Nortel 2070 Configuration
  1. Manuals
  2. Brands
  3. Nortel Manuals
  4. Software
  5. 2070
  6. Configuration
Nortel 2070 Configuration

Nortel 2070 Configuration

Nortel tps 2070 3d sensor: software guide
Hide thumbs Also See for 2070:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Troubleshooting Manual, Installation Manual
Nortel TPS Remediation Module for Nortel VPN
Gateway—Installation and Configuration
Nortel TPS Remediation Module
Release 4.7.0.2
for NVG—Installation and
Part No. NN47240-103
Configuration
(324602-A)

Advertisement

Table of Contents
loading

Related Manuals for Nortel 2070

Summary of Contents for Nortel 2070

  • Page 1 Nortel TPS Remediation Module for Nortel VPN Gateway—Installation and Configuration Nortel TPS Remediation Module Release 4.7.0.2 for NVG—Installation and Part No. NN47240-103 Configuration (324602-A)
  • Page 2 1995), DFARS 227.7202 (Jun 1995) and DFARS 252.227-7015 (Nov 1995). Nortel Networks, Inc. reserves the right to change any products described herein at any time, and without notice. Nortel Networks, Inc. assumes no responsibility or liability arising from the use of products described herein, except as expressly agreed to in writing by Nortel Networks, Inc.

  • Page 3: Table Of Contents

    ABLE OF Chapter 1: Overview ... 4 TPS and the Remediation Module... 4 TPS Remediation Module for NVG... 5 Chapter 2: Installation ... 8 Installing the remediation module... 9 Chapter 3: Configuration... 11 NVG configuration for TPS remediation ... 11 Defense Center and 3D Sensor configuration...

  • Page 4: Chapter 1: Overview

    HAPTER VERVIEW This chapter describes the Nortel Threat Protection System (TPS) Remediation Module for Nortel VPN Gateway (NVG) and the products in the Nortel TPS that use it. TPS and the Remediation Module The Nortel TPS is a fully integrated security monitoring system that identifies network threats, network assets, and known vulnerabilities in those assets.

  • Page 5: Defense Center

    Defense Center The Nortel TPS 2070 DC, the Defense Center, is the central management point of the TPS. The Defense Center provides management of 3D Sensors remotely and also allows the following: • reviewing and evaluating of the data from the sensors •...

  • Page 6: Overall Function

    When the system executes these remediations, it logs events to the remediation event view and provides details about the remediation name, the policy and rule that triggered it, and the exit status message. The following figure describes the model setup for TPS Remediation module for NVG. Figure 1: Model setup for TPS Remediation module for NVG Overall function Whenever a Netdirect client connected to NVG server creates unwanted traffic to...

  • Page 7: Interface Between The Dc And Perl Script

    Snooze time is the time interval between two consecutive executions of perl script. This can be configured in DC. Interface between the DC and Perl script The DC creates a file named as instance.conf before executing the script that includes the following: •...

  • Page 8: Chapter 2: Installation

    NSTALLATION This chapter describes the Nortel TPS Remediation Module for NVG remediation file installation process for the Nortel TPS 2070 DC (Defense Center) and the Nortel 3D sensors. The Nortel TPS Remediation Modules for NVG are available for download at www.nortel.com/support.

  • Page 9: Installing The Remediation Module

    Installing the remediation module Use the following procedure to install a Nortel TPS Remediation Module for Application Switch on a Defense Center or RTI Sensor. 1. From the TPS GUI main page for the appliance, open the Policy and Response page.
  • Page 10 Chapter 2: Installation Installing the remediation module Figure 2: Module List page after the NVG TPS module installed TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...

  • Page 11: Chapter 3: Configuration

    HAPTER ONFIGURATION This chapter describes configuration of the Nortel TPS Remediation Module for the Nortel VPN Gateway (NVG). NVG configuration for TPS remediation Configuration on the NVG is done through the command line interface (CLI) allowing the interaction with the TPS remediation module to occur. TPS can be configured to use either telnet or secure shell (SSH) to communicate with the NVG.

  • Page 12: Defense Center And 3D Sensor Configuration

    NVG CLI. Figure 3: NVG CLI Configurations Defense Center and 3D Sensor configuration Nortel provides the following remediation module for the Nortel VPN Gateway (NVG): While configuring the remediations for the TPS NVG module, do not provide any specific IP entries to the remediation.

  • Page 13: Creating Remediations For The Defense Center And 3D Sensors

    The NVG can have a Client machine without Netdirect features (Clientless and Enhanced clientless). If a policy-violating IP traffic situation occurs from this IP, the TPS module will not kick out the machine even if the NVG has a session corresponding to this IP in its session table.

  • Page 14: Kick The Client-Ip Remediation

    12. Click Create. The instance is created and remediations appear in the Configured Remediations section of the page. Kick the Client–IP remediation A Kick IP remediation kicks a Client–IP address from NVG, if any traffic sent to the destination host that is included in the compliance policy violation event. Adding a Kick the Client-IP remediation Use the following procedure to add a kick the client–IP remediation.
  • Page 15 3. Select Remediations. 4. Select Instances. The Remediation Instance List page appears. 5. Select an instance from the Configured Instances list. 6. To view the selected instance, under Actions, click View. The Edit Remediation Instance page appears. 7. In the Configured Remediations section of the page, select Delete Session in the Add a new remediation of type box.

  • Page 16: Appendix A: Configuration Examples

    The following section describes a configuration example on a Defense Center for remediation module NVG-TPS 1.4 After installation is complete, use the following procedure to add a Nortel VPN Gateway (NVG) instance to kick a Client IP if a non-compliant traffic is generated.
  • Page 17 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 4: Remediation List Page 5. Select view NVG Remediation from the Actions list as shown in the following figure: Figure 5: NVG TPS Module Details TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION...
  • Page 18 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 6. Click Add. The Edit Instances page appears as shown in the following figure. Figure 6: Edit Instances Page 7. In the Instance Name entry field, enter the name of the instance to add. 8.
  • Page 19 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 7: Sample of Filling Up Instances Page 13. Click Create. The Edit Instances/Configured Remediations page appears as shown in the figure below: TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION...
  • Page 20 Figure 8: Creating an Instance—NVG Remediation 14. From the Add a new remediation of type list, select Kick the Client IP. 15. Click Add. The Edit Remediation Page appears as shown in the following figure. In the Remediation Name field, type the remediation name, for example: NVG_remediation.
  • Page 21 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 9: Edit Remediations Page 16. Click Create. The created new remediation Nvg_remediation page appears as shown in the following figure: TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE...
  • Page 22 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 10: Instance detail page after creating remediation 17. Click Save. 18. Click Done. The following figure describes the configured instances for the NVG TPS module: TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION...
  • Page 23 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 11: Configured Instances for NVG TPS module 19. Create a compliance rule as shown in the following figure. TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 24 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 12: Create compliance rule TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 25 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 20. Save the compliance rule. A message is displayed on the screen indicating a successful save as shown in the following figure. 21. Create a compliance policy. TPS R NVG—I 4.7.0.2 ORTEL...
  • Page 26 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 13: Create a compliance policy 22. Add the created compliance rule onto the compliance policy. TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 27 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 14: Add compliance rule to compliance policy 23. When the compliance rule is successfully added to the compliance policy, it appears as shown in the following figure: TPS R NVG—I 4.7.0.2 ORTEL...
  • Page 28 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 15: Compliance rule successfully added to compliance policy 24. Add remediation as responses to the compliance policy. TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 29 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 16: Add remediation as responses to compliance policy 25. When the remediation is added as responses to the compliance policy successfully, it appears as shown in the following figure: TPS R NVG—I 4.7.0.2...
  • Page 30 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 17: Remediation added as Responses to the Compliance Policy 26. Save the compliance policy. TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 31 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 18: Save the compliance policy 27. Activate the compliance policy. TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 32 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 19: Activate the compliance policy 28. View the remediation status message. TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 33 Appendix A: Configuration Examples NVG TPS module configuration with NVG-TPS 1.4 Figure 20: View the remediation status message TPS R NVG—I 4.7.0.2 ORTEL EMEDIATION ODULE FOR NSTALLATION AND ONFIGURATION ELEASE PAGE...
  • Page 35 Users must take full responsibility for their applications of any products specified in this document. The information in this document is proprietary to Nortel Networks.

Table of Contents