Intel-Compatible
Platforms . . . . . . . . . . . . . . . . . . . . . . . . . . . 98
Configuration Overview . . . . . . . . . . . . . . . . . 98
Downloading the Installation Files . . . . . . . . . 98
Checking File Integrity . . . . . . . . . . . . . . . . . 99
Creating the Installation DVD . . . . . . . . . . . . 99
Starting the Installation . . . . . . . . . . . . . . . . 100
Installing the Engine on a Virtualization
Platform . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101
Configuring the Engine Automatically with a USB
Stick . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102
Configuring the Engine in the Engine
Configuration Wizard . . . . . . . . . . . . . . . . . . . 103
Configuring the Operating System Settings . . 104
Configuring the Network Interfaces . . . . . . . . 105
Defining the Network Interface Drivers
Manually . . . . . . . . . . . . . . . . . . . . . . . . . . 105
Mapping the Physical Interfaces to
Interface IDs . . . . . . . . . . . . . . . . . . . . . . . 106
Contacting the Management Server. . . . . . . . 107
Filling in the Management Server
Information . . . . . . . . . . . . . . . . . . . . . . . . 107
After Successful Management Server
Contact . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
Installing the Engine in Expert Mode . . . . . . . . 108
Partitioning the Hard Disk Manually . . . . . . . . 109
Allocating Partitions . . . . . . . . . . . . . . . . . . . 110