1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Software
  5. NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV...
  6. Manual

Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1 Manual

Nsmxpress series ii user guide
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Juniper Networks Network
and Security Manager
NSMXpress Series II User Guide
Release
2010.4
Published: 2010-11-17
Revision 1
Copyright © 2010, Juniper Networks, Inc.

Advertisement

Table of Contents
loading

Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1

Summary of Contents for Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1

  • Page 1 Juniper Networks Network and Security Manager NSMXpress Series II User Guide Release 2010.4 Published: 2010-11-17 Revision 1 Copyright © 2010, Juniper Networks, Inc.
  • Page 2 Products made or sold by Juniper Networks or components thereof might be covered by one or more of the following patents that are owned by or licensed to Juniper Networks: U.S. Patent Nos. 5,473,599, 5,905,725, 5,909,440, 6,192,051, 6,333,650, 6,359,479, 6,406,312, 6,429,706, 6,459,579, 6,493,347, 6,538,518, 6,538,899, 6,552,918, 6,567,902, 6,578,186, and 6,590,785.
  • Page 3 REGARDING LICENSE TERMS. 1. The Parties. The parties to this Agreement are (i) Juniper Networks, Inc. (if the Customer’s principal office is located in the Americas) or Juniper Networks (Cayman) Limited (if the Customer’s principal office is located outside the Americas) (such applicable entity being referred to herein as “Juniper”), and (ii) the person or organization that originally purchased from Juniper or an authorized Juniper reseller the applicable...
  • Page 4 Customer shall be liable for any such violations. The version of the Software supplied to Customer may contain encryption or other capabilities restricting Customer’s ability to export the Software without an export license. Copyright © 2010, Juniper Networks, Inc.
  • Page 5 (including Juniper modifications, as appropriate) available upon request for a period of up to three years from the date of distribution. Such request can be made in writing to Juniper Networks, Inc., 1194 N. Mathilda Ave., Sunnyvale, CA http://www.gnu.org/licenses/gpl.html...
  • Page 6 Copyright © 2010, Juniper Networks, Inc.

  • Page 7: Table Of Contents

    Setting Interface Options ......... 24 Copyright © 2010, Juniper Networks, Inc.
  • Page 8 Deleting Syslog Receivers ........54 viii Copyright © 2010, Juniper Networks, Inc.
  • Page 9 Index ............. 81 Copyright © 2010, Juniper Networks, Inc.
  • Page 10 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.
  • Page 11 Figure 36: Configuring a Syslog Receiver ....... . . 53 Copyright © 2010, Juniper Networks, Inc.
  • Page 12 Figure 57: Mid-Mount in two post equipment rack ......75 Copyright © 2010, Juniper Networks, Inc.
  • Page 13 Table 10: NSMXpress LEDs ..........77 Copyright © 2010, Juniper Networks, Inc.
  • Page 14 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.

  • Page 15: About This Guide

    Requesting Technical Support on page xix Objectives Juniper Networks NSMXpress Series II is an appliance version of Network and Security Manager (NSM), a software application that centralizes control and management of your Juniper Networks devices. With NSM, Juniper Networks delivers integrated, policy-based security and network management for network and security devices.

  • Page 16: Table 1: Notice Icons

    The angle bracket (>) Indicates navigation paths through the UI Object Manager > User Objects > Local by clicking menu options and links. Objects Table 3 on page xvii defines syntax conventions used in this guide. Copyright © 2010, Juniper Networks, Inc.

  • Page 17: Documentation

    Manager Configuring management. It also explains how to configure basic and advanced ScreenOS and IDP Devices NSM functionality, including deploying new device configurations, Guide managing security policies and VPNs, and general device administration. Copyright © 2010, Juniper Networks, Inc. xvii...

  • Page 18: Documentation Feedback

    Release Notes. Release Notes are included on the corresponding software CD and are available on the Juniper Networks Website. NSMXpress and NSM3000 Describes how to set up and manage the NSM appliances as a User Guide central manager or regional server.

  • Page 19: Requesting Technical Support

    7 days a week, 365 days a year. Self-Help Online Tools and Resources For quick and easy problem resolution, Juniper Networks has designed an online self-service portal called the Customer Support Center (CSC) that provides you with the following features: Find CSC offerings: http://www.juniper.net/customers/support/...
  • Page 20 Use the Case Management tool in the CSC at http://www.juniper.net/cm/ Call 1-888-314-JTAC (1-888-314-5822 toll-free in the USA, Canada, and Mexico). For international or direct-dial options in countries without toll-free numbers, visit us at http://www.juniper.net/support/requesting-support.html Copyright © 2010, Juniper Networks, Inc.

  • Page 21: Using Nsmxpress Series Ii

    Using NSMXpress Series II Part 1 contains the following chapters: Getting Started on page 3 Installing and Configuring NSM from the CLI on page 11 Configuring NSM from the Web Interface on page 29 Copyright © 2010, Juniper Networks, Inc.
  • Page 22 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.

  • Page 23: Getting Started

    NSMXpress Series II make it easy for administrators to control device configuration, network settings, and security policy settings for multiple families of Juniper Networks devices including: IDP Series Intrusion Detection and Prevention Appliances and Firewall and VPN devices running ScreenOS.

  • Page 24: Installation And Configuration Workflow

    NOTE: If you decide to install an NSMXpress Series II appliance in your DMZ, ensure that it can connect to your internal resources. NSMXpress Series II Ports Table 5 on page 5 provides required port information on the NSMXpress Series II appliance. Copyright © 2010, Juniper Networks, Inc.

  • Page 25: Getting Started

    System Security Updates from Juniper Networks Shared Disk portmap lookup Network Time Protocol (NTP) time synchronization 2049 Shared Disk NFS connection For more information on ports, refer to the Network and Security Manager Installation Guide. Copyright © 2010, Juniper Networks, Inc.

  • Page 26: Installing The Nsmxpress Series Ii Hardware

    Figure 2: Front Panel of NSMXpress Series II Hard disk Hard disk Right Left Failure LED Activity LED maintenance port NSMXpress II CONSOLE ETH1 ETH0 Power Hardware Console port Hard disk LED Network ports Copyright © 2010, Juniper Networks, Inc.

  • Page 27: Table 6: Ethernet Port Leds

    Table 7: RJ-45 Console Connector Pinout Signal Description RTS Output Request to Send DTR Output Data Terminal Ready TxD Output Transmit Data Chassis Ground Chassis Ground RxD Input Receive Data DSR Input Data Set Ready Copyright © 2010, Juniper Networks, Inc.

  • Page 28: Initial Setup Configuration

    NSMXpress.juniper.net login: Enter admin as your default login name. Enter abc123 as your default password. Change your default password when prompted. Enter the default password first, followed by your new password. All passwords are case-sensitive. Copyright © 2010, Juniper Networks, Inc.

  • Page 29: Set Up Your Appliance

    NSM 2010.4r1Kernel 2.6.9 55.0.2.ELsmp on an i686 NSMXpress.Juniper.net login: admin Password: Last login: Tue May 27 17:20:25 on ttyS0 Run NSMXpress system setup? [y/N] Enter y to run the system setup program from the CLI. Copyright © 2010, Juniper Networks, Inc.

  • Page 30: Web Interface Configuration

    Enter the admin user name and password and then click Login. See “Configuring NSM from the Web Interface” on page 29 for details about how to install and configure NSM on your NSMXpress Series II appliance from the Web interface. Copyright © 2010, Juniper Networks, Inc.

  • Page 31: Installing And Configuring Nsm From The Cli

    Password for 'super' user 3> GUI server one-time password [] Password to initiate authentication between HA peers and to Central Manager. This password must be the same for all NSM servers in this installation. Copyright © 2010, Juniper Networks, Inc.
  • Page 32 Turn on the NSM appliance and wait for the login prompt: Juniper NSMXpress NSM 2010.4r1 Kernel 2.6.9 42.0.8.ELsmp on an i686 NSMXpress.juniper.net logon: admin Password: Las Login: Tue May 17 09:43:50 on tty50 Run NSMXpress system setup? [y/N] N Copyright © 2010, Juniper Networks, Inc.

  • Page 33: Configuring The Nsm Software

    Your NSMXpress Series II appliance comes preconfigured as a regional server or a central manager, as described in the following sections: Configuring a Regional Server on page 14 Configuring the Central Manager on page 19 Copyright © 2010, Juniper Networks, Inc.

  • Page 34: Configuring A Regional Server

    Once configured, the setup program displays the IP address for the interface you selected. NSM ‘super’ password—Enter 2 to specify an NSM super password. This password must be at least eight characters long and is case-sensitive. This password is used by Copyright © 2010, Juniper Networks, Inc.

  • Page 35: Configuring Custom Settings

    Install to use the built-in limited device license for as many as 25 devices. This option is the default. Otherwise, enter the filename of the license file you purchased from Juniper Networks that permits you to manage more than 25 devices. For additional details about NSM licensing, see the Network and Security Manager Installation Guide.
  • Page 36 3> HA Link 2 Remote IP [] IP address for the peer's secondary heartbeat link 4> HA Remote Replication IP [] IP address used for remote HA replications 5> Return to High Availability Menu Copyright © 2010, Juniper Networks, Inc.
  • Page 37 Menu: SRS—Enter 3 to open a menu to configure Statistical Report Server (SRS). The following sections provide details about configuring remote backup and SRS: Enabling and Configuring Remote Replication of the Database on page 18 Enabling and Configuring the Statistical Report Server on page 18 Copyright © 2010, Juniper Networks, Inc.
  • Page 38 Statistical Report Server will be used with this GUI Server 2> SRS DB IP [] Database server IP address 3> SRS DB Type [pgsql] Database Type 4> SRS Database Name [netscreen] Database name 5> SRS DB Owner Name [netscreen] Database user name Copyright © 2010, Juniper Networks, Inc.

  • Page 39: Configuring The Central Manager

    HA peers and to all Regional Servers 4> Menu: High Availability [Off] 5> Menu: Advanced Options A> Apply settings C> Cancel all changes and quit R> Redraw menu Choice [1-5,A,C,R]: You have the following options: Copyright © 2010, Juniper Networks, Inc.

  • Page 40: Configuring High Availability

    IP address outside the HA cluster 5> HA Inter-server password [] Shared password for heartbeat 6> Menu: Shared Disk [Off] 7> Menu: HA Links 8> Menu: HA Advanced Settings The following options are available to configure HA. Copyright © 2010, Juniper Networks, Inc.
  • Page 41 3> HA Link 2 Remote IP [] IP address for the peer's secondary heartbeat link 4> HA Remote Replication IP [] IP address used for remote HA replications 5> Return to High Availability menu Copyright © 2010, Juniper Networks, Inc.

  • Page 42: Enabling And Configuring Remote Replication Of The Database

    1> Remote Replication of Database [n] If 'y', local backups will be sent to a remote backup machine 2> Hour of day to Replicate Database [02] Hour to start backup Copyright © 2010, Juniper Networks, Inc.

  • Page 43: Configuring Standard Configuration Options

    Saving Setup Options on page 27 Changing the Password To change your password: On the NSMXpress Series II Settings Menu, enter 1 at the prompt. Enter y when prompted to change the password for an “admin” user. Copyright © 2010, Juniper Networks, Inc.

  • Page 44: Setting Interface Options

    3 for 1000 Mbps and go to the next step. Enter 1 for full duplex or 2 for half duplex, and then return to the NSMXpress Series II Settings menu. Setting Routing Options To set or modify routing options: Copyright © 2010, Juniper Networks, Inc.

  • Page 45: Changing The Nsmxpress Series Ii Hostname

    You can change time zones or the Network Time Protocol (NTP) configuration. The default time zone is set for Pacific Standard Time (PST)/Pacific Daylight Time (PDT). Select time zones in the following order: Continent or ocean Country Region Copyright © 2010, Juniper Networks, Inc.

  • Page 46: Forwarding Local Status E-Mails

    System security updates are NSMXpress Series II operating system-level patches that protect the system against any future reported security vulnerabilities. NSMXpress Series II checks for new updates daily by connecting to Juniper Networks. To manage system security updates: On the NSMXpress Series II Settings menu, enter 8 at the prompt.

  • Page 47: Saving Setup Options

    NSMXpress Series II is connected to the computer with a console cable. If not, refer to the section “Initial Setup Configuration” on page 8 for details. To reinstall the NSMXpress Series II configuration: Copyright © 2010, Juniper Networks, Inc.
  • Page 48 Rescue mode, just hit <Enter> at the password prompt. Press any key. Enter erase at the prompt to erase the disk. This task will take a few minutes. When reinstallation is finished, you are prompted to login. Copyright © 2010, Juniper Networks, Inc.

  • Page 49: Chapter 3 Configuring Nsm From The Web Interface

    To install the regional server or central manager software using the minimum requirements: Complete all appropriate steps in “Getting Started” on page 3. Enter the https://<ip>/administration URL for your appliance in a Web browser. See “Web Interface Configuration” on page 10 for details. Copyright © 2010, Juniper Networks, Inc.

  • Page 50: Figure 3: Regional Server Configuration Main Menu

    NOTE: The “admin” user default username is admin and the password is the one you created in Step 6 of “Boot NSMXpress Series II” on page 8. Figure 3: Regional Server Configuration Main Menu Copyright © 2010, Juniper Networks, Inc.

  • Page 51: Figure 4: Central Manager Configuration Main Menu

    Click Upload license file to upload the license file you generated using the Juniper License Management System (LMS), which permits you to manage more than 25 devices. This license file must be located on your local hard drive. Copyright © 2010, Juniper Networks, Inc.

  • Page 52: Configuring High Availability

    (Optional) Click Menu next to Shared Disk (see Figure 5 on page 32) to configure a shared disk for regional servers (see Figure 6 on page 33) or for central managers (see Figure 7 on page 33). Copyright © 2010, Juniper Networks, Inc.

  • Page 53: Figure 6: Shared Disk Options For Regional Servers

    If you configure HA with just one heartbeat link, then device management traffic and data replication traffic both use that link. If you configure two links, device management traffic uses the first link and data replication uses the second. Copyright © 2010, Juniper Networks, Inc.

  • Page 54: Advanced Options

    To display the Advanced Options menu, on the NSM Configuration Main Menu, select Menu next to Advanced Options. The Advanced Options menu appears as shown in Figure 11 on page 34. Figure 11: Advanced Options Menu Advanced installation options include: Copyright © 2010, Juniper Networks, Inc.

  • Page 55: Enabling And Configuring Remote Replication Of The Database

    Backup information is copied to the /var/netscreen/dbbackup directory on the remote server. The “nsm” user must exist on both servers and you must establish an SSH trust relationship. See the Network and Security Manager Installation Guide, for details. Copyright © 2010, Juniper Networks, Inc.

  • Page 56: Figure 13: Srs Menu

    SRS database. The default value is netscreen. To enter another name, click the radio button next to the blank text box and enter the name in the text box. Copyright © 2010, Juniper Networks, Inc.

  • Page 57: Installing Nsm Software

    Scheduling Security Updates on page 41 Changing the Superuser Password To change the superuser password, select NSM Administration > NSM Super User Password. See Figure 14 on page 37. Figure 14: Change Superuser Password Copyright © 2010, Juniper Networks, Inc.

  • Page 58: Figure 15: Download Nsm Mibs

    Exporting Device Logs (Regional Server Only) To export device logs, select NSM Administration > Export Device Logs. See Figure 17 on page 38. This option is not available on the central manager. Figure 17: Export Device Logs Copyright © 2010, Juniper Networks, Inc.

  • Page 59: Figure 18: Generate Reports

    Modifying NSM Configuration Files To manually edit the files, select NSM Administration GuiSrv.cfg DevSvr.dfg HaSvr.cfg > Modify NSM Configuration Files. The example in Figure 19 on page 40 shows the option to modify the file. GuiSvr.cfg Copyright © 2010, Juniper Networks, Inc.

  • Page 60: Figure 19: Nsm Configuration Files

    Backing Up the NSM Database To configure backups of the NSM database, select NSM Administration > NSM Database Backup link under NSM Administration. See Figure 20 on page 41. Copyright © 2010, Juniper Networks, Inc.

  • Page 61: Changing The Nsm Management Ip

    > NSM Management IP link under NSM Administration. See Figure 21 on page 41. Figure 21: Change Management IP Scheduling Security Updates To schedule security updates, select NSM Administration > Schedule Security Updates. See Figure 22 on page 42. Copyright © 2010, Juniper Networks, Inc.

  • Page 62: Managing System Administration

    To reboot or shut down the NSMXpress Series II, select System Administration > Bootup and Shutdown, and then click either Reboot System or Shutdown System. See Figure 23 on page 42. Figure 23: ReBoot or Shut Down Copyright © 2010, Juniper Networks, Inc.

  • Page 63: Network Interfaces

    Routing and Gateways on page 44 Hostname and DNS Clients on page 44 Host Addresses on page 45 Network Interfaces Use this option to manage the network interfaces. See Figure 26 on page 44. Copyright © 2010, Juniper Networks, Inc.

  • Page 64: Figure 26: Network Interfaces

    Use this option to configure and manage routes and gateways. See Figure 27 on page 44. Figure 27: Routes and Gateways Hostname and DNS Clients Use this option to configure and manage hostnames and DNS clients. See Figure 28 on page 45. Copyright © 2010, Juniper Networks, Inc.

  • Page 65: Host Addresses

    NSMXpress Series II users with their associated user profiles (SysAdmin, NSMAdmin, Operator, Guest), to the RADIUS database. For more details see Steel-Belted Radius Documentation. NOTE: You need System Administration or NSM Administration permission to manage RADIUS servers in the NSMXpress Series II WebUI. Copyright © 2010, Juniper Networks, Inc.

  • Page 66: Adding A Radius Server

    : The IP address or the hostname of the RADIUS Server. : The shared secret NSMXpress Series II and the RADIUS server use Shared secret for secure authentication. Auth Port : The RADIUS authentication software port. (We recommend UDP port 1812) Copyright © 2010, Juniper Networks, Inc.
  • Page 67 RADIUS Servers that have been added. Select the name of the server whose properties you want to edit. The Edit RADIUS Server dialog box appears. See Figure 32 on page 48. Copyright © 2010, Juniper Networks, Inc.

  • Page 68: Monitoring With Snmp

    SNMP System Information on page 49 SNMP Trap Configuration on page 50 SNMP Configuration To configure SNMP: Select System Administration > SNMP Monitoring. Select the SNMP Config tab, which is shown in Figure 33 on page 49. Copyright © 2010, Juniper Networks, Inc.

  • Page 69: Figure 33: Configuring Snmp

    Select the System Info tab, which is shown in Figure 34 on page 49. Figure 34: Configuring SNMP System Information Enter the following information, with is required for any SNMP-managed device: Contact—Contact information for the appliance. Location—Location of the appliance. Copyright © 2010, Juniper Networks, Inc.

  • Page 70: Figure 35: Configuring Snmp Traps

    Enter the percentage of free memory below which SNMP issues a trap. CPU high Enter the percentage of CPU use over which SNMP issues a trap. NSM start/stop Admin Logon/Logoff External IP unreachable Enter the IP address of the required device. Click Save. Copyright © 2010, Juniper Networks, Inc.

  • Page 71: Forwarding Syslog Messages

    To view the syslog receivers configured on your NSMXpress Series II appliance, follow these steps: Select System Administration > Syslog Forwarding. The Syslog Forwarding window appears. Figure 36 on page 53 shows an example. Copyright © 2010, Juniper Networks, Inc.

  • Page 72: Table 8: Viewing Syslog Receivers

    Server log, and HA Server log. The syslog facility is a field included in the syslog message to help identify the data source. Click Save. Click Add new Receiver. The syslog receiver configuration window appears as shown in Figure 36 on page 53. Copyright © 2010, Juniper Networks, Inc.

  • Page 73: Figure 36: Configuring A Syslog Receiver

    In the IP field, Enter the IP address of the syslog receiver. In the Transport field, select the type of syslog receiver: Select UDP for basic syslog implementations. Select TCP for rsyslog or syslog-NG implementations. Copyright © 2010, Juniper Networks, Inc.

  • Page 74: Changing The System Time

    Configure an NTP server to synchronize the system time with an external clock. Installing Updates Select System Administration > System Update to perform the following tasks: Check for updates and install them. Enable or disable automatic updates. Copyright © 2010, Juniper Networks, Inc.

  • Page 75: Managing Users

    NSMXpress users. See Figure 37 on page 55. Figure 37: NSMXpress Users Dialog Box Click The Create NSMXpress user dialog box appears. Create a new NSMXpress User. See Figure 38 on page 56. Copyright © 2010, Juniper Networks, Inc.

  • Page 76: Figure 38: Create Nsmxpress User Dialog Box

    Select the check box next to the name of the user you want to delete and click Delete . Click in the Delete Users confirmation dialog box that appears. Selected Delete User NOTE: You cannot delete admin users or change their user profiles. Copyright © 2010, Juniper Networks, Inc.

  • Page 77: Table 9: Nsmxpress Series Ii Webui User Profiles And Permissions

    Table 9: NSMXpress Series II WebUI User Profiles and Permissions System Network NSM Appliance Modules Administrator Administrator Operator Guest User System Administration Bootup and Shutdown Change User Password Network Configuration RADIUS Management SNMP Monitoring Syslog Forwarding System Time Copyright © 2010, Juniper Networks, Inc.

  • Page 78: Configuring The Web Interface

    To specify which NSM client computers can access NSMXpress Series II through the Web interface, select System Administration > WebUI Configuration. The Allowed IP Addresses window appears as shown in Figure 40 on page 59. Copyright © 2010, Juniper Networks, Inc.

  • Page 79: Maintaining Nsmxpress Series Ii

    Select lograte to view graphs that monitor the log rate hourly, daily, weekly, monthly, or on a customizable basis. CPU Load Select Load to view graphs that monitor the CPU load hourly, daily, weekly, monthly, or on a customizable basis. Copyright © 2010, Juniper Networks, Inc.

  • Page 80: Memory Data

    One set makes up the NSMXpress Series II OS, the other a set of upgrade script packages. Both sets are usually retained in the local file system. The NSMXpress Series II OS set can also be downloaded from the Juniper Networks software repository.

  • Page 81: Troubleshooting

    Administrator and NSM administrator permissions can view all Actions Logs in NSMXpress Series II. To view Action Audit Logs: Select . The NSMXpress Actions Log dialog box Troubleshooting > Action Audit Logs appears. See Figure 42 on page 62. Copyright © 2010, Juniper Networks, Inc.

  • Page 82: Figure 42: Nsmxpress Actions Dialog Box

    Click . The Search Results dialog box appears with the result of your query. See Search Figure 43 on page 63. Copyright © 2010, Juniper Networks, Inc.

  • Page 83: Error Logs

    Figure 44: Review Error Logs To view details of an individual error log, select the file you want to view and click View. Figure 45 on page 63 shows sample error log details. Figure 45: Error Log Detail Copyright © 2010, Juniper Networks, Inc.

  • Page 84: Network Utilities

    The data sent by ping contains a hexadecimal pattern. If you leave this option blank, ping will fill it with random data. This option is useful if you do not have problems with connectivity itself but with data loss. Copyright © 2010, Juniper Networks, Inc.

  • Page 85: Traceroute

    IP address (see Figure 49 on page 66). The query type drop-down list contains several types of records found in the DNS database. Enter a nameserver or select the default. If you choose the default, nslookup uses the server on which NSMXpress Series II is installed. Copyright © 2010, Juniper Networks, Inc.

  • Page 86: Ip Subnet Calculator

    > Tech Support. To help analyze problems, select a detail type in the drop-down list box, and then click Run Tech-Support Script. NSMXpress Series II creates a file you can download and send to Juniper Networks technical support. See Figure 51 on page 66. Figure 51: Juniper Tech Support...

  • Page 87: Viewing System Information

    Chapter 3: Configuring NSM from the Web Interface Viewing System Information Use the System Information menu item to display information about the server, including CPU load and memory use, as shown in Figure 52 on page 67. Figure 52: System Information Copyright © 2010, Juniper Networks, Inc.
  • Page 88 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.

  • Page 89: Appendixes

    PART 2 Appendixes Rack-Mounting the NSMXpress Series II Appliance on page 71 NSMXpress LEDs on page 77 Copyright © 2010, Juniper Networks, Inc.
  • Page 90 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.

  • Page 91: Rack-Mounting The Nsmxpress Series Ii Appliance

    Front-Mounting Flush to Rack To mount the appliance using this option: Attach the chassis to the equipment rack using 4 rack-mount screws on each side of the system. See Figure 53 on page 72. Copyright © 2010, Juniper Networks, Inc.

  • Page 92: Figure 53: Front-Mounting Flush To Rack

    Verify that the mounting screws on one side of the rack are aligned with the mounting screws on the opposite side and that the appliance is level. Figure 54: Front-Mounting recessed in rack Copyright © 2010, Juniper Networks, Inc.

  • Page 93: Figure 55: Front-Rear-Mounting Flush To Rack

    Remove the rear screws on each side of the system’s front rails and the two small screws towards the front of the chassis. Tighten the side rail screws. Insert the two small screws in the recessed holes on the front rails and tighten. Copyright © 2010, Juniper Networks, Inc.

  • Page 94: Mid-Mount In Two Post Equipment Rack

    See Figure 57 on page 75. Verify that the mounting screws on one side of the rack are aligned with the mounting screws on the opposite side and that the appliance is level. Copyright © 2010, Juniper Networks, Inc.

  • Page 95: Figure 57: Mid-Mount In Two Post Equipment Rack

    Appendix A: Rack-Mounting the NSMXpress Series II Appliance Figure 57: Mid-Mount in two post equipment rack Copyright © 2010, Juniper Networks, Inc.
  • Page 96 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.

  • Page 97: Nsmxpress Leds

    Hard disk activity. Hardware Unlit Normal operation. Blinking fast (1/sec) A fan has failed. Blinking slow (4/sec) A power supply has failed. On steadily Warning that the system is overheating and is about to power off. Copyright © 2010, Juniper Networks, Inc.
  • Page 98 NOTE: This is applicable for Blinking red Hard disk recovery or rebuild NSM 3000 RAID configurations and not for non-RAID configurations (NSMXpress/NSMCM). NOTE: For information on LAN LEDs, see Table 6 on page 7 Copyright © 2010, Juniper Networks, Inc.

  • Page 99: Index

    PART 3 Index Index on page 81 Copyright © 2010, Juniper Networks, Inc.
  • Page 100 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.
  • Page 101 21, 33 device logs, exporting............38 high availability DevSvr.cfg file................39 central manager, configuring......20, 32 disk usage..................60 regional server, configuring........15, 32 DMZ....................4 High Availability menu DNS client..................44 central manager.............20 DNS server.................25 regional server..............15 Copyright © 2010, Juniper Networks, Inc.
  • Page 102 NSM appliances Settings menu........23 authentication..............48 NSM Configuration Main Menu configuring................48 central manager..............19 monitoring NSM appliances with......48 regional server..............14 system information for..........49 NSM license.................15, 31 trap configuration............50 nsm user..................10 SRS See Statistical Report Server nsm_setup utility..............12 SSH....................5 Copyright © 2010, Juniper Networks, Inc.
  • Page 103 JTAC..............xix tiling.....................60 time zone................26, 54 time, setting...............25, 54 traceroute utility..............65 trap conditions, SNMP............50 troubleshooting................61 URL, Web interface..............10 user admin, nsm, root.............10 Web interface configuring................58 login URL................10 Web interface configuration configuration..............10 Web login..................10 Yum server.................55 Copyright © 2010, Juniper Networks, Inc.
  • Page 104 NSMXpress Series II User Guide Copyright © 2010, Juniper Networks, Inc.

This manual is also suitable for:

Network and security manager 2010.4

Table of Contents