McAfee M-1250 - Network Security Platform Upgrade Manual
  1. Manuals
  2. Brands
  3. McAfee Manuals
  4. Firewall
  5. M-1250 - Network Security Platform
  6. Upgrade manual
McAfee M-1250 - Network Security Platform Upgrade Manual

McAfee M-1250 - Network Security Platform Upgrade Manual

Upgrade guide
Hide thumbs Also See for M-1250 - Network Security Platform:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Configuration Manual, Manual
Upgrade Guide
McAfee
Network Security Platform 6.1
®

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the M-1250 - Network Security Platform and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for McAfee M-1250 - Network Security Platform

Summary of Contents for McAfee M-1250 - Network Security Platform

  • Page 1 Upgrade Guide McAfee Network Security Platform 6.1 ®...
  • Page 2 MCAFEE, NETSHIELD, PORTALSHIELD, PREVENTSYS, SECURITYALLIANCE, SITEADVISOR, TOTAL PROTECTION, VIRUSSCAN, WEBSHIELD are registered trademarks or trademarks of McAfee, Inc. and/or its affiliates in the US and/or other countries. McAfee Red in connection with security is distinctive of McAfee brand products. All other registered and unregistered trademarks herein are the sole property of their respective owners.

  • Page 3: Table Of Contents

    Performing Signature Set and Sensor Software upgrade Difference between an update and an upgrade ..... . 43 McAfee Network Security Platform 6.1 Upgrade Guide...
  • Page 4 Updating Sensor software in a failover pair ....50 Performing NTBA Appliance software upgrade Information on downgrade Index McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 5: Preface

    This information describes the guide's target audience, the typographical conventions and icons used in this guide, and how the guide is organized. Audience McAfee documentation is carefully researched and written for the target audience. The information in this guide is intended primarily for: •...

  • Page 6: Finding Product Documentation

    Finding product documentation Finding product documentation McAfee provides the information you need during each phase of product implementation, from installation to daily use and troubleshooting. After a product is released, information about the product is entered into the McAfee online KnowledgeBase.

  • Page 7: Overview

    If applicable, Network Threat Behavior Analysis Appliance upgrade from an earlier 6.0 version to the latest As with any upgrade, McAfee strongly recommends that you always first try the upgrade on a test environment. You would need to refer to the following documents during the upgrade process: •...
  • Page 8 Overview McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 9: Managing A Heterogeneous Environment

    • The Manager and the corresponding Sensors are of different successive major versions. For example, some Sensors are on 5.1.x.x and the rest are on 6.0.x.x, all managed by a 6.0 Manager. McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 10: When Would You Need A Heterogeneous Environment

    6.0 Manager. These are possible with a Manager version that supports a heterogeneous Sensor environment. McAfee strongly advises that you use the heterogeneous support feature only as an interim arrangement until you upgrade all your Managers and Sensors to the latest version. This enables you to make use of the latest features in Network Security Platform.

  • Page 11: Sample Scenarios

    Scenario 4 on page 14 Scenario 1 This scenario is about an upgrade from a homogeneous 5.1 Manager environment to a heterogeneous 6.0 Manager environment managed by an MDR pair of Central Managers. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 12 Performing Signature Set and Sensor Software upgrade on page 3 Scenario 2 This scenario is about an upgrade from a homogeneous 5.1 Manager environment to a heterogeneous 6.0 Manager environment managed by a standalone Central Manager. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 13 After you upgrade the 4.1 Sensors to a 5.1 version, do a manual synchronization. Then, ensure the Sensors are up and functioning as configured. Make sure there are no 4.1 Managers or Sensors when you begin to upgrade to 6.0. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 14 After you upgrade the 4.1 Sensors to a 5.1 version, do a manual synchronization. Then, ensure the Sensors are up and functioning as configured. Make sure there are no 4.1 Managers or Sensors when you begin to upgrade to 6.0. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 15 If the Manager is of version 6.0.7.x or above, then I-series Sensors do not support NAC regardless of the Sensor software version. See also Scenario 5 on page 16 Scenario 8 on page 18 Scenario 6 on page 16 McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 16 Performing Signature Set and Sensor Software upgrade on page 3 Scenario 6 This scenario is about an upgrade from a homogeneous Sensor environment in 5.1 to a heterogeneous Sensor environment in 6.0, managed by a standalone Manager. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 17 Sensors are up and functioning as configured. Upgrade the Manager MDR pair to the latest 6.0 version. See Upgrading the Manager. Upgrade the required Sensors to the latest 6.0 version. See Performing Signature Set and Sensor Software Upgrade. McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 18: Feature-Support Matrix For Heterogeneous Environments

    This section provides the feature-support matrix and the points that you should note when you work in a heterogeneous environment in Network Security Platform 6.0. The following table contains the major feature x Sensor software version x Sensor model matrix: McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 19 I-series Sensors do not support NAC if the Manager is upgraded to 6.0.7.x or above. See the NAC Configuration Guide. OOB NAC You need Manager 6.0.3.x or above with N-450 6.0.3.x. See the NAC Configuration Guide. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 20 Prior to release 6.0.7.x, you use the following CLI commands to configure Layer 2 forward settings: • layer2 forward tcp • layer2 forward udp • layer2 forward vlan • layer2 forward clear McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 21 Scanning Exception node. In an heterogeneous Sensor environment, you need to use the CLI commands for 5.1 Sensors, and the Manager for 6.0 Sensors. For more information see Addendum II to 6.0 Documentation. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 22 Managing a Heterogeneous Environment Feature-support matrix for heterogeneous environments McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 23: Upgrading The Central Manager

    Upgrading the Central Manager If you have McAfee Network Security Central Manager (Central Manager) deployed, you need to upgrade it to 6.0 before you upgrade the corresponding (Managers). That is, the Central Manager must be of the same or a higher version than the corresponding Managers.

  • Page 24: Central Manager License File Requirement

    The Troubleshooting Guide provides a number of pre-installation tips and suggestions with which McAfee recommends you familiarize yourself before you begin your upgrade. If you run into any issues, we suggest you to check the Troubleshooting Guide for a possible solution.

  • Page 25: Backing Up Network Security Platform Data

    Backing up Network Security Platform data Before you upgrade, back up your tables and save any McAfee Custom Attacks (formerly UDS) that you have created. If you have a very large number of alerts and packet logs to upgrade, first consider archiving and deleting any alert and packet log data that you do not need prior to creating your database backup files.

  • Page 26: Central Manager And Os Upgrade

    The high-level steps involved in this approach are: Task Back up the 5.1 database. See Backing up Network Security Platform data. Upgrade the Central Manager to 6.0. See Stand-alone Central Manager upgrade. McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 27: Approach 2: Using A New Hardware

    Stand-alone Central Manager upgrade on page 28 Performing a database backup on page 25 MDR Central Manager upgrade To upgrade the primary and secondary Central Managers configured for Manager Disaster Recovery (MDR): McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 28: Stand-Alone Central Manager Upgrade

    You have backed up your 5.1 Central Manager data. See Backing up Network Security Platform data. • You have the required 6.0 Central Manager installable file at hand. You can download it from the McAfee Update Server. See Downloading the Manager/Central Manager executable, Installation Guide. •...
  • Page 29 Network Security Central Manager service. Right-click on the Central Manager icon at the bottom-right corner of your server and stop the service. Alternatively, go to Windows Control Panel Administrative ToolsServices. Then right-click on McAfee ® Network Security Central Manager, and select Stop.

  • Page 30: Upgrading The Signature Set For The Central Manager

    Upgrading the Signature Set for the Central Manager Task If you have not already done so, download the most recent 6.0 signature set from the McAfee ® Network Security Update Server. From the Resource Tree, go to Root_admin_domain | Central Manager | Update Server | Signature Sets.

  • Page 31: Upgrading The Manager

    See the Manager Server Configuration Guide for suggestions on calculating your database capacity requirements. This section discusses the minimum and recommended hardware and software requirements that the Manager server should meet. The following are the system requirements for the Manager 6.0 server. McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 32: Manager License File Requirement

    The Troubleshooting Guide provides a number of pre-installation tips and suggestions with which McAfee recommends you familiarize yourself before you begin your upgrade. If you run into any issues, we suggest you to check the Troubleshooting Guide for a solution.

  • Page 33: Reviewing The Upgrade Considerations

    NAC in 5.1, does not enforce NAC when you upgrade the Manager to 6.0 and push the configuration update to the Sensor. If you have I-series Sensors configured for NAC, and you want to upgrade to 6.0, contact McAfee Support. McAfee Network Security Platform 6.1 Upgrade Guide...
  • Page 34 Threat Intelligence. However, note that to be able to query TrustedSource for information on the source or target host of an attack, you need to send at least your alert data summary to McAfee. For details, see the Integration Guide.

  • Page 35: Backing Up Network Security Platform Data

    Backing up Network Security Platform data Before you upgrade, back up your tables and save any McAfee Custom Attacks (formerly UDS) that you have created. If you have a very large number of alerts and packet logs to upgrade, first consider archiving and deleting any alert and packet log data that you do not need prior to creating your database backup files.

  • Page 36: Mdr Manager Upgrade

    Backing up McAfee Custom Attacks If you have McAfee Custom Attacks (that is, UDS), back them up prior to upgrade. The steps are common for Central Manager and Manager. So, the term "Manager" in this section could refer to the Central Manager or the Manager.

  • Page 37: Manager And Os Upgrade

    The high-level steps involved in this approach are: Task Back up the 5.1 database. See Backing up Network Security Platform data. Upgrade the Manager to 6.0. See Stand-alone Central Manager upgrade or Stand-alone Manager upgrade as applicable. McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 38: Approach 2: Using A New Hardware

    Log on to the new Manager server and check the Status page to ensure everything is working fine. See also Reviewing the upgrade requirements on page 23 Stand-alone Manager upgrade on page 39 Performing a database backup on page 25 Manager license file requirement on page 32 McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 39: Stand-Alone Manager Upgrade

    You have backed up your 5.1 Manager data. See Backing up Network Security Platform data. • You have the 6.0 Manager installable file at hand. You can download it from the McAfee Update Server. See Downloading the Manager/Central Manager executable, Installation Guide.

  • Page 40: Running Additional Scripts

    1 million or more, alerts or host events, in the Manager database. If you run these scripts when not prompted, you will receive SQL errors. In this case, contact McAfee Technical Support with the details of the message.
  • Page 41 In the MySQL shell, run: mysql>source <manager install directory>/db/mysql/migrate/alertproc_offline_2.sql If an SQL error message is displayed, stop proceeding further and contact McAfee Technical Support with the details of the message. Utilities like db backup/restore/archival/purge cannot be run on your database before completing step 5.
  • Page 42 Upgrading the Manager Stand-alone Manager upgrade McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 43: Performing Signature Set And Sensor Software Upgrade

    For I-series Sensors, the NAC feature is not supported in 6.0. So, an I-series Sensor configured for NAC in 5.1, does not enforce NAC when you upgrade it to 6.0. If you have I-series Sensors configured for NAC, and if you want to upgrade to 6.0, contact McAfee Support. Contents...

  • Page 44: Reviewing The Upgrade Considerations

    For information on Manager upgrade see, Upgrading the Manager. Your Sensors meet the requirements mentioned in Sensor upgrade requirements. You have read and understood the upgrade considerations discussed in Reviewing the upgrade considerations (sensor). McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 45 Manager server. You can then download the Sensor image to the Sensor. A variation on option 2: you can download the Sensor image from McAfee Network Security Platform Update Server to any host, put it on a disk, take the disk to the Manager server, and then import the image and download it to the Sensor.

  • Page 46: Sensor Software Upgrade: Manager Vs. Tftp Server

    TFTP server. While both the methods are supported, if the Sensors are deployed inline in your production network, McAfee recommends updating the Sensor software using the Manager interface for a major upgrade (for example, from 5.1 to 6.0) A Sensor reboot is required whether you do an upgrade using TFTP or from the Manager.
  • Page 47 Performing Signature Set and Sensor Software upgrade Updating Sensor software image If you had created McAfee Custom Attacks in the 5.1 Manager, make sure the required attack definitions are included in the IPS policies in the 6.0 Manager. • From the Resource Tree, go to root_admin_domain | IPS Settings | Policies.

  • Page 48: Sensor Software Upgrade Using A Tftp Server

    From your Sensor Console, perform the following steps: Log on to the Sensor. The default username is admin and default password admin123. McAfee strongly recommends you change the default password, in case you haven't done so already. Specify the IPv4 or IPv6 address of the TFTP server to identify it to the Sensor. At the prompt, type: set tftpserver ip <A.B.C.D>...
  • Page 49 Updating Sensor software image Then, the Sensor contacts the Manager for the latest signature set. After the signature set is downloaded to the Sensor, its System Health Status is displayed as "good." McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 50: Updating Sensor Software In A Failover Pair

    Push the software to each of the Sensors that are in the failover pair. You can follow one of these methods: • Sensor Software and Signature Set Upgrade using the Manager. • Sensor software upgrade using a TFTP server. McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 51 Threat Analyzer, see Viewing Sensor performance statistics, System Status Monitoring Guide. See also Sensor Software and Signature Set Upgrade using Manager 6.0 on page 46 Sensor software upgrade using a TFTP server on page 48 McAfee Network Security Platform 6.1 Upgrade Guide ®...
  • Page 52 Performing Signature Set and Sensor Software upgrade Updating Sensor software image McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 53: Performing Ntba Appliance Software Upgrade

    Sensor Software and Signature Set Upgrade using the Manager: • In this section, read "Sensor" as "NTBA Appliance". • Ignore the step related to McAfee Custom Attacks. • The downloadstatus CLI command is not applicable to NTBA. • Failover is not applicable to NTBA.
  • Page 54 Performing NTBA Appliance software upgrade McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 55: Information On Downgrade

    Information on downgrade This chapter describes the task performed for downgrading. McAfee recommends that you read through this chapter before you start to downgrade. Task Stop the Manager service. Right-click on the Manager icon at the bottom-right corner of your server and stop the service.
  • Page 56 Information on downgrade McAfee Network Security Platform 6.1 Upgrade Guide ®...

  • Page 57: Index

    Index documentation (continued) typographical conventions and icons about this guide McAfee ServicePortal, accessing conventions and icons used in this guide ServicePortal, finding product documentation documentation Technical Support, finding product information audience for this guide product-specific, finding McAfee Network Security Platform 6.1 Upgrade Guide...
  • Page 58 700-2364-00...

This manual is also suitable for:

Network security platform 6.1

Table of Contents