HP TippingPoint Next Generation Firewall Installation Manual

HP TippingPoint Next Generation Firewall Hardware Specification

and Installation Guide

Abstract This guide describes the HP TippingPoint Next Generation Firewall Appliance hardware specifications, chassis

components, and installation requirements and instructions. This information is intended for network and security administrators, or IT specialists responsible for installation and setup of the NGFW Appliance.

*5998-4805*

Part number: 5998-4805 Edition: First Publication (Aug 2013)

Legal and notice information

Hewlett-Packard Company makes no warranty of any kind with regard to this material, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, performance, or use of this material.

This document contains proprietary information, which is protected by copyright. No part of this document may be photocopied, reproduced, or translated into another language without the prior written consent of Hewlett-Packard. The information is provided “as is” without warranty of any kind and is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

TippingPoint®, the TippingPoint logo, and Digital Vaccine® are registered trademarks of Hewlett-Packard All other company and product names may be trademarks of their respective holders. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) without written permission from Hewlett-Packard or one of its subsidiaries.

Printed in US.

Next Generation Firewall Hardware Specification and Installation Guide

Publication Part Number: 5998-4805

About This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .ix

Target Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ix

Related Documentation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ix

Document Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . x

Typefaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . x

Document Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . x

Customer Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xi

Before Contacting Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xi

Contact Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xii

1 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

NGFW Appliances . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

HP S1000 Series Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

HP S3000 Series Appliances . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2

HP S8000 Series Appliances . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2

Core Hardware Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3

2 HP TippingPoint S1000 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

S1050F Appliance Overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Chassis Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Chassis Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Chassis Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Model Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Power Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Cabling Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

Technical Specifications. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

Installing the Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

3 HP TippingPoint S3000 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

S3000 Series Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Chassis Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Chassis Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

Chassis Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

Model Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Power Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Cabling Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Technical Specifications. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Hardware Installation and Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

4 HP TippingPoint S8000 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

S8000 Series Appliances Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Chassis Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Chassis Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

Chassis Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

Model Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Power Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Cabling Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Technical Specifications. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Hardware Installation and Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

5 Installing the NGFW Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Install the Chassis . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Determine Total Rack Space . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Attach the Appliance to the Rack . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Connect the Power Supply . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Next Generation Firewall Hardware Specification and Installation Guide iii

Attach Cables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Check LEDs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Setup Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

A Connector and Cable Pinout Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

RJ-45 (COM) Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

RJ-45 Ethernet Connectors . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Pluggable Transceivers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

B Power Supply and Fan Modules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

The S3000 or S8000 Series AC Power Supply . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

NGFW Fans . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

C Using the External CFast Storage Card . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

About the External CFast Storage Card . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

CFast Card Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

List of Figures

Figure 1-1 - HP TippingPoint NGFW S1050F Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2

Figure 1-2 - HP TippingPoint NGFW S3020F Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2

Figure 1-3 - HP TippingPoint NGFW S8010F Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3

Figure 2-1 - S1050F Appliance Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Figure 2-2 - S1050F Appliance Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Figure 2-3 - Management and Console Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Figure 3-1 - S3000 Series Appliance Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Figure 3-2 - S3000/S8000 Series Appliance Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

Figure 3-3 - Management and Console Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Figure 4-1 - S8000 Series Appliance Front Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Figure 4-2 - S3000/S8000 Series Appliance Back Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

Figure 4-3 - Management and Console Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

Figure 5-1 - S1000 Series Model Front-Mount Bracket and Ear . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Figure 5-2 - S1000 Series Chassis with Front Mounting in a Two-Post Rack . . . . . . . . . . . . . . . . . . . . . . . . 23

Figure 5-3 - S1000 Series Chassis with Mid-Mounting in a Two-Post Rack . . . . . . . . . . . . . . . . . . . . . . . . . 23

Figure 5-4 - S1000 Series Chassis in a Four-Post Rack . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Figure 5-5 - S3000/S8000 Series Model Front-Mount Bracket and Ear . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Figure 5-6 - S3000 or S8000 Series Model with Front Mounting in a Two-Post Rack . . . . . . . . . . . . . . . . . 25

Figure 5-7 - S3000 or S8000 Series Model with Mid-Mounting in a Two-Post Rack . . . . . . . . . . . . . . . . . . 25

Figure 5-8 - S3000 or S8000 Series Chassis in a Four-Post Rack . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Figure A-1 - RJ-45 Connector . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Figure B-1 - S3000/S8000 Series AC Power Supply . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

Figure B-2 - NGFW Fan Unit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

Next Generation Firewall Hardware Specification and Installation Guide v

List of Tables

Table 1 - Document Typographic conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . x

Table 2 - Customer Support Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xi

Table 1-1 - Hardware Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3

Table 2-1 - Management Port LED Descriptions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Table 2-2 - S1050F Appliance Hardware Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8

Table 3-1 - Management Port LED Descriptions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Table 3-2 - S3000 Series Appliance Hardware Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Table 4-1 - Management Port LED Descriptions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Table 4-2 - S8000 Series Appliance Hardware Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Table A-1 - RJ-45 Console Connector Pinouts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Table A-2 - RJ-45 Ethernet Connector Pinouts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Table A-3 - RJ-45 Connector Pinouts for 1GbE Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .30

Table C-1 - External Storage Card Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .38

Next Generation Firewall Hardware Specification and Installation Guide vii

viii

About This Guide

The HP TippingPoint Next Generation Firewall (NGFW) provides a high performance enterprise-class application-aware firewall and VPN terminator with HP TippingPoint IPS and other DPI capabilities. This guide summarizes the features and capabilities provided by the NGFW Appliance.

This section covers the following topics:

• Target Audience, page 1

• Related Documentation, page 1

• Document Conventions, page 2

• Customer Support, page 3

Target Audience

This guide is intended for security network administrators and specialists who have the responsibility of monitoring, managing, and improving system security.

Document Conventions

This guide uses the following document conventions.

• Typefaces, page 2

• Document Messages, page 2

Typefaces

HP TippingPoint publications use the following typographic conventions for structuring information:

Document Typographic Conventions

Convention Element

Medium blue text: Link

Blue, underlined text (http://www.hp.com

Bold font •Key names

Italics font Text emphasis, important terms, variables, and publication titles.

Monospace font • File and directory names

Monospace, italic font • Code variables

Monospace, bold font Emphasis of file and directory names, system output, code, and text

Document Messages

Document messages are special text that is emphasized by font, format, and icons. This concepts and deployment guide contains the following types of messages:

Cross-reference links and e-mail addresses

)

Web site addresses

• Text typed into a GUI element, such as into a box

• GUI elements that are clicked or selected, such as menu and list

items, buttons, and check boxes. Example: Click

•System output

•Code

• Text typed at the command-line

• Command-line variables

typed at the command line

OK to accept.

• Warning

•Caution

•Note

•Tip

WARNING! Warning notes alert you to potential danger of bodily harm or other potential harmful

consequences.

CAUTION: Caution notes provide information to help minimize risk, for example, when a failure to follow

directions could result in damage to equipment or loss of data.

NOTE: Notes provide additional information to explain a concept or complete a task. Notes of specific

importance in clarifying information or instructions are denoted as such.

IMPORTANT: Another type of note that provides clarifying information or specific instructions.

TIP: Tips provide helpful hints and shortcuts, such as suggestions about how you can perform a task more

easily or more efficiently.

Customer Support

HP TippingPoint is committed to providing quality customer support to our customers. Each customer is provided with a customized support agreement that provides detailed customer and support contact information. When you need technical support, use the following information to contact Customer Support.

• Before Contacting Support, page 3

• Contact Information, page 3

Before Contacting Support

For the most efficient resolution of your problem, please take a moment to gather some basic information from your records and from your system before contacting HP TippingPoint customer support.

Customer Support Information

Information Location

Your customer number You can find this number on your Customer Support Agreement

Your DV Toolkit version number You can find this information by clicking Help > About in the

Your NGFW Appliance serial number

Your TOS version number You can find this information in the LSM in the System Summary

Your SMS server serial number You can find this number on the bottom of the server chassis.

Your SMS version number You can find this information on the Dashboard in the Updates

Contact Information

For additional information or assistance, contact the HP Networking Support:

http://www.hp.com/networking/support

Before contacting HP, collect the following information:

• Product model names and numbers

• Technical support registration number (if applicable)

• Product serial numbers

• Error messages

• Operating system type and revision level

• Detailed questions

and on the shipping invoice that came with your IPS.

NGFW menu bar.

You can find this number in the LSM in the System Summary page, or on the shipping invoice that came with your system.

page, or by using the CLI

Also, from the SMS CLI, you can run the

area. The Admin > General screen also displays the version number.

show version command.

key command.

Next Generation Firewall Concepts and Deployment Guide 3

HP Contact Information

For the name of the nearest HP authorized reseller, see the contact HP worldwide web site:

•

http://www.hp.com/country/us/en/wwcontact.html

1Overview

The HP TippingPoint Next Generation Firewall is the latest offering in the comprehensive security suite of HP TippingPoint products.

The Next Generation Firewall (NGFW) is a high-performance, enterprise-class solution that offers a range of appliances designed to address the needs of various network topologies. The NGFW Appliances offer protection for networks ranging from single-point-of-entry networks to complex enterprise networks and data centers.

The HP TippingPoint line-up of NGFW Appliances offers a sophisticated and comprehensive defense against network invasion, proliferation of unauthorized application use, and business interruption at critical access points, including the network perimeter. In addition to providing a robust and scalable solution that includes auto-updating and policy-based controls, these appliances are designed for easy installation and maintenance.

For additional information on NGFW features and their implementation, refer to the Concepts and Deployment Guide.

The following topics are covered:

•”NGFW Appliances” on page 1

•”Core Hardware Features” on page 3

NGFW Appliances

HP TippingPoint NGFW Appliances deliver the highest level of defense against network intrusion and provide application control. Security zones inspect and filter traffic that passes through them. Application-layer gateway traffic is monitored to identify and classify applications crossing onto the network. With its ability to identify hundreds of the most common enterprise applications, the NGFW Application Intelligence System (AIS) enables fine-grained control of those applications and the users accessing them.

You can install as many HP TippingPoint security appliances as you need to strategically protect your network enterprise zones. A local client on each appliance monitors and manages activity. Alternatively, you can manage appliances by using the Security Management System (SMS) console.

The NGFW family includes the S1000 Series, S3000 Series, and the S8000 Series appliances. These robust, high-performance security appliances offer a scalable solution to support all types of organizations and network environments.

HP S1000 Series Appliance

The HP S1000 Series comprises a 1U form-factor appliance designed for smaller organizations, such as corporate branch offices. This appliance provides full next-generation firewall protection designed to meet the needs and budgets of small- to medium-sized organizations.

The S1000 Series currently features the S1050F model.

Next Generation Firewall Hardware Specification and Installation Guide 1

The following figure shows an NGFW S1000 Series Appliance:

Figure 1-1 HP TippingPoint NGFW S1050F Appliance

For technical specifications and additional details about the S1050F appliance, see ”HP TippingPoint

S1000 Series” on page 5.

HP S3000 Series Appliances

The HP S3000 Series comprises 2U form-factor appliances designed for medium-sized deployments, such as on university campuses.

The S3000 Series currently features the following models:

• S 3010 F

•S3020F

The following figure shows an NGFW S3000 Series Appliance:

Figure 1-2 HP TippingPoint NGFW S3020F Appliance

For technical specifications and additional details about the S3020F appliance, see ”HP TippingPoint

S3000 Series” on page 9.

HP S8000 Series Appliances

The HP S8000 Series comprises high-performance, 2U form-factor appliances. These high-end, robust models accommodate the heavier traffic flows of large enterprises. The 8000 Series includes the following models:

•S8005F

• S 8010 F

2Overview

The following figure shows an NGFW S8000 Series Appliance:

Figure 1-3 HP TippingPoint NGFW S8010F Appliance

For technical specifications and additional details about these models, see ”HP TippingPoint S8000

Series” on page 15.

Core Hardware Features

The NGFW models have the following hardware features:

Table 1-1 Hardware Features

Feature S1000 Series S3000 Series S8000 Series

Copper ports 8 8 8

1GbE SFP ports None 8 8

10GbE SFP+ ports None None 4

Power supply 1 (built-in) 2 (removable) 2 (removable)

System memory 8GB 12GB 32GB

External CFast card 1 (8GB) 1 (8GB) 1 (32GB)

Replaceable fans No Yes Yes

High Ava ilabilit y Yes Yes Yes

In addition, the following features are available on all models:

• Built-in intrinsic high-availability features, guaranteeing continuity in the event of system failure

• Crypto encryption for VPN service

• Streamlined migration from other enterprise firewall products to the NGFW system

• Appliance management through the Local Security Manager (LSM) or centralized management through the Security Management System (SMS).

Next Generation Firewall Hardware Specification and Installation Guide 3

4Overview

2 HP TippingPoint S1000 Series

This information describes the components, chassis, requirements, and installation specifics of the HP TippingPoint S1000 Series Next Generation Firewall Appliances. This series currently features the S1050F model, described further in the following topics:

•”S1050F Appliance Overview” on page 5

•”Model Requirements” on page 7

•”Technical Specifications” on page 8

•”Installing the Appliance” on page 8

For more information about installing the S1050F appliance, see ”Installing the NGFW Appliance” on page 21. Prior to installation, have the CLI Reference available for configuration information. After installing the components, complete the HP TippingPoint Setup Wizard as part of the installation and configuration procedures.

S1050F Appliance Overview

The S1050F appliance is a small form-factor devices designed for smaller network environments in which traffic throughput requirements are 500Mbps or less. This model provides the same high-level security protection as the higher-capacity models.

Chassis Front Panel

The S1050F appliance is a 1U form-factor device that is rack-mountable in a 19-inch rack (or 23-inch rack, with appropriate conversion parts available from rack accessory vendors).

The following image is a front panel view of an S1050F appliance:

Figure 2-1 S1050F Appliance Front Panel

1 CFast card 2 1GB copper ports 3 Dedicated HA port 4 Serial console port/Management port 5 Alert indicator 6 Power indic ator 7 System status indicator

Next Generation Firewall Hardware Specification and Installation Guide 5

+ 37 hidden pages