Cisco S195, S395, S695, S695F Getting Started Manual
Contents
Cisco Web Security Appliance S195, S395, S695,
and S695F Getting Started Guide
Published: June 7, 2019
Welcome
Document Network Settings
Plan the Installation
Temporarily Change Your IP Address for Remote Access
Connect to the Appliance
Log In to the Appliance
Run the System Setup Wizard
Check for Available Upgrades
Configure Network Settings
Welcome
Configuration Summary
Additional Configurations
Related Documentation
Cisco Notification Service
Cisco Web Security Appliance S195, S395, S695, and S695F (WSA) helps organizations secure and
control web traffic. This guide describes how to setup your appliances and use the System Setup
Wizard to configure basic settings for the appliance. You can also refer to the “Deployment” chapter
in the AsyncOS for Cisco Web Security Appliances User Guide for information about how to configure
appliance settings.
Cisco Systems, Inc.
www.cisco.com
Document Network Settings
Document Network Settings
Before you begin, write down the following information about your network and administrator settings.
Deployment Options
Web Proxy:
–
Transparent with L4
–
Switch Transparent with
WCCP Router
–
Explicit Forward Proxy
Network Context
Is there another proxy on the
network:
Other Proxy IP Address:
Other Proxy Port:
Network Settings
Default System Hostname:
DNS Servers: Use the Internet root DNS servers.
Network Time Protocol (NTP)
Server:
Time Zone Region:
Time Zone Country:
Time Zone GMT Offset:
L4 Traffic Monitor:
• Simplex tap/Span port
• Duplex tap/Span port
Use the DNS servers (maximum 3):
1.
2.
3.
Cisco Web Security Appliance S195, S395, S695, and S695F Getting Started Guide
2
Interface Settings
Management Port
IP Address:
Network Mask:
Hostname:
Data Port (Optional, see Note)
IP Address:
Network Mask:
Hostname:
Note
The Web Proxy can share the management interface. If configured separately, the Data
interface IP address and the management interface IP address cannot share the same subnet.
Routes
Internal Routes for Management
Default Gateway:
Static Route Name:
Static Route Destination Network:
Static Route Gateway:
Internal Routes for Data
Default Gateway:
Static Route Name:
Static Route Destination Network:
Static Route Gateway:
Document Network Settings
Cisco Web Security Appliance S195, S395, S695, and S695F Getting Started Guide
3
Document Network Settings
Transparent Routing Device
Device Type: • Layer 4 Switch or No Device
Note When you connect the appliance to a WCCP router, you might need to configure the Web
Administrative Settings
Administrator Password:
Email System Alerts To:
SMTP Relay Host: (Optional)
AutoSupport: Enable
SenderBase Network
Participation:
Security Services
L4 Traffic Monitor: • Monitor only
Acceptable Use Controls:
Web Reputation Filters: Enable
Malware and Spyware Scanning: • Enable Webroot
Action for Detected Malware: • Monitor only
IronPort Data Security Filtering: Enable
Locking Faceplate
4-digit code (for the S695-LKFP
appliance)
• WCCP Router
–
Enable standard service ID
(web-cache).
–
Router Addresses:
_________________
–
Enable router security.
Password:
_________________
Security appliance to create WCCP services after you run the System Setup Wizard.
Enable
• Limited
• Standard
• Block
Enable
• Cisco IronPort Web Usage Controls
• Enable McAfee
• Enable Sophos
• Block
Cisco Web Security Appliance S195, S395, S695, and S695F Getting Started Guide
4
Plan the Installation
Decide how you are going to configure the Cisco Web Security Appliance within your network.
The Cisco Web Security Appliance is typically installed as an additional layer in the network between
clients and the Internet. Depending on how you deploy the appliance, you may or may not need a Layer
4 (L4) switch or a WCCP router to direct client traffic to the appliance.
Deployment options include:
• Transparent Proxy – Web proxy with an L4 switch
• Transparent Proxy – Web proxy with a WCCP router
• Explicit Forward Proxy – Connection to a network switch
• L4 Traffic Monitor – Ethernet tap (simplex or duplex)
–
Simplex Mode: Port T1 receives all outgoing traffic, and port T2 receives all incoming traffic.
–
Duplex Mode: Port T1 receives all incoming and outgoing traffic.
Note See “Connect to the Appliance” section on page 7 for more information about individual ports on the
appliance.
Plan the Installation
Note To monitor true client IP addresses, the L4 traffic monitor should always be configured inside the
firewall and before NAT (Network Address Translation).
If your installation includes multiple Cisco Web Security Appliances (S-Series) or Cisco Email Security
Appliances (C-Series), you may want to also use a Cisco Content Security Management Appliance
(M-Series) to manage them, as show in the following network diagram:
Cisco Web Security Appliance S195, S395, S695, and S695F Getting Started Guide
5
Temporarily Change Your IP Address for Remote Access
Temporarily Change Your IP Address for Remote Access
To remotely configure the appliance using the network connection, you must temporarily change the
IP address of your computer.
Note Make a note of your current IP configuration settings as you will need to revert to these settings after
you finish the configuration.
Alternatively, you can use the serial console to configure the appliance, without changing the IP address.
If you use the serial console, see Connect to the Appliance, page 7.
Temporarily Change Your IP Address on Windows
Note The exact steps depend on the version of your operating system.
Procedure
Step 1 Connect your laptop to the primary Management Port (labeled M1) using the cross over or Ethernet cable
included in the system box. The Cisco Web Security Appliance uses the M1 Management port only. See
“Plan the Installation” section on page 5.
Step 2 Go to the Start menu and choose Control Panel.
Step 3 Double-click Network and Sharing Center.
Cisco Web Security Appliance S195, S395, S695, and S695F Getting Started Guide
6
Loading...