Manualsbrain.com
  1. Handbücher
  2. Marken
  3. Cisco
  4. Cisco Firepower Management Center 2000
  5. Entwickleranleitung

Cisco Cisco Firepower Management Center 2000 Entwickleranleitung

Download
Seite von 536
 
6-4
FireSIGHT eStreamer Integration Guide
 
Chapter 6      Configuring eStreamer 
  Configuring eStreamer on the eStreamer Server
The eStreamer server allows the client computer to access port 8302 on the Defense Center and creates 
an authentication certificate to use during client-server authentication. The eStreamer Client page 
re-appears, with the new client listed under 
eStreamer Clients
.
Step 6
Click the download icon (
) next to the certificate file.
Step 7
Save the certificate file to the directory used by your client computer for SSL authentication.
The client can now connect to the Defense Center.
Tip
To revoke access for a client, click the delete icon (
) next to the host you want to remove. Note that 
you do not need to restart the host input service on the Defense Center; access is revoked immediately.
Using an Alternate Management Interface with eStreamer
License: 
Any
By default, eStreamer uses the primary management interface, 
eth0
, to stream data to eStreamer clients. 
You can configure eStreamer to use the any available management interface. This example uses 
eth1
but you can use any available management interface. eStreamer can only use one interface at a time.
To configure eStreamer to use an alternate management interface
Access: 
Admin (escalated to Root)
Step 1
Connect the 
eth1
 interface on the Defense Center to a broadcast domain that is the same domain as the 
eStreamer clients and not the same domain as the 
eth0
 interface.
Caution
Placing the 
eth0
 and 
eth1
 interfaces in the same broadcast domain impacts performance.
Step 2
Open an SSH connection to the Defense Center.
Step 3
Log into the Defense Center and type 
sudo su
 to get root access. If necessary, type your password again 
when prompted.
Step 4
Type the command 
configure-network -i eth1 enable
 to enable the 
eth1
 interface. 
Step 5
Configure the 
eth1
 interface using the prompts.
The following prompt appears:
Do you wish to configure IPv4? (y or n)
Step 6
Type 
y
 and press Enter. If you do not type 
y
, you will not be prompted to configure IPv4 or IPv6.
The following prompt appears:
Management IP address? [10.5.60.199] 
Step 7
Type the desired IP address and press Enter.
The following prompt appears:
Management netmask? [255.255.0.0] 
Step 8
Type the netmask and press Enter.
The following prompt appears:
Management default gateway? [10.5.1.1]