Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Summary of Contents for Skybox Securoty Appliance 5500
- Page 1 Skybox Appliance 5500 Quick Start Guide 8.5.400 Revision: 11...
- Page 2 ® Assurance, Skybox Vulnerability Control, Skybox Threat Manager, Skybox Change Manager, Skybox Appliance 5500/6000/7000/8000, and the Skybox Security logo are either registered trademarks or trademarks of Skybox Security, Inc., in the United States and/or other countries. All other trademarks are the property of their respective owners.
-
Page 3: Table Of Contents
Contents Overview ....................5 Basic architecture ..................5 Related documentation ................5 Skybox Appliance specifications ..............6 What’s in the box ..................6 Physical specifications ................6 Environmental specifications ..............7 MTBF estimates for Skybox Appliance ............8 Front panel ....................9 Back panel connectors ................ - Page 4 Skybox Appliance 5500 Quick Start Guide Updating the operating system on Skybox Appliance ........29 Adding a customer certificate ..............30 Restoring the Appliance to factory defaults ..........31 Monitoring SNMP ..................32 Troubleshooting ..................34 Change log .................... 35 Wiping the hard disk drive ...............
-
Page 5: Overview
Chapter 1 Overview The Skybox™ Appliance is a hardware solution that enables you to deploy Skybox easily, without the burden of maintaining your own server. Skybox is an Automated Risk and Compliance Management (ARCM) platform ® that helps enterprise IT departments to discover and resolve potential security and compliance risks before they impact your organization. -
Page 6: Skybox Appliance Specifications
Skybox: Installs Skybox on the Appliance; it contains the Skybox • software and additional Appliance documentation Restore Appliance: Restores the Appliance to factory settings • Physical specifications The physical features of Skybox Appliance 5500 are listed in the following table. Feature Description Form factor 1U rack Rack dimensions 1.70”... -
Page 7: Environmental Specifications
Chapter 2 Skybox Appliance specifications Feature Description (H x W x D) • System weight: 35.8 lb (16.24 kg) Weight • Packaged weight: 42.4 lb (19.23 kg) Power supply 450W 1+1 redundant AC +12V DC and +5V standby Data storage RAID 1 2 dual rotor managed 40mm x 56mm system fans •... -
Page 8: Mtbf Estimates For Skybox Appliance
CISPR 22 limits for Class A products. Test reports are made available through EPG Product Regulations MTBF estimates for Skybox Appliance The estimated mean time between failures (MTBF) and Failures in Time (FIT) for Skybox Appliance 5500 are listed in the following table. Subassembly MTBF (hours) FIT (failures/10^9 hours) -
Page 9: Front Panel
Chapter 2 Skybox Appliance specifications Front panel Skybox Appliance 5500’s front panel includes 2 USB connectors, plus a power button and LEDs. Power button and LEDs Letter Feature System ID button with integrated LED NMI button (recessed; tool required for use) -
Page 10: Back Panel Connectors
Back panel connectors Skybox Appliance 5500’s back panel includes the following connectors: PORT MAPPING The mapping between physical ports on the back panel of Skybox Appliance and logical ports is listed in the following table. -
Page 11: File System Partitions
Chapter 2 Skybox Appliance specifications File system partitions Skybox Appliance’s file system is partitioned as follows: › SWAP: 4 GB › /tmp: 5% of the entire space › /: 20% of the entire space › /var: 45% of the entire space ›... -
Page 12: Setting Up Skybox Appliance
Chapter 3 Setting up Skybox Appliance This chapter explains how to set up Skybox Appliance. In this chapter Installation ................ 12 System configuration ............13 What’s next ................ 16 Installation Before installation Before installing the rack mount kit, observe these safety guidelines: 1 Turn off all peripheral devices connected to Skybox Appliance. -
Page 13: System Configuration
Chapter 3 Setting up Skybox Appliance 2 On the Appliance’s front panel, press the Power button. 3 Lock the front bezel in place using the key provided. System configuration Before running the Skybox Server, configure Skybox Appliance to be part of your network and perform some initial system configuration. - Page 14 Skybox Appliance 5500 Quick Start Guide Stop bits: 1 • Flow control: none • (If using PuTTY as your terminal emulator) Character set translation on • received data: UTF-8 3 Press the Power button on the Appliance’s front panel and verify that the Power LED turns green.
-
Page 15: Setting Up The Appliance For Configuration
Chapter 3 Setting up Skybox Appliance 10 Save the file and exit. 11 Restart the network service by running the following command: • systemctl restart network The interface now has a DHCP or static IP address. 12 Query the new configuration by running the following command: •... -
Page 16: Network Naming Schema In Centos 7
Skybox Appliance 5500 Quick Start Guide To change the passwords 1 On the Security tab, select Appliance Passwords. 2 To change the root password of the machine, click Change Root Password. 3 To change the password of the Appliance Administration, click Change Skyboxview Password. - Page 17 Chapter 3 Setting up Skybox Appliance Updates to the configuration files of the syslog server and the syslog log file rotation are provided automatically (when necessary) as part of Skybox updates. However, when updates are provided, you must restart the syslog server (on the System tab, disable the syslog server and then enable it again) for it to start using the updates.
-
Page 18: Configuring The Appliance
Chapter 4 Configuring the Appliance The following sections explain how to configure the Appliance. › Configuration and management options (Appliance Administration) (on page › Setting up SNMP configuration (on page 20) › RADIUS authentication (on page 22) › Changing the TLS version (on page 23) In this chapter Configuration and management options... - Page 19 Chapter 4 Configuring the Appliance link to a drawing of the back panel to help you understand the connections. System tab Pane Description Date and Time Enables you to view and change the exact date and time Configuration in the Appliance’s time zone. Notes: When setting this information manually, set the date •...
-
Page 20: Setting Up Snmp Configuration
Skybox Appliance 5500 Quick Start Guide Support tab Pane Description Logs Enables you to view Server, Collector, and other logs of the Appliance. Get Packlogs: Runs the packlogs utility and saves the packlogs (ZIP) file to a local directory so that you can send the file easily to support. -
Page 21: Supported Bond Modes
Chapter 4 Configuring the Appliance 4 Add a new bond interface. By default, the 1st interface is named bond0, the 2nd bond1, and so on. 5 Select the interfaces that should be bonded to this new interface (as slaves). 6 Select the method for assigning the IP address for this interface: static or DHCP. -
Page 22: Radius Authentication
Skybox Appliance 5500 Quick Start Guide mode=3 (broadcast) Broadcast policy: transmits everything on all slave interfaces. This mode provides fault tolerance. mode=4 (802.3ad) IEEE 802.3ad Dynamic link aggregation. Creates aggregation groups that share the same speed and duplex settings. Utilizes all slaves in the active aggregator according to the 802.3ad specification. -
Page 23: Changing The Tls Version
Chapter 4 Configuring the Appliance 2 Save and close the file. 3 Open /etc/pam_radius.conf and find the following entry: 127.0.0.1 secret 1 4 Replace that line with the relevant information for your RADIUS server. For example, if the RADIUS server’s IP address is 192.168.1.1 and the shared secret is radiussecret, replace the preceding line with: 192.168.1.1 radiussecret 1 5 Save and close the file. - Page 24 Skybox Appliance 5500 Quick Start Guide To change the TLS configuration settings 1 Make a backup of the skyboxwebadmin.conf file. 2 Open the skyboxwebadmin.conf file (with vi). 3 Comment out the default security configuration by adding “#” at the beginning of the SSLProtocol and SSLCipherSuite lines.
-
Page 25: Customizing The Syslog Server
Chapter 5 Customizing the syslog server The syslog server in Skybox Appliance is preconfigured and is enabled by default. Updates to the configuration files of the syslog server and the syslog log file rotation are provided automatically (when necessary) as part of Skybox updates. However, when updates are provided, you must restart the syslog server (on the System tab, disable the syslog server and then enable it again) for it to start using the updates. - Page 26 Skybox Appliance 5500 Quick Start Guide › In the Basic tab: The directory path of the files (/var/log/syslog-ng/new and • /var/log/firewall_assurance/change_logs/new) Modules: The scope of devices whose logs are to be imported • › In the Advanced tab: The date format used by the device •...
-
Page 27: Installing The Skybox Manager
Chapter 6 Installing the Skybox Manager You can install the Manager from the DVD included with Skybox or you can download it from the Skybox Appliance over HTTP using the Appliance’s IP address (https://<appliance IP address>:444/manager). For additional information, see Installing the Manager (on page 28). -
Page 28: Installing The Manager
Skybox Appliance 5500 Quick Start Guide Hardware The hardware requirements for the Manager are listed in the following table. Item Minimum Recommended Intel i3 or Intel i5 or equivalent equivalent 2 GB 4 GB Available disk 1 GB 2 GB... -
Page 29: Updating The Operating System On Skybox Appliance
Chapter 7 Updating the operating system on Skybox Appliance In some cases, it may be necessary to update the CentOS operating system on your Skybox Appliance, such as when bug fixes or security patches are released for the operating system. Updates to the operating system do not affect Skybox. -
Page 30: Adding A Customer Certificate
Chapter 8 Adding a customer certificate If you want to connect to the Appliance Administration via a customer certificate, you need to add the certificate to the Apache server. To connect to the Appliance Administration via a customer certificate 1 Locate (or generate) the validated certificate and key files. 2 Upload the certificate files to the Skybox Server in the following directory: /etc/httpd/conf.d a. -
Page 31: Restoring The Appliance To Factory Defaults
Chapter 9 Restoring the Appliance to factory defaults The Restore Appliance DVD that comes in the Appliance 5500 package is for restoring the Appliance to factory defaults. Warning: Restoring the Appliance erases all data on the Appliance. To restore the Appliance to factory defaults 1 Insert the DVD in the DVD-ROM drive. -
Page 32: Monitoring Snmp
Chapter 10 Monitoring SNMP Skybox Appliance supports standard Linux OIDs. The following are some OIDs that you can monitor: CPU load statistics › 1 minute load: .1.3.6.1.4.1.2021.10.1.3.1 › 5 minute load: .1.3.6.1.4.1.2021.10.1.3.2 › 15 minute load: .1.3.6.1.4.1.2021.10.1.3.3 CPU statistics › Percentage of user CPU time: .1.3.6.1.4.1.2021.11.9.0 ›... - Page 33 Chapter 10 Monitoring SNMP › Skybox Server status: .1.3.6.1.4.1.8072.1.3.2.3.1.4.19.49.46.51.46.54.46.49.46.52.46.49.46.49.57 .55.54.56.46.49 › Skybox Collector status: .1.3.6.1.4.1.8072.1.3.2.3.1.4.19.49.46.51.46.54.46.49.46.52.46.49.46.49.57 .55.54.56.46.50 Additional SNMP configuration For further SNMP configuration, refer to: › The MIB files on the Appliance, located at: /usr/local/snmpsa/mibs › The SNMP configuration file: /etc/snmp/snmpd.conf Skybox version 8.5.400...
-
Page 34: Troubleshooting
Chapter 11 Troubleshooting Obtaining version information when the Appliance Administration is not available If you need to know the version of the Appliance (also named the image version) and other information about the Apliance at a time when the Appliance Administration is not available, you can find this information by running the get_appliance_details script from the CLI. -
Page 35: Change Log
Chapter 12 Change log Skybox Appliance for ISO version 8.5.xxx uses CentOS 7 (earlier versions used CentOS 6). The major changes from CentOS 6 to CentOS 7 relevant to Skybox Appliance are summarized in the following table. Features CentOS 7 CentOS 6 Kernel version 3.10.x-x kernel... - Page 36 Skybox Appliance 5500 Quick Start Guide Boot loader GRUB 2 GRUB 0.97 Supports GPT, and additional firmware types including BIOS, EFI and OpenFirmware. Ability to boot on various file systems (including XFS, ext4, NTFS, HFS+, and RAID) System and service...
-
Page 37: Wiping The Hard Disk Drive
Chapter 13 Wiping the hard disk drive In some cases, you need to wipe the hard disk drive (HDD), completely destroying the data on it. This might be required, for example, if you are sending the Appliance back to Skybox Security for replacement. Caution: This procedure wipes the HDD completely. -
Page 38: Regulatory And Safety Information
Chapter 14 Regulatory and safety information This chapter includes regulatory and safety information for Skybox Appliance 5500’s hardware. In this chapter Product regulatory compliance ..........38 Product regulatory compliance markings ........ 39 Electromagnetic compatibility notices for the server board ..42 Product regulatory compliance Intended application This product is to be evaluated and certified as Information Technology... -
Page 39: Emc Compliance - Class A Compliance
Chapter 14 Regulatory and safety information › IRAM Certification (Argentina) › BSMI CNS14336 Emissions (Taiwan) EMC COMPLIANCE – CLASS A COMPLIANCE › FCC /ICES-003 – Emissions (USA/Canada) Verification › CISPR 22 – Emissions (International) › EN55022 – Emissions (Europe) › EN55024 –... - Page 40 Skybox Appliance 5500 Quick Start Guide Regulatory Region Marking Compliance IRAM Argentina Ctick Australia/ CE Mark Europe NRTL (National USA/Cana Recognized Test Laboratory) EMC Marking Canada CANADA ICES-003 CLASS A (Class A) GS Mark Germany VCCI Marking Japan (Class A)
- Page 41 Chapter 14 Regulatory and safety information Regulatory Region Marking Compliance including interference that may cause undesired operation Nordic Ground Multiple Line 1: “WARNING:” Swedish on line 2: “Apparaten skall anslutas till jordat uttag, när den ansluts till ett nätverk.” Finnish on line 3: “Laite on liitettävä suojamaadoituskoskettimilla varustettuun pistorasiaan.”...
-
Page 42: Electromagnetic Compatibility Notices For The Server Board
Skybox Appliance 5500 Quick Start Guide Regulatory Region Marking Compliance before servicing. German: Dieses Geräte hat mehr als ein Stromkabel. Um eine Gefahr des elektrischen Schlages zu verringern trennen sie beide (2) Stromkabeln bevor Instandhaltung. Safety – Standby Internatio Power button Note: Should appear on Power button. - Page 43 Chapter 14 Regulatory and safety information Any changes or modifications not expressly approved by the grantee of this device could void the user’s authority to operate the equipment. The customer is responsible for ensuring compliance of the modified product. All cables used to connect to peripherals must be shielded and grounded. Operation with cables, connected to peripherals that are not shielded and grounded may result in interference to radio and TV reception.
- Page 44 Skybox Appliance 5500 Quick Start Guide RRL (Korea) Following is the RRL certification information for Korea. English translation of this notice: 1 Type of Equipment (Model Name): On License and Product 2 Certification No.: On RRL certificate. Obtain certificate from local Intel...
Need help?
Do you have a question about the Appliance 5500 and is the answer not in the manual?
Questions and answers