Juniper Networks Ic Series Unified Access Control Appliances; Extranet Devices; Distributed Data Collection; Table 12: Ic Series Uac Appliances Nsm Supports - Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1 Administration Manual

Distributed Data Collection

Copyright © 2010, Juniper Networks, Inc.

Juniper Networks IC Series Unified Access Control Appliances

In a Unified Access Control (UAC) solution, Infranet Controller (IC) products provide
policy management. ScreenOS firewalls can provide the enforcement points.
Table 12 on page 21 lists the Infranet Controller products and firmware versions supported
by NSM 2010.2.

Table 12: IC Series UAC Appliances NSM Supports

Security Device
Juniper Networks Infranet Controller
4000
Juniper Networks Infranet Controller
4500
Juniper Networks Infranet Controller
6000
Juniper Networks Infranet Controller
6500

Extranet Devices

Your managed network can also include extranet devices, which are firewalls or VPN
devices that are not Juniper Networks security devices.
The distributed data collection system provides a robust method for managing multiple
objects. Each device is described by a unique Data Model (DM) that contains all the
configuration data for that individual device. The Abstract Data Model (ADM) contains
configuration data for all objects in a specific domain. When you use the UI to interface
with your managed devices, the ADM and DMs work together:
When you update a device configuration, the GUI Server translates the objects and
object attributes in the ADM domain into device configuration information in a DM. The
Device Server then translates the device configuration information in the DM into CLI
commands and sends the commands to the device for ScreenOS devices. For DMI
based devices, Device Server converts the DM into XML configlet and sends the configlet
through NetConf protocol to the device.
When you import a device configuration, for ScreenOS devices, the device sends CLI
commands to the Device Server, which translates the CLI commands into a DM with
device configuration information. For DMI devices, the device sends the configuration
through NetConf protocol as an XML document to the Device Server, which translates
it into a DM with device configuration information. The GUI Server then translates the
device configuration in the DM into objects and object attributes in the ADM, and uses
the ADM to display current information in the UI.
For more details on the ADM and DMs, see "Managing Devices" on page 263.
Chapter 1: Introduction to Network and Security Manager
Versions of Firmware NSM Supports
IC Release 2.2, 3.0, 3.1
IC Release 2.2, 3.0, 3.1
IC Release 2.2, 3.0, 3.1
IC Release 2.2, 3.0, 3.1
21