Extreme Networks NG300 User Manual
  1. Manuals
  2. Brands
  3. Extreme Networks Manuals
  4. Software
  5. NG300
  6. User manual
Extreme Networks NG300 User Manual

Extreme Networks NG300 User Manual

Software version 2.5
Hide thumbs Also See for NG300:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Installation Manual
Sentriant NG Operation Console User Guide
Software Version 2.5
Extreme Networks, Inc.
3585 Monroe Street
Santa Clara, California 95051
(888) 257-3000
(408) 579-2800
http://www.extremenetworks.com
Published: January 2008
Part Number: 100290-00 Rev 01

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the NG300 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Extreme Networks NG300

Summary of Contents for Extreme Networks NG300

  • Page 1 Sentriant NG Operation Console User Guide Software Version 2.5 Extreme Networks, Inc. 3585 Monroe Street Santa Clara, California 95051 (888) 257-3000 (408) 579-2800 http://www.extremenetworks.com Published: January 2008 Part Number: 100290-00 Rev 01...
  • Page 2 ServiceWatch, Summit, SummitStack, Triumph, Unified Access Architecture, Unified Access RF Manager, UniStack, the Extreme Networks logo, the Alpine logo, the BlackDiamond logo, the Extreme Turbodrive logo, the Summit logos, the Powered by ExtremeXOS logo, and the Color Purple, among others, are trademarks or registered trademarks of Extreme Networks, Inc.

  • Page 3: Table Of Contents

    Messages and Tool Tips ...21 Context-Sensitive Help...21 About the Sentriant NG Operation Console...22 Icon Legend ...22 Contacting Extreme Networks ...23 Chapter 2: Monitor ... 25 Table View...25 View Domains and Appliances from the Table View...25 Viewing Domain and Appliance Details from Table View ...28 Launch Sentriant NG Manager from Table View...30...

  • Page 4: Getting Started

    Table of Contents Chapter 3: Setup ... 51 Appliances Panel ...51 Adding Appliances ...51 View Appliance Information...53 Removing Appliances ...55 Editing Appliances ...56 Appliance Software Updates...58 Disable/Enable Appliances ...60 Launching the Sentriant NG Manager...62 Backup Appliance Configuration ...64 Rollback Policy Distribution ...66 Domain Panel ...67 Creating Domains ...68 Viewing Domain Information...70...
  • Page 5 Insert the CD and follow the on-screen instructions for installing the Sentriant NG Operation Console Open a web browser and enter the URL for the Extreme Networks Support site. Follow the instructions for downloading and installing the Sentriant NG Operation Console.
  • Page 6 Introduction Running the Sentriant NG Operation Console To start the Sentriant NG Operation Console in Windows: Choose Start > Programs > Sentriant Operation Console > SentriantOpConsole. Log In to the Sentriant NG Operation Console To login to the Sentriant NG Operation Console, you will need to be a user of the system and have the IP Address of a Sentriant NG appliance which you will be connecting to.

  • Page 7: Chapter 1: Overview

    Overview Welcome to the online Help System for the Sentriant NG Operation Console, a tool for managing multiple Sentriant NG appliances from one location. This section provides an overview of the Sentriant NG Operation Console interface and its tools for locating, organizing, and displaying information.

  • Page 8: General Status Bar

    Overview Some menu commands turn a view off and on. A check mark next to the menu command indicates that the setting is currently on. In addition to the pull-down menus on the Menu Bar, shortcut menus are available on certain screens which give you quick access to common commands for a particular context.
  • Page 9 The Threat icons represent an aggregate threat count for all Sentriant NG appliances managed under the SOC. Threat sources that have triggered rules, or that communicate with a target monitored by Sentriant NG are assigned a priority level. Priority levels are governed by Sentriant NG appliance policies, rules, and response modes that can be modified or configured as needed to meet network requirements.
  • Page 10 Overview Deceive, Snare, and Slow Scan - Sentriant NG appliances use a special "deceiving" technique to engage and hold TCP-based attacks, thus preventing them from spreading. Snaring stops an attacking threat from moving to another computer. Slow Scan sends the attacking threat traffic designed to significantly increase the time it takes for an external host to scan the monitored network, causing the attacker to consume time and resources.
  • Page 11 Navigating the Sentriant NG Operation Console For example, a query or filter on a domain named Main Campus containing 3 domains and 1 appliance. The General Status Message returns: Results: Domain=3, Appliances=1. Clicking the Help button brings up context-sensitive help for the currently displayed panel. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 12: Tab And Folder List

    Overview Tab and Folder List The main SOC screen is divided into two panels. The left side of the screen is dedicated to navigation and organizing similar information. The Tab List has two tabs, Monitor and Setup. The Monitor Tab contains information and controls to monitor domains and appliances.

  • Page 13: Panel Navigation Bar

    Navigating the Sentriant NG Operation Console Selecting a tab and then clicking a folder in the Folder List displays one of the following panels: Monitor - From this panel you can view and manage appliances and threats. The Monitor Panel displays threat and response information rolled up for the selected domain.

  • Page 14: Customizing The Screen

    Overview Indicates the logical ordering of panels under the current top-level node. Click the right or left arrow to scroll forward or backward through the panels. Keeps the current panel active when you navigate to another panel. When selecting Tile, the panel marked as 'keep' will be displayed in the panel workspace.

  • Page 15: Sorting Data

    1 From the Menu, select File > User Preferences. The User Preferences dialog opens. From this dialog, you can change the panel that opens when you start the SOC and how the help system is displayed. 2 From the Startup drop-down list, select either Last panel before exit or Use current panel. If you select Last panel before exit, the last panel you had open will reopen the next time you start the SOC.
  • Page 16 Overview Sorting Threats Clicking the Threat row header in the Monitor Panel will sort threat detection based on threat priority. When you see the arrow in the row header pointing up, the sort will start with the lowest priority and increase in priority with high at the end of the list.
  • Page 17 Customizing the Screen increase in the following order; None, Track, Deceive/Snare and Cloak at the end of the list. Clicking the row again will sort the list with Cloak at the beginning of the list and None at the end. Sorting Availability Clicking the Availability row header in the Monitor Panel will sort responses to threats based on appliance health.

  • Page 18: Showing And Hiding General Status Bar

    Overview Showing and Hiding General Status Bar The General Status Bar displays the status of activities for the appliance health, segments, and events. You can hide and show the General Status Bar as needed while you work. To show or hide the General Status Bar: From the View menu, select General Status to hide.

  • Page 19: Messages And Tool Tips

    Getting Help Messages and Tool Tips The Sentriant NG Operation Console provides brief descriptive messages that indicate what a command will do before you select the command. One kind of message is the General Status Message, which appears in the General Status Bar at the bottom of the screen. When you perform a command, the General Status Message is constructed based on the command.

  • Page 20: About The Sentriant Ng Operation Console

    Overview About the Sentriant NG Operation Console The About command on the Help menu displays the About Sentriant Operation Console dialog which shows the version of the Sentriant NG Operation Console that you are using in the title bar of the dialog.

  • Page 21: Contacting Extreme Networks

    2 Scroll down the list to see the icon categories. Contacting Extreme Networks Please contact Extreme Networks Support by logging into our Technical Support Portal at https://esupport.extremenetworks.com. The portal allows you to search the Extreme Networks knowledge base, submit a support incident, and track incidents that your organization has submitted. If you wish to speak with a support representative, call toll free at (800)-998-2408.
  • Page 22 Overview Sentriant NG Manager Software version number ● Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 23: Chapter 2: Monitor

    Monitor The SOC Monitor Panel provides a navigation view for ascertaining threat and appliance status across multiple domains containing multiple appliances. When the SOC is launched, the Monitor Panel displays a navigation tree on the left of the screen that represents nodes of the enterprise or domains. Domains may contain sub-domains based on network deployment.

  • Page 24: Domains List

    Monitor at a university with a main campus, and three remote city campuses. The main campus has three Sentriant NG appliances deployed and each remote campus has two Sentriant NG appliances deployed. The table view will look like this: The Table view is made up of three components - on the left of the screen is the Domains List, on the right of the screen is the Information Panel, and at the bottom of the screen is the Details Panel.
  • Page 25 Off - An appliance has stopped communicating to the SOC. Information Panel The Information Panel to the right displays sub-domains and appliances. The Information Panel displays the following data: Domains/Appliances - The name of the domain or appliance with an icon representing the health and status.

  • Page 26: Viewing Domain And Appliance Details From Table View

    Monitor Track - A Sentriant NG appliance monitors the communication between two or more computers but does not take a response action. None - No response is invoked. Availability -The availability of the appliance or appliances under a domain. Appliances have the following availability states: Error, Normal and Disabled.
  • Page 27 The Details Panel opens with a set of drop-down lists across the top, a threat/response counter to the right and an information list displaying active threats for the domain or appliance selected. Details Panel Drop-down Lists Threat/Trend - The first drop-down list toggles between the Details Panel displaying the threats/ response counter and the trend chart.

  • Page 28: Launch Sentriant Ng Manager From Table View

    Monitor Counter The counter can be toggled between threats and responses by clicking the tabs located below the counter. The counter can show threat and response counts for a single appliance or a roll up of threats and responses if a domain is selected. You may also multi-select domains and appliances to show a total count for the selected objects.

  • Page 29: Radial View

    Radial View The Sentriant NG Manager opens to Sources in the Monitor Panel. Radial View The radial view displays the entire enterprise deployment graphically like the spokes of a wheel. The center of the wheel is the highest level, or root of the deployment with each spoke representing a branch of the network.
  • Page 30 Monitor branch of the network. Appliances are located at the end of each branch. The benefits of the radial view is where there is a large deployment of appliances that reside in many domains. For example, the following diagram shows an enterprise deployment at a university with a main campus, and three remote city campuses.

  • Page 31: View Domain And Appliance Details From The Radial View

    Off - An appliance has stopped communicating to the SOC. Across the top of the Information Panel is a set of check boxes that turn on and off radial view labels and icons. Turning on and off labels and icons will make reading the radial view easier if you have an environment with many domains and appliances.
  • Page 32 Monitor Details Panel Drop-down Lists Threat/Trend - The first drop-down list toggles the Details Panel between displaying the threats/ response counter and list to the trend chart. Threat Filter - The second drop-down list filters the threat priorities that are displayed in the counter and information list.

  • Page 33: Showing Appliances

    Radial View Right-clicking a threat in the list and selecting Sentriant Manager will launch Sentriant NG Manager and will open the Monitor > Network Activity > Sources Panel. Trend Chart The Trend Chart represent a historical view of threats/responses. The data displayed depends on what is selected in the Radial View.
  • Page 34 Monitor Clicking a domain, in this case Colorado, will display threats detected from appliance only within the Colorado domain. All information to this point has been at the domain level which represents a roll up of all appliances. To view individual appliance information you may show appliances within a domain. To show appliances: Right-click a domain and select Show Appliance(s).

  • Page 35: Radial View Actions

    Radial View The appliances for the selected domain are displayed with threat and response counters. In the example below, the appliance named Austin shows that it has detected one threat that is targeting 101 workstation within the protected segments. The details panel displays the threat rule that has been triggered, the sources IP Address, a timestamp when the threat triggered the rule, the status and name of the appliance and response type sent to the source.
  • Page 36 Monitor The radial view is now focused on the selected domain. Show Appliances Sentriant NG appliances are not displayed to preserve radial view's space. In a large deployment with many domains, it may be necessary to only show the domains. To show the appliances within a domain: 1 Right-click a domain from the radial view.
  • Page 37 Radial View The appliance(s) within the domain are displayed. Show All Appliances In a small deployment, it may be beneficial to view all Sentriants in all the domains. To show all the appliances within all domains: 1 Right-click in the radial view panel. 2 Select Show All Appliance(s) from the menu.
  • Page 38 Monitor All appliances in all domains are displayed. Hide Appliances If it is no longer necessary to show appliances or you need more space to display another domain's appliances, you can hide appliances. 1 Right-click a domain from the radial view. 2 Select Hide Appliance(s) from the menu.
  • Page 39 Radial View Reset View Resetting the view allows you to reset the radial view showing the highest domain level and second level sub-domains. For example, if you are showing third level sub-domains and/or appliance, click the Reset View action will reset the view to display only the highest level domain and second level sub- domains.
  • Page 40 Monitor Change Background You may change the color of the radial view's background from white to black. 1 Right-click a domain from the radial view. 2 Select Background from the menu. 3 Select either White or Black. The radial view's background changes. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 41: Launch Sentriant Ng Manager From Radial View

    Radial View Launch Sentriant NG Manager from Radial View There are two locations from where you can launch Sentriant NG Manager. To launch Sentriant NG Manager from the radial view: 1 From the Monitor Panel, select an appliance from the Information Panel. 2 Right-click to bring up the menu and select Launch Sentriant Manager.

  • Page 42: Finding Appliances

    Monitor The Sentriant NG Manager opens to Sources in the Monitor Panel. Finding Appliances To find appliance or appliances: 1 From the Menu, select File > Find Appliance. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 43 Finding Appliances 2 Enter the IP Address or name of the appliance. 3 Click Find. A message is displayed with the Name, IP Address and the Domain where the appliance is located. 4 Click either the Go to Monitor or Go to Setup to navigate to the appliance. Depending on which button is clicked will take you the either the Monitor or Setup panel with the appliance highlighted.

  • Page 44: Setting Preferences

    Monitor Setting Preferences The Sentriant NG Operation Console is installed with pre-defined settings for password, paths, communications and user preferences. Settings may be customized as necessary. Changing Password To change the SOC password: 1 From the Menu, select File > Change Password. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 45: Setting Paths

    2 Enter a new password. 3 Re-enter the password to confirm. 4 Click OK. The password has been changed and the dialog closes. Setting Paths Upon installation of the SOC, default paths are saved for the following components: Policy Backup - When performing a policy distribution, a backup is automatically performed in the ●...

  • Page 46: Setting Communication Preferences

    Monitor The Path Preferences dialog opens. 2 Click the Browse button on the desired path to edit. 3 Click OK to save the path changes and close the dialog. Setting Communication Preferences To set communication preferences: 1 From the Menu, select File > Communication Preferences. The Communication Preferences dialog is displayed.
  • Page 47 1 From the Menu, select File > User Preferences. The User Preferences dialog opens. From this dialog, you can change the panel that opens when you start the SOC and how the help system is displayed. 2 From the Startup drop-down list, select either Last panel before exit or Use current panel. If you select Last panel before exit, the last panel you had open will reopen the next time you start the SOC.
  • Page 48 Monitor Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 49: Chapter 3: Setup

    Setup The Sentriant NG Operation Console must be configured to manage appliances. Appliances are added as members of the SOC by setting appliance parameters. Once an appliance is an SOC member, the appliance is added to the default domain and is monitored. The SOC gives you the flexibility to group appliances into domains.
  • Page 50 Setup 3 Enter the name and IP Address of the appliance. If you have created domains, you may select a domain from the drop-down list. If no domains have been created, the appliance will be placed in the default domain. NOTE The Port field is default to 22.

  • Page 51: View Appliance Information

    Appliances Panel The appliance is added as a member of the SOC. View Appliance Information The Setup Panel provides a list of appliances that are SOC members. Selecting an individual appliance provides additional details. To display information about an appliance: 1 From the Setup tab, click Appliance.
  • Page 52 Setup The Appliance Panel opens and displays appliance that are members of the SOC. Appliance parameters are displayed in the Information Panel for the following: Domain - the domain where the appliance resides ● Availability - the status of the appliance ●...

  • Page 53: Removing Appliances

    Appliances Panel Removing Appliances To remove appliances from the SOC: 1 From the Setup Tab, select Appliance. 2 Click the Remove Appliance button or right-click and select Remove Appliance. 3 Click OK. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 54: Editing Appliances

    Setup The appliance is removed from the SOC. Editing Appliances To edit an appliance from the SOC: 1 From the Setup Tab, select Appliance. 2 Click the Edit Appliance button or right-click and select Edit Appliance. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 55 Appliances Panel The Edit Appliance dialog opens. 3 Edit the Name, IP Address as necessary. 4 If moving the appliance to another domain, select the domain from the drop-down list. 5 Edit the Username and password. 6 Click OK. The appliance is updated with the new parameters. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 56: Appliance Software Updates

    Setup Appliance Software Updates NOTE The appliance software update feature is not implemented at this time. The procedures below are for reference only. The appliance software update feature will be implemented in a later version of the software. Sentriant NG appliance software updates can be performed from the SOC. Available software updates are listed in the Software Update Details panel and in the Software Updates column.
  • Page 57 Appliances Panel A list of available software updates is displayed in the Software Update Details panel. 3 Right-click the patch and select Software Update. If the patch file has not been found on the local machine in the path set from the Path Preferences, a web browser opens notifying you that the file must be downloaded.

  • Page 58: Disable/Enable Appliances

    Setup The download process begins by downloading the patch file to the local machine into the path set in the Path Preferences. Once the download has completed, Sentriant NG Manager is launched and begins the update process. Disable/Enable Appliances To disable an appliance: 1 From the Setup Tab, select Appliance.
  • Page 59 Appliances Panel The appliance Availability icon will turn gray. The Sentriant NG appliance continues to detect and mitigate threats, but it will no longer be monitored by the SOC. To enable an appliance: 1 From the Setup Tab, select Appliance. 2 Select an appliance.

  • Page 60: Launching The Sentriant Ng Manager

    Setup The appliance Availability icon will turn black. The appliance is now being monitored by the SOC. Launching the Sentriant NG Manager To launch the Sentriant NG Manager from the SOC: 1 From the Setup Tab, select Appliance. 2 Right-click an appliance and select Launch Sentriant Manager. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 61 Appliances Panel The Sentriant NG Manager Login dialog opens and begins the login process. Note that the appliance parameters have already been populated. Once the Sentriant NG Manager is up and running, focus is placed on the panel where you launched Sentriant NG Manager.

  • Page 62: Backup Appliance Configuration

    Setup Backup Appliance Configuration Backup Appliance Configuration is used to save the complete configuration for the selected appliance which includes appliance name, IP Address, user accounts, alerts, deception settings, named items, segment configuration settings, and policy settings. You should back up the appliance anytime you are performing a software update or policy distribution.
  • Page 63 Appliances Panel The Backup Appliance Action dialog opens with the default backup path. You may change the path by clicking the Edit Backup Path button and entering a new path. 3 Click the Backup button. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 64: Rollback Policy Distribution

    Setup A message stating the backup was successful is displayed. Click Done to close the dialog and return to the SOC. Rollback Policy Distribution Rollback Policy Distribution is used to reload a saved configuration for the selected appliance which includes appliance name, IP Address, user accounts, alerts, deception settings, named items, segment configuration settings, and policy settings.

  • Page 65: Domain Panel

    Domain Panel 1 From the Setup Tab, select Appliance. 2 Right-click an appliance and select Rollback Policy. 3 Click OK to start rollback. Domain Panel The Domain Panel is where you will configure and maintain domains and appliances that are members of the SOC.

  • Page 66: Creating Domains

    Setup The Domain Panel consists of an Information Panel where you create domains and add or move appliances. When an appliance is added as a member to the SOC, it is initially placed in a default domain named All if no other domains have been created or the user does not select a domain while adding the appliance.
  • Page 67 Domain Panel 4 Enter a name for the domain and click OK. The new domain is added to the Information Panel. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 68: Viewing Domain Information

    Setup Viewing Domain Information To display information about a domain: 1 From the Setup tab, click Domain. The Domain Panel opens and displays domains and appliances that are members of the SOC. The default domain, All, is shown in the Information Panel along with any appliances that have been added as members.

  • Page 69: Deleting Domains

    Domain Panel Deleting Domains To delete a domain: 1 From the Setup Tab select Domain. 2 Click the Delete Domain/Appliance button or right-click the domain and select Delete Domain. 3 The Delete action dialog opens. Click OK. The domain is deleted from the SOC. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 70: Editing Domains

    Setup Editing Domains To edit a domain from the SOC: 1 From the Setup Tab, select Domain. 2 Click the Edit Domain/Appliance button or right-click and select Edit. 3 The Edit Domain Name dialog opens. Enter a new name for the domain. 4 Click OK.

  • Page 71: Moving A Domain

    Domain Panel The domain name has changed and is displayed in the Information Panel. Moving a Domain To move a domain: 1 From the Setup Tab, select Domain. 2 Right-click a domain and select Move To. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 72 Setup 3 The Move To dialog opens. From the list, select a domain. This domain is where the selected domain will be moved under. 4 Click OK. The domain now resides under the selected domain. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 73: Adding Appliances To The Soc From The Domain Panel

    Domain Panel Adding Appliances to the SOC from the Domain Panel Appliances may be added as a member of the SOC from the Domain Panel. This is beneficial when creating a new environment with multiple domains. You can create a domain and then begin to add appliances directly to the domain.

  • Page 74: Removing Appliances From The Domain Panel

    Setup 3 Enter the name and IP Address of the appliance. Note: the domain has already been selected. 4 Enter the username and password. 5 Click OK. The appliance is added as a member of the SOC and placed under the selected domain. Removing Appliances from the Domain Panel To remove appliances from the Domain Panel: Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 75 Domain Panel 1 From the Setup Tab, select Domain. 2 Click the Delete Domain/Appliance button or right-click and select Remove Appliance. 3 The Delete action dialog opens. Click OK. The appliance is removed from the SOC. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 76: Editing Appliances From The Domain Panel

    Setup NOTE The appliance is still monitoring and mitigating traffic on the network. Editing Appliances from the Domain Panel To edit an appliance from the domain panel: 1 From the Setup Tab, select Domain. 2 Click the Edit Appliance button or right-click and select Edit Appliance. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 77 Domain Panel The Edit Appliance dialog opens. 3 Edit the Name, IP Address as necessary. 4 If moving the appliance to another domain, select the domain from the drop-down list. 5 Edit the Username and Password. 6 Click OK. The appliance is updated with the new parameters. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 78: Moving An Appliance

    Setup Moving an Appliance To move an appliance: 1 From the Setup Tab, select Domain. 2 Right-click an appliance and select Move To. 3 The Move To dialog opens. From the list, select a domain. This domain is where the appliance will be moved under.

  • Page 79: Launch Sentriant Ng Manager From The Domain Panel

    Domain Panel Launch Sentriant NG Manager from the Domain Panel To launch Sentriant NG Manager from the Domain Panel: 1 From the Setup Tab, select Domain. 2 Right-click an appliance and select Launch Sentriant Manager. The Sentriant NG Manager Login dialog opens and begins the login process. Note that the appliance parameters have already been populated.

  • Page 80: Policy Distribution Panel

    Setup Once the Sentriant NG Manager is up and running, focus is placed on the panel where you launched Sentriant NG Manager. In this case, Sentriant NG Manager was launched from Setup > Domain. Therefore, Sentriant NG Manager will open and navigate to the Monitor Panel. Policy Distribution Panel The Policy Panel is where you will create, distribute and maintain policy distributions.

  • Page 81: Creating A Policy Distribution

    have detection and mitigation settings based on the type of deployment. The SOC has the ability to capture the policy from one Sentriant NG appliance and send it to other appliances that are members of the SOC. Creating a Policy Distribution Adding a policy distribution: 1 From the Setup Tab select Policy Distribution.
  • Page 82 Setup Adding Destinations Once the source appliance has been identified, select the appliance which will receive the policy. 5 Click the New Destination button. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 83: Viewing Policy Distribution Information

    Policy Distribution Panel 6 Select the appliances that will receive the distribution. You may multi-select appliances from the list. 7 Click OK. The appliances are added to the distribution list. See Starting a Policy Distribution to learn about sending policy distributions to destination appliances. Viewing Policy Distribution Information To view Policy Distributions: Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 84: Delete Policy Distribution

    Setup 1 From the Setup tab, click Policy Distribution. 2 Click a Policy Distribution from the left navigation. The selected Policy Distribution is displayed in the Information Panel with the following: Name - policy distribution name ● Source - the appliance selected as the policy source. The source is where the policy will be ●...
  • Page 85 Policy Distribution Panel 4 The Delete action dialog opens. Click OK. The policy distribution is deleted from the SOC. Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 86: Sending Policy Distributions

    Setup Sending Policy Distributions To send Policy Distributions: 1 From the Setup Tab select Policy Distribution. 2 Select a Policy Distribution from the left navigation. 3 Click the Distribute button at the lower right of the panel. The Policy Distribution Progress dialog opens with the list and status of appliances which will receive the policy.

  • Page 87: Editing Policy Distribution

    Policy Distribution Panel As the distribution progresses, the status for each appliance will be updated. Once the distribution has completed, the status is updated to Success and the start end timestamps are updated. 4 Click Done to close the dialog. Editing Policy Distribution To edit the name of a policy distribution: 1 From the Setup Tab, select Policy Distribution.
  • Page 88 Setup 3 Click the Edit Name button. 4 The Edit Policy Distribution Name dialog opens. Enter a new name. 5 Click OK. To edit the source of a policy distribution: 6 Click the Edit Source Appliance button. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 89 Policy Distribution Panel 7 The Edit Source Appliance dialog opens. Select an appliance from the drop-down list. 8 Click OK. The policy name and source are changed and displayed in the Information Panel. Sentriant NG Operation Console User Guide, Software Version 2.5...
  • Page 90 Setup Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 91: Glossary

    Sentriant NG configuration actions, can monitor the fabric and perform manual and automatic mitigation activities. admin System Administrator - Extreme Networks Sentriant NG system user with full read/write access to system and application monitoring, display, and control commands. alerts The Sentriant NG can be configured to send alerts notifying the administrator that threat behavior has been detected.
  • Page 92 Glossary C (Continued) cloak on demand communication stream deception decoy detection dismiss domain escalate When Cloak is selected as the response to a threat, the Sentriant NG initially inserts itself into communication paths for only the devices that have communicated with the threat and removes the communication stream.
  • Page 93 E (Continued) event viewer The event viewer panel used to view and manage network activity events. The Events Viewer maintains logs about Sentriant NG, configuration, network activity events. exclude Exclude is used to fine tune IP Addresses and ports to be monitored when Include is used to monitor range(s) of IP Addresses.
  • Page 94 Glossary MAC Address MAC Validation management segment manual escalation masked source monitor native segment network segment NMAP The low-level address consisting of a 48-bit hexadecimal number (12 characters) assigned to a device on an ethernet network. MAC addresses are translated to IP Addresses via ARP. Each NIC is assigned a unique address at the factory.
  • Page 95 Extreme Networks Sentriant NG system user with read-only access to the system and application controls. operator Extreme Networks Sentriant NG system user with read/write access to all of the application monitoring and display commands but does not have access to network segment configuration and Sentriant NG maintenance.
  • Page 96 Glossary P (Continued) offset receive transmit transport personality personality set ping flood policy port scan primary protected range For packet match rules, the administrator must first define a base from which an offset can be defined. This will describe the network header that should be inspected.
  • Page 97 Qtag The Institute of Electrical and Electronics Engineers (IEEE) standard 802.1Q enables VLAN traffic to span many broadcast domains or switches. It does this by inserting a special Qtag that carries a VLAN identifier (VID) into each Ethernet frame. This tagged traffic carries VLAN membership information between switches, thus enabling a VLAN to span multiple switches.
  • Page 98 Glossary S (Continued) snaring SNMP source SPAN port spoof count spoof origin spoof packet spoof packets spoofed as sub-domain suspect SysLog target too many externals A Sentriant NG uses a special technique to engage and hold TCP- based attacks, thus preventing them from spreading. Snaring ties up an attack thread so it cannot move to another computer, slowing or even stopping the attack.
  • Page 99 T (Continued) too many unprotected A local system on the network is contacting a large number of remote hosts. This could signal the presence of a virus or worm. too many used Too many used (i.e., real) IP Addresses have been contacted by a single host.
  • Page 100 Glossary Sentriant NG Operation Console User Guide, Software Version 2.5...

  • Page 101: Index

    Change Background, 42 Changing Password, 46 cloak, 93 cloak all, 93 cloak on demand, 94 communication stream, 94 Contacting Extreme Networks, 23 Contents, 9 Counter, 30 Creating a Policy Distribution, 83 Creating Domains, 68 Customizing the Screen, 16 data/mask, 97...
  • Page 102 Index match, 97 Menu Bar, 9 monitor, 25, 96 Moving a Domain, 73 Moving an Appliance, 80 Navigating the Sentriant NG Operation Console, 9 network, 97 NMAP, 96 NTP, 96 observer, 97 offset, 98 operator, 97 Overview, 9 packet, 97 Panel Navigation Bar, 15 personality, 98 personality set, 98...

This manual is also suitable for:

Sentriant ng operation console

Table of Contents