Manualsbrain.com
  1. Manuais
  2. Marcas
  3. Mojo Networks Inc.
  4. SS300AT
  5. Manual Do Utilizador

Mojo Networks Inc. SS300AT Manual Do Utilizador

Download
Página de 117
Installing
ȱtheȱSensorȱ
SpectraGuard
®
ȱEnterpriseȱInstallationȱGuideȱ
25
Chapter
ȱ5
Installing
ȱtheȱSensorȱȱ
SensorȱisȱtheȱprobeȱthatȱmonitorsȱyourȱnetworkȱandȱcommunicatesȱwithȱtheȱServerȱtoȱguardȱyourȱcorporateȱnetworkȱagainstȱ
overȬtheȬairȱattacks.ȱTheȱSensorȱmustȱbeȱpluggedȱtoȱyourȱcorporateȱnetworkȱtoȱperformȱtheȱaboveȱoperations.ȱ
Sensorȱcanȱbeȱconfiguredȱinȱoneȱofȱtheȱfollowingȱthreeȱmodes:ȱ
x
Sensor
ȱOnlyȱ(SO)ȱMode:ȱThisȱisȱtheȱdefaultȱmode.ȱInȱthisȱmode,ȱtheȱSensorȱshouldȱbeȱconnectedȱintoȱanȱaccessȱportȱ
onȱaȱswitch.ȱItȱthenȱmonitorsȱaȱsingleȱVLANȱthatȱisȱconfiguredȱonȱthatȱaccessȱport.ȱTheȱwirelessȱinterfaceȱofȱtheȱ
Sensorȱisȱenabled.ȱ
x
Network
ȱDetectorȱ(ND)ȱMode:ȱThisȱmodeȱneedsȱtoȱbeȱexplicitlyȱconfigured.ȱInȱthisȱmode,ȱtheȱNDȱshouldȱbeȱ
connectedȱintoȱaȱtrunkȱportȱ(802.1Qȱcapable)ȱonȱaȱswitch.ȱItȱthenȱmonitorsȱmultipleȱVLANsȱthatȱareȱconfiguredȱonȱ
thatȱtrunkȱportȱandȱareȱchosenȱbyȱtheȱuserȱusingȱtheȱNDȱCLI.ȱTheȱwirelessȱinterfaceȱofȱtheȱNDȱisȱdisabled.ȱAnȱSSȬ200Ȭ
ATȱSensorȱinȱNDȱmodeȱcanȱmonitorȱupȱtoȱ32ȱVLANs.ȱSimilarly,ȱanȱSSȬ300ȬATȱcanȱmonitorȱuptoȱ100ȱVLANs.ȱ
x
Sensor/ND
ȱComboȱ(SNDC)ȱMode:ȱThisȱmodeȱneedsȱtoȱbeȱexplicitlyȱconfigured.ȱInȱthisȱmode,ȱtheȱSensorȱshouldȱbeȱ
connectedȱintoȱaȱtrunkȱportȱ(802.1Qȱcapable)ȱonȱaȱswitch.ȱItȱthenȱmonitorsȱmultipleȱVLANsȱthatȱareȱconfiguredȱonȱ
thatȱtrunkȱportȱandȱareȱchosenȱbyȱtheȱuserȱusingȱtheȱNDȱCLI.ȱTheȱwirelessȱinterfaceȱofȱtheȱSensorȱisȱenabled.ȱAȱSSȬ
200ȬATȱSensorȱinȱSNDCȱmodeȱcanȱmonitorȱupȱtoȱ4ȱVLAN.ȱSimilarly,ȱanȱSSȬ300ȬATȱcanȱmonitorȱuptoȱ16ȱVLANs.ȱ
Important:ȱToȱpreventȱabuseȱandȱintrusionȱbyȱunauthorizedȱpersonnel,ȱitȱisȱextremelyȱimportantȱtoȱinstallȱtheȱSensorȱsuchȱthatȱitȱisȱ
difficultȱtoȱunplugȱtheȱdeviceȱfromȱtheȱnetworkȱorȱfromȱtheȱpowerȱoutlet.ȱ
5.1
Zero
ȱConfigurationȱofȱSensorsȱ
Zeroȱconfigurationȱisȱrequiredȱifȱtheȱfollowingȱconditionsȱareȱsatisfied:ȱ
x
TheȱSensorȱisȱinȱSOȱmode.ȱ
x
AȱDNSȱentryȱ‘wifiȬsecurityȬserver’ȱisȱsetȱupȱonȱallȱDNSȱServers.ȱThisȱentryȱshouldȱpointȱtoȱtheȱIPȱaddressȱofȱtheȱ
Server.ȱByȱdefaultȱtheȱSensorȱlooksȱforȱtheȱServerȱDNSȱentryȱ‘wifiȬsecurityȬserver’.ȱ
x
SensorȱisȱplacedȱonȱaȱsubnetȱthatȱisȱDHCPȱenabled.ȱ
Important:ȱIfȱaȱSensorȱisȱplacedȱonȱaȱnetworkȱsegmentȱthatȱisȱseparatedȱfromȱtheȱServerȱbyȱaȱfirewall,ȱyouȱmustȱfirstȱopenȱportȱ3851ȱforȱ
UserȱDatagramȱProtocolȱ(UDP)ȱandȱTransportȱControlȱProtocolȱ(TCP)ȱbidirectionalȱtrafficȱonȱthatȱfirewall.ȱThisȱportȱnumberȱisȱassignedȱ
toȱAirTight®ȱNetworks.ȱIfȱmultipleȱSensorsȱareȱsetȱupȱtoȱconnectȱtoȱmultipleȱServers,ȱzeroȱconfigurationȱisȱnotȱpossible.ȱInȱthisȱcaseȱ
manualȱconfigurationȱofȱSensorsȱisȱneeded.ȱReferȱtoȱ
ManuallyȱConfiguringȱtheȱSensor
ȱforȱdetails.ȱ
TheȱstepsȱtoȱinstallȱtheȱSensorȱwithȱnoȱconfigurationȱ(zeroȱconfiguration)ȱareȱasȱfollows.ȱ
x
MountȱtheȱSensorȱ
x
PowerȱupȱtheȱSensorȱ
x
ConnectȱtheȱSensorȱtoȱtheȱnetworkȱ
5.2
Connecting
ȱtheȱSensorȱ
ThisȱinvolvesȱmountingȱtheȱSensor,ȱpoweringȱitȱup,ȱandȱconnectingȱitȱtoȱtheȱnetwork.ȱ
5.2.1 MountȱtheȱSSȬ200ȬATȱSensorȱ
TakeȱaȱconfiguredȱSensor,ȱthatȱis,ȱmakeȱsureȱthatȱtheȱSensorȱisȱgivenȱaȱstaticȱIPȱorȱtheȱsettingsȱhaveȱbeenȱchangedȱforȱDHCP.ȱ
NoteȱtheȱMACȱaddressȱandȱtheȱIPȱaddressȱofȱtheȱSensorȱinȱaȱsafeȱplaceȱbeforeȱitȱisȱinstalledȱinȱaȱhardȬtoȬreachȱlocation.ȱTheȱ
MACȱaddressȱofȱtheȱSensorȱisȱprintedȱonȱaȱlabelȱatȱtheȱbottomȱofȱtheȱproductȱandȱtheȱpackagingȱbox.ȱ
Recommended:ȱYouȱshouldȱlabelȱtheȱSensorsȱusingȱMACȱaddressesȱorȱatȱleastȱyourȱownȱconvention.ȱForȱexample,ȱuseȱserialȱnumbers,ȱsoȱ
thatȱyouȱcanȱeasilyȱidentifyȱtheȱSensors.ȱ
5.2.1.1
Ceiling
ȱMountingȱ
ToȱmountȱtheȱSensorȱtoȱaȱceiling,ȱperformȱtheȱfollowingȱsteps:ȱ
1.
Placeȱtheȱmountingȱbracket/mountȱonȱtheȱSensorȱandȱalignȱtheȱbracketȱslotsȱwithȱthoseȱonȱtheȱSensorȱasȱshownȱinȱtheȱ
followingȱfigure.ȱ
ȱ