Cisco Cisco Firepower Management Center 2000 Entwickleranleitung
6-4
FireSIGHT eStreamer Integration Guide
Chapter 6 Configuring eStreamer
Configuring eStreamer on the eStreamer Server
The eStreamer server allows the client computer to access port 8302 on the Defense Center and creates
an authentication certificate to use during client-server authentication. The eStreamer Client page
re-appears, with the new client listed under
an authentication certificate to use during client-server authentication. The eStreamer Client page
re-appears, with the new client listed under
eStreamer Clients
.
Step 6
Click the download icon (
) next to the certificate file.
Step 7
Save the certificate file to the directory used by your client computer for SSL authentication.
The client can now connect to the Defense Center.
Tip
To revoke access for a client, click the delete icon (
) next to the host you want to remove. Note that
you do not need to restart the host input service on the Defense Center; access is revoked immediately.
Using an Alternate Management Interface with eStreamer
License:
Any
By default, eStreamer uses the primary management interface,
eth0
, to stream data to eStreamer clients.
You can configure eStreamer to use the any available management interface. This example uses
eth1
,
but you can use any available management interface. eStreamer can only use one interface at a time.
To configure eStreamer to use an alternate management interface
Access:
Admin (escalated to Root)
Step 1
Connect the
eth1
interface on the Defense Center to a broadcast domain that is the same domain as the
eStreamer clients and not the same domain as the
eth0
interface.
Caution
Placing the
eth0
and
eth1
interfaces in the same broadcast domain impacts performance.
Step 2
Open an SSH connection to the Defense Center.
Step 3
Log into the Defense Center and type
sudo su
to get root access. If necessary, type your password again
when prompted.
Step 4
Type the command
configure-network -i eth1 enable
to enable the
eth1
interface.
Step 5
Configure the
eth1
interface using the prompts.
The following prompt appears:
Do you wish to configure IPv4? (y or n)
Step 6
Type
y
and press Enter. If you do not type
y
, you will not be prompted to configure IPv4 or IPv6.
The following prompt appears:
Management IP address? [10.5.60.199]
Step 7
Type the desired IP address and press Enter.
The following prompt appears:
Management netmask? [255.255.0.0]
Step 8
Type the netmask and press Enter.
The following prompt appears:
Management default gateway? [10.5.1.1]