Download
Share
Print this page
  1. Manuals
  2. Brands
  3. Trellix Manuals
  4. Security Sensors
  5. NS Series
  6. Quick start manual

Trellix NS7500 Quick Start Manual

Intrusion prevention system
Hide thumbs

Advertisement

Quick Links

Download this manual
This quick start guide explains how to quickly set up and activate your Trellix Intrusion Prevention System NS-series
Sensor in in-line mode.
All product documentation referenced in this quick start guide is found on the
The NS7500 Sensor model
Figure 1 Sensor front panel
1
Console port (1)
2
RJ-11 port (1) for fail-open control of two built-in SFP+ ports in G0. This port is used only for passive fail-open
mode.
3
SFP+ 1/10 Gigabit Ethernet ports (2). These ports support 1 Gbps (SFP) copper or fiber and 10 Gbps (SFP+) (SR
and LR).
4
Two slots for I/O modules (Any combination of the interface modules can be used)
8-port SFP/SFP+ 1/10 Gigabit interface module
4-port 1/10 Gigabit fiber interface module with built-in fail open
6-port RJ45 10/100/1000 Mbps Ethernet interface module with built-in fail open
4-port RJ45 100/1000/10000 Mbps Ethernet interface module with built-in fail open
5
Built-in RJ45 10/100/1000 Mbps Ethernet Monitoring ports (8) with internal fail-open
Trellix Intrusion Prevention System
(NS7500 Quick Start Guide)
Trellix Documentation
Portal.
1

Advertisement

loading
Need help?

Need help?

Do you have a question about the NS7500 and is the answer not in the manual?

Questions and answers

Related Manuals for Trellix NS7500

Summary of Contents for Trellix NS7500

  • Page 1 Trellix Intrusion Prevention System (NS7500 Quick Start Guide) This quick start guide explains how to quickly set up and activate your Trellix Intrusion Prevention System NS-series Sensor in in-line mode. All product documentation referenced in this quick start guide is found on the Trellix Documentation Portal.
  • Page 2 • Printed Quick Start Guide • Serial Console Cable (DB9-DB9) Verify the hardware and software requirements Make sure to meet the following hardware requirements. For more information, refer to Trellix Intrusion Prevention System Installation Guide. Windows based Manager application requirements...
  • Page 3 The following table lists the 11.1 Windows based Manager/Central Manager application requirements: Note Windows Server 2012 Standard/Windows Server 2012 R2 Standard is not supported for the Manager. Minimum required Recommended Any of the following: Operating Windows Server 2022 system Datacenter Edition operating •...

  • Page 4: Specifications

    Minimum required Recommended Network 1 Gbps card 1 Gbps card Virtual CPUs 4 or more (Applicable only on a VMware platform) Table 1 VMware ESX server requirements for Windows Operating System Component Supported Virtualization software • ESXi 7.0 Update 3 •...
  • Page 5 Manager client system requirements The following table lists the 11.1 Manager/Central Manager client requirements when using Windows 10: Minimum Recommended Operating Windows 10, English or Japanese Windows 10, version 1903 English or system Japanese Note: The display language of the Manager client must be same as that of the Manager server operating system.
  • Page 6 Install the slide rails Follow this procedure to assemble the slide rails and position the Sensor on it. Disassemble the inner slide rails from the rail assemblies. Pull the inner rail out. Click and pull the white tab (lock on inner rail) forward to disconnect inner rail from the middle rail. The Inner rail is disconnected.
  • Page 7 Mount the inner rail onto the chassis unit. Place each inner rail on both sides of the chassis unit. Position the three key holes of the inner rails with the mounting holes on the chassis unit. Slide the rails forward to lock it. Mount the outer slide rails/brackets to the rack posts.
  • Page 8 Mount the chassis unit into the rack. Pull the middle rail out, extend it until the lock position. Note Ensure ball bearing retainer is located at the front of the middle rail. Insert the chassis unit into the middle rails.
  • Page 9 Pull or push the blue release tab on both sides and continue to push the chassis unit until fully closed. Secure the chassis unit by locking it. Add thumb screws on both the sides of the rack post. Install the interface modules You can purchase the following interface modules and insert them into the relevant slots on your NS-series Sensor.
  • Page 10 Drive in the screws fixed on the sides of the module to attach it to the Sensor. Cable the Management and Console ports On the rear panel of the NS7500 Sensor, plug a RJ-45 cable in the Management port (labeled MGMT, for example, 1).
  • Page 11 On the front panel of the NS7500 Sensor, plug the DB9 Console cable(s) into the Console port (labeled Console). Connect the other end of the Console port cable directly to a COM port of the PC or terminal server you will be using to configure the Sensor (for example, a PC running correctly configured Windows Hyperterminal software).
  • Page 12 MariaDB is included with the Manager and is installed (embedded) automatically on your target Windows or Linux server during this process. Prepare the system according to the requirements outlined in Trellix Intrusion Prevention System Installation Guide. Close all open applications.
  • Page 13 License requirement for NS7500 Sensors The NS7500 Sensor requires a license to activate the baseline throughput. You must first purchase a license to enable traffic inspection in the NS7500 Sensor. To obtain a license, contact Trellix Sales. The license is provided as a .zip or .jar file. The Manager supports both formats. The license procured contains the details of the throughput for the Sensor.
  • Page 14 Select the Sensors tab and then click Note You do not require a license file to enable IPS on NS-series Sensors. The Add Devices - Step 1 of 2 panel is displayed. Enter the following mandatory information in the appropriate fields: Name —...
  • Page 15 Retype the password in Confirm Shared Secret. Note The Sensor name and shared secret key that you enter in the Manager must be identical to the shared secret that you will later enter during physical installation or initialization of the Sensor (using CLI interface) as stated in the Configure Sensor information section..
  • Page 16 At any time during configuration, you can type a question mark (?) to get help on the Sensor CLI commands. Type commands for a list of all commands. Log in to the Sensor using the terminal connected to the Console port. At the prompt, log in using the default Sensor username admin and password admin123.
  • Page 17 Set the IP address of the Manager server. Type set manager ip <A.B.C.D> at the prompt. Example: set manager ip 192.168.2.8 Set the IP address and subnet mask of the Sensor. Type set sensor ip <A.B.C.D> <E.F.G.H> at the prompt. Example: set sensor ip 192.168.2.12 255.255.255.0 Note Specify an IP address using four octets separated by periods: X.X.X.X, where X is a number between 0...
  • Page 18 The status report appears. The Sensor parameter System Initialized should be yes, and for Manager communications Trust Established should be yes. From the Manager Dashboard, view the Manager status in the System Faults monitor. The Manager status displays as Up and Sensor status is Active. From the Manager, click Devices | <Admin Domain>...
  • Page 19 If any attack in the policy is triggered, the Sensor automatically blocks the attack. To tune this or any other Trellix-provided policies, you can clone the policy and then customize it as described in Trellix Intrusion Prevention System Product Guide.
  • Page 20 Copyright © 2023 Musarubra US LLC. Trellix and FireEye are the trademarks or registered trademarks of Musarubra US LLC, FireEye Security Holdings US LLC and their affiliates in the US and /or other countries. McAfee is the trademark or registered trademark of McAfee LLC or its subsidiaries in the US and /or other countries.

This manual is also suitable for:

Ns series