1. Manuals
  2. Brands
  3. skybox Manuals
  4. Network Hardware
  5. APPLIANCE 8000
  6. Quick start manual

skybox APPLIANCE 8000 Quick Start Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

SKYBOX APPLIANCE 8000
QUICK START GUIDE
11.3.100
CentOS Linux release 7.9.2009 (Core)

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the APPLIANCE 8000 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for skybox APPLIANCE 8000

Summary of Contents for skybox APPLIANCE 8000

  • Page 1 SKYBOX APPLIANCE 8000 QUICK START GUIDE 11.3.100 CentOS Linux release 7.9.2009 (Core)
  • Page 2 The information and intellectual property contained herein are confidential and remain the exclusive intellectual property of Skybox Security. If you find any problems in the documentation, please report them to us in writing. Skybox Security does not warrant that this document is error-free.

  • Page 3: Table Of Contents

    Customizing the syslog server Setting up TCP and UDP listeners How to work with syslog files Skybox Manager Installation Skybox Manager system requirements Installing Skybox Manager Upgrading Skybox Manager Updating the operating system on Skybox Appliance ISO burning Skybox version 11.3.100...
  • Page 4 Skybox Appliance 8000 Quick Start Guide SSH hardening Firmware updates for Skybox Appliance Checking your firmware revision via the console Checking your firmware revision via RMM Preparing to update Updating via the console Updating via RMM Adding your own certificate...

  • Page 5: Overview

    See the Skybox architecture topic in the Skybox Installation and Administration Guide. Related documentation Related documentation includes: Skybox online help Skybox documentation Note: If you are not using the latest version of Skybox, you can find the documentation for your version at http://downloads.skyboxsecurity.com/files/Installers/Skybox_ . For example, View/<your major version/<your minor version>/Docs http://downloads.skyboxsecurity.com/files/Installers/Skybox_...

  • Page 6: Skybox Appliance Specifications

    2 AC power cords RJ45 to DB9 serial console cable Skybox Quick Start Guide 2 DVDs Skybox: Installs Skybox on the Skybox Appliance; it contains the Skybox software and additional Appliance documentation Restore Appliance: Restores the Skybox Appliance to factory settings Physical specifications The physical features of Skybox are listed in the following table.

  • Page 7: Environmental Specifications

    CE, UL, VCCI, BSMI, GS, ICES-003, FCC Part 15, IEC 60950-1, and more standards For detailed information, see Regulatory and safety information. Environmental specifications Environmental specifications for Skybox are listed in the following table. Property Limits Operating ASHRAE Class A2: Continuous Operation. 10ºC to 35ºC (50ºF to 95ºF) with the temperature maximum rate of change not to exceed 10°C per hour...

  • Page 8: Mtbf Estimates For Skybox Appliance

    2302.3 BTU/hour for 220-volt power MTBF estimates for Skybox Appliance The estimated mean time between failures (MTBF) and Failures in Time (FIT) for Skybox Appliances 8000 and 8050 are listed in the following table. Component MTBF (hours) Estimated FIT 4”...
  • Page 9 Skybox Appliance 8000 Quick Start Guide Power button and LEDs Letter Feature System ID button with integrated LED NMI button (recessed; tool required for use) NIC1 activity LED System cold reset button System status LED Power button with integrated LED...

  • Page 10: Back Panel Connectors

    You can change these values. File system partitions The Skybox Appliance file system is partitioned as follows: The Swap size is set to half the total RAM but no more than 8% of total storage By default, the file system is partitioned as follows: /tmp partition –...

  • Page 11: Setting Up Skybox Appliance

    Before installing the rack mount kit, observe these safety guidelines: 1. Turn off all peripheral devices connected to Skybox Appliance. 2. Turn off Skybox Appliance by pressing the Power button on the front of the chassis and then unplug the AC power cords from the chassis or wall outlet.

  • Page 12: System Configuration

    Skybox Appliance 8000 Quick Start Guide System configuration Before running the Skybox Server, configure Skybox Appliance to be part of your network and perform initial system configuration. Configuring connection Before using the Skybox Appliance Administration, configure connection of Skybox to your...
  • Page 13 Chapter 3 Setting up Skybox Appliance Troubleshooting the RMM IP address To change the IP address of the RMM interface 1. Reboot the Appliance. 2. During the boot process, press F2 to open the BIOS setup. 3. From the menu, select Server Management.
  • Page 14 Skybox Appliance 8000 Quick Start Guide Stop bits: 1 Flow control: none (If using PuTTY as your terminal emulator) Character set translation on received data: UTF- 3. Press the Power button on the Appliance front panel and verify that the Power LED is green.
  • Page 15 Select Manual Date and Time Configuration. b. Click Change Date and Time; set the date and time for the Skybox time zone. c. Click Change Time Zone; set the time zone for the location of the Appliance, so that reports and other data are timestamped correctly.

  • Page 16: What's Next

    However, almost all user functions are done in Skybox Web Client and not in Skybox Manager. Skybox Manager is a Java client and should be installed on a Windows PC. The Skybox Manager installer is obtained directly from the Skybox Appliance Administration Support tab.

  • Page 17: Configuring The Appliance

    Host Name Enables you to change the name of the Appliance. Change System Toggles between Server mode (the Appliance functions as the Skybox Server and a Mode Skybox Collector) and Collector mode (the Appliance functions only as a Skybox Skybox version 11.3.100...

  • Page 18: Setting Up Network Interface Bonding

    Enables you to view Server, Collector, and other logs of the Appliance. Get Packlogs: Runs the packlogs utility and saves the packlogs (ZIP) file to a local directory so that you can send the logs to Skybox Support. Skybox Manager Enables you to download Skybox Manager for installation.
  • Page 19 A switch that supports IEEE 802.3ad Dynamic link aggregation. Most switches require configuration to enable 802.3ad mode. mode=5 (balance-tlb) Adaptive transmit load balancing: Channel bonding that does not require any special switch support. The outgoing traffic is distributed according to the load (computed relative to the speed) Skybox version 11.3.100...

  • Page 20: Setting Up Snmp Configuration

    Setting up SNMP configuration Skybox Appliances can be configured for SNMP v2 or SNMP v3. Enabled SNMP v3 is backwards compatible with SNMP v2. SNMP v2 Configuration To use the Appliance as an SNMP v2 Server 1.

  • Page 21: Radius Authentication

    5. Click Save SNMP Configuration to save the configuration and update the service with the new configuration. RADIUS authentication This topic explains how to configure RADIUS authentication for Skybox Appliance. Note: To use RADIUS authentication, the package must be installed on the Skybox pam_radius Server.

  • Page 22: Ldap Authentication

    10. Add the user on the operating system level by running the following command: useradd <user1> There is no need to set the password; it comes from RADIUS. You can now log in to Skybox with the user credentials: (using the <user1>...
  • Page 23 LDAP Bind The user bind DN to use for performing LDAP operations. This user needs to have read User DN permissions to read the user groups. Example: CN=LDAPUser,CN=Users,DC=YOURDOMAIN,DC=LOCAL LDAP Bind The password for the bind user. User Password Skybox version 11.3.100...

  • Page 24: Changing The Tls Version

    A comma-separated list of permitted groups. If empty, all groups are permitted. Groups After LDAP authentication is set up, permitted users can log in to the Skybox Appliance Administration interface using their LDAP user name and password. Changing the TLS version...

  • Page 25: Sending Centos Logs To A Remote Syslog Server

    To send the Appliance CentOS logs to a remote syslog server 1. On the System tab, click Syslog Server. 2. Select Send System Logs to Remote Syslog Server. 3. Fill in the remote syslog IP address and port to use, and select the protocol to use. Skybox version 11.3.100...

  • Page 26: Customizing The Syslog Server

    Chapter 5 CUSTOMIZING THE SYSLOG SERVER The syslog server in Skybox Appliance is preconfigured and is enabled by default. Setting up TCP and UDP listeners Skybox Appliance includes TCP and UDP listeners for the syslog server. To set up TCP and UDP listeners 1.
  • Page 27 Skybox Appliance 8000 Quick Start Guide How can the logs be imported into Skybox? Device logs can be imported using the following tasks: Change Tracking Events – Syslog Import Traffic Events – Syslog Import To import the logs, you must include:...

  • Page 28: Skybox Manager Installation

    Skybox Manager is installed. Upgrading Skybox Manager In some cases, the Skybox Manager installation file on the Appliance is outdated. In this case, you can download the new Skybox Manager installation file (or you might receive it from the Skybox product support team) to replace the old installation file.
  • Page 29 Skybox Appliance 8000 Quick Start Guide To replace the Skybox Manager installation file 1. Copy the installation file ( ) to the Appliance SkyboxManager-<version#>-<build#>.exe using PuTTY, WinSCP, or any other client program. Save the file at /usr/local/skyboxwebadmin/manager 2. Delete any other files in this directory, including any previous installation file; the directory must contain only the new installation file.

  • Page 30: Updating The Operating System On Skybox Appliance

    Appliance ISO release. Before you start the update The Skybox model and important operating system files can be saved as part of the update procedure or you can save them manually. Changes that you made in any Skybox settings files are not saved as part of the update;...
  • Page 31 Skybox Appliance 8000 Quick Start Guide The default location is /var/tmp/appliance_update_<patch>/backup/ Note: After the update finishes, a log of the process details is at /opt/skyboxview/utility/log/appliance_update_<patch>.log 9. (Optional) If something went wrong with the update process, you can either restore settings...

  • Page 32: Iso Burning

    ISO. Note: For flash drives, we recommend using Rufus to burn the ISO (https://rufus.ie). To boot from the ISO During startup, select <F6> and then select the device (DVD or flash drive) from which to boot. Skybox version 11.3.100...

  • Page 33: Ssh Hardening

    AllowUsers root skyboxview AllowGroups root skyboxview This configuration is implemented as part of hardening the OS of the Skybox appliance. Changing these settings is not recommended and may not persist through Appliance OS updates. Skybox version 11.3.100...

  • Page 34: Firmware Updates For Skybox Appliance

    Chapter 10 FIRMWARE UPDATES FOR SKYBOX APPLIANCE This chapter explains how to perform a firmware update for your Skybox Appliance. Checking your firmware revision via the console To check the firmware revision on your Appliance Note: Run all commands from the command line on the Appliance.
  • Page 35 Skybox Appliance 8000 Quick Start Guide To check the firmware revision on your Appliance 1. Open Microsoft Explorer. 2. Enter the RMM address of the Appliance as the URL. 3. Authenticate using the user name and the password. 4. If you are not sure of your model number: a.
  • Page 36 Chapter 10 Firmware updates for Skybox Appliance Important: You must know the model number for the update. 5. From the System Information tab, on the Summary page, check the firmware revision number in the field BMC FW Rev. Skybox version 11.3.100...

  • Page 37: Preparing To Update

    Preparing to update What you need to update Important: Contact Skybox support before upgrading the firmware on the appliance. Appliances are manufactured to use a specific Skybox approved version of the firmware. A USB flash drive formatted with a FAT file system...

  • Page 38: Updating Via The Console

    Physical access to the Appliance machine Before updating Make sure that Skybox is not running on the Appliance machine before performing the update. To shut down the Skybox Server, run the following command: service sbvserver stop To shut down the Skybox Collector, run the following command:...
  • Page 39 5. Hover over Remote Control and select IKVM over HTML5. 6. Log in as root. 7. Make sure that Skybox is not running on the Appliance machine before performing the update. To shut down the Skybox Server, run the following command:...
  • Page 40 Chapter 10 Firmware updates for Skybox Appliance a. From the BMC Web Console, click Server Power Control. b. Select Reset Server and select Force-enter Bios Setup. c. Click Perform Action The machine reboots and the boot menu is displayed. 9. From the menu, select Boot Manager and press <Enter>.
  • Page 41 Skybox Appliance 8000 Quick Start Guide 10. From the Boot Manager, select Launch EFI Shell and press <Enter>. After about 5 seconds, the following screen appears. Skybox version 11.3.100...
  • Page 42 Chapter 10 Firmware updates for Skybox Appliance 11. Press <Enter>. When the procedure is almost finished, the screen displays the following. Skybox version 11.3.100...
  • Page 43 Skybox Appliance 8000 Quick Start Guide 12. Wait 2 minutes and log in again to the remote console. 13. Press 5 to exit the update. Skybox version 11.3.100...
  • Page 44 Chapter 10 Firmware updates for Skybox Appliance 14. Press any key to continue. Configuring Java for login This procedure enables you to log in to the RMM interface of the Appliance machine from your local computer. Skybox version 11.3.100...
  • Page 45 Skybox Appliance 8000 Quick Start Guide 1. From the Windows Start menu, select Configure Java. 2. In the Java Control Panel, click the Security tab. Skybox version 11.3.100...
  • Page 46 Chapter 10 Firmware updates for Skybox Appliance 3. Click Edit Site List. 4. Add the URL of the RMM interface of the Appliance machine. Skybox version 11.3.100...
  • Page 47 Skybox Appliance 8000 Quick Start Guide Skybox version 11.3.100...

  • Page 48: Adding Your Own Certificate

    To add your own certificate 1. Log in to the Skybox Server or Skybox Collector via SSH as the root user. 2. Transfer the private key to /etc/pki/tls/private The private key must not have a passphrase. If a passphrase is used in the private key, you will...

  • Page 49: Exporting The Server Certificate And Private Key From The Java Keystore

    Exporting the Server certificate and private key from the Java keystore To export the server certificate and private key from the Java keystore 1. Log in to the Skybox Server or the Skybox Collector as root. 2. Navigate to /opt/skyboxview/server/conf 3.
  • Page 50 7. When prompted Enter Import Password, enter skyboxview. 8. Remove the P12 keystore by executing the following command: rm server.keystore.p12 Important: Do not remove server.keystore 9. Continue to Adding your own certificate and use the exported server certificate and private key when required. Skybox version 11.3.100...

  • Page 51: Restoring The Appliance To Factory Defaults

    Chapter 12 RESTORING THE APPLIANCE TO FACTORY DEFAULTS The Skybox USB flash drive that comes in the Appliance package is for restoring the Appliance to factory defaults. This USB drive may not contain the most current ISO for your appliance. The latest ISO can be downloaded from https://downloads.skyboxsecurity.com/files/iso/.

  • Page 52: Monitoring Snmp

    Total RAM buffered: .1.3.6.1.4.1.2021.4.14.0 Total cached memory: .1.3.6.1.4.1.2021.4.15.0 System uptime System uptime: .1.3.6.1.2.1.1.3.0 Skybox Server and Skybox Collector In addition to the standard OIDs, the following OIDs are supported for Skybox components. Skybox Server status: .1.3.6.1.4.1.8072.1.3.2.3.1.4.19.49.46.51.46.54.46.49.46.52.46.49.46.49.57.55.54.56.46.49 Skybox Collector status: .1.3.6.1.4.1.8072.1.3.2.3.1.4.19.49.46.51.46.54.46.49.46.52.46.49.46.49.57.55.54.56.46.50...
  • Page 53 Skybox Appliance 8000 Quick Start Guide Using with the Skybox Server and Collector OIDs, you get the same return codes as snmpget those of the commands. service sbvserver status service sbvcollector status Possible return codes (statuses) are: 0: Running 2: Partially running (currently in the process of starting or stopping)

  • Page 54: Troubleshooting

    1. As root user (not sudo), run the command: sysinfo The LogFiles directory will be created in the location that the sysinfo command was invoked from. This directory contains the diagnostic log files. 2. Open a support case and attach the (most recent) diagnostic file. Skybox version 11.3.100...

  • Page 55: Wiping The Hard Disk Drive

    In some cases, you need to wipe the internal SDD storage, destroying the data on it. This might be required, for example, if you are sending the Appliance back to Skybox for replacement. Warning: This procedure wipes the SDD completely; it will not be bootable or function at all.

  • Page 56: Cis Benchmarks For Centos 7

    Chapter 16 CIS BENCHMARKS FOR CENTOS 7 All new Skybox Appliances meet the following CIS benchmark recommendations for CentOS 7. Appliances updated to the new ISO also meet the recommendations. Recommendation Scored Description ü 1.1.1.1 – 1.1.1.8 Ensure that mounting of the following file systems is disabled:...
  • Page 57 Skybox Appliance 8000 Quick Start Guide Recommendation Scored Description password requires that anyone rebooting the system must enter a password before being able to set command line boot parameters Rationale: Requiring a boot password on execution of the boot loader prevents an unauthorized user from entering boot parameters or changing the boot partition.
  • Page 58 All audit records are tagged with the identifier ‘session’. The file /var/log/btmp keeps track of failed login attempts and can be read by entering the command /usr/bin/last -f /var/log/btmp. All audit records are tagged with the identifier ‘logins’. Skybox version 11.3.100...
  • Page 59 Skybox Appliance 8000 Quick Start Guide Recommendation Scored Description Rationale: Monitoring login and logout events could provide a system administrator with information associated with brute force attacks against user logins. Monitoring session information files for changes could alert a system administrator to logins occurring at unusual hours, which could indicate intruder activity (for example, a user logging in at a time when they do not normally log in).
  • Page 60 AllowGroups: The AllowGroups variable gives the system administrator the option of permitting specific groups of users to SSH into the system. The list consists of space separated group names. Numeric group IDs are not recognized with this variable. Skybox version 11.3.100...
  • Page 61 Skybox Appliance 8000 Quick Start Guide Recommendation Scored Description Rationale: Restricting the users who can remotely access the system via SSH helps ensure that only authorized users access the system. ü 5.2.16 Ensure that the SSH warning banner is configured. The Banner parameter specifies a file whose contents must be sent to the remote user before authentication is permitted.
  • Page 62 Rationale: A new user who is assigned the deleted user’s user ID or group ID may then end up ‘owning’ these files, and thus have more access on the system than was intended. Note: For additional information, refer to CIS CentOS 7 Linux Benchmark, v2.1.1 Skybox version 11.3.100...

  • Page 63: Regulatory And Safety Information

    Chapter 17 REGULATORY AND SAFETY INFORMATION This chapter includes regulatory and safety information for Skybox Appliance 8000 hardware. Product regulatory compliance Intended application This product is to be evaluated and certified as Information Technology Equipment (ITE), which may be installed in offices, schools, computer rooms, and similar commercial type locations. The...

  • Page 64: Regulatory Compliance Markings

    Skybox Appliance 8000 Quick Start Guide Quantity limit of 0.1% by mass (1000 PPM) for: Lead, Mercury, Hexavalent Chromium, Polybrominated Biphenyls Diphenyl Ethers (PBB/PBDE) Quantity limit of 0.01% by mass (100 PPM) for: Cadmium California Code of Regulations, Title 22, Division 4.5, Chapter 33: Best Management Practices for Perchlorate Materials China –...
  • Page 65 WEEE (Waste Europe Electronic and Electrical Equipment) Recycling Mark China Restriction of China Hazardous Substance (RoHS) Environmental Friendly Use Period Mark Recycling Package China Marks Will be added on Package label Other Recycling International Package Marks Skybox version 11.3.100...

  • Page 66: Electromagnetic Compatibility Notices For The Server Board

    Skybox Appliance 8000 Quick Start Guide Regulatory Region Marking Compliance Will be added on Package label Battery Perchlorate USA (CA) Perchlorate Material – Special handling may apply. See Warning Information www.dtsc.ca.gov/hazardouswaste/perchlorate This notice is required by California Code of Regulations, Title 22, Division 4.5, Chapter 33: Best Management Practices for Perchlorate Materials.
  • Page 67 This is a Class B product based on the standard of the Voluntary Control Council for Interference (VCCI) from Information Technology Equipment. If this is used near a radio or television receiver in a domestic environment, it may cause radio interference. Install and use the equipment according to the instruction manual. Skybox version 11.3.100...
  • Page 68 Skybox Appliance 8000 Quick Start Guide BSMI (Taiwan) The BSMI Certification Marking and EMC warning is located on the outside rear area of the product. KC (Korea) Korea EMC Certification requires additional information on the product. If there is no room to place the information, it is provided in the product literature.

This manual is also suitable for:

Appliance 80506000

Table of Contents