IBM Proventia Getting Started Manual

IBM Proventia

Getting Started Guide

®

Network Mail Security System

Version 1.6

IBM Internet Security Systems

© Copyright IBM Corporation 2006, 2008.
IBM Global Services
Route 100
Somers, NY 10589
U.S.A.

Produced in the United States of America.
All Rights Reserved.
IBM and the IBM logo are trademarks or registered trademarks of International Business Machines Corporation in the

United States, other countries, or both. ADDME, Ahead of the threat, BlackICE, Internet Scanner, Proventia, RealSecure,
SecurePartner, SecurityFusion, SiteProtector, System Scanner, Virtual Patch, X-Force and X-Press Update are trademarks
or registered trademarks of Internet Security Systems, Inc. in the United States, other countries, or both. Internet Security
Systems, Inc. is a wholly-owned subsidiary of International Business Machines Corporation.

Microsoft, Windows, and Windows NT are trademarks of Microsoft Corporation in the United States, other countries, or
both.

Other company, product and service names may be trademarks or service marks of others.
References in this publication to IBM products or services do not imply that IBM intends to make them available in all

countries in which IBM operates.
Disclaimer: The information contained in this document may change without notice, and may have been altered or

changed if you have received it from a source other than IBM Internet Security Systems (IBM ISS). Use of this information
constitutes acceptance for use in an “AS IS” condition, without warranties of any kind, and any use of this information is at
the user’s own risk. IBM Intern et Security Systems disclaims all warranties, either expressed or implied, including the
warranties of merchantability and fitness for a particular purpose. In no event shall IBM ISS be liable for any damages
whatsoever, including direct, indirect, incidental, consequential or spe ci al damages, arising from the use or dissemination
hereof, even if IBM Internet Security System s has been advised of th e possibility of such damages. Some states do not allow
the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply.

Reference herein to any specific commercial products, process, or service by trade name, trademark, ma nufacturer, or
otherwise, does not necessarily constitute or imply its endorsement, r ecommendation, or favoring b y IBM Internet Security
Systems. The views and opinions of authors expressed herein do not necessarily state or reflect those of IBM Internet
Security Systems, and shall not be used for advertising or product endorsement purposes.

Links and addresses to Internet resources are inspected thoroughly prior to release, but the ever-changing nature of the
Internet prevents IBM Internet Security Systems, Inc. from guaranteeing the content or existence of the resource. When
possible, the reference contains alternate sites or keywor ds that could be used to acquire the information by other methods .
If you find a broken or inappropriate link, please send an email with the topic name, link, and its behavior to

support@iss.net

Document Part Number: 51J1881
September 26, 2008

.

Contents

Preface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

How to Use the Appliance Documentation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Getting Technical Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Chapter 1: Introduction to the Appliance

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Appliance Package Contents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

About the Appliance. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Understanding SMTP Mail Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

Chapter 2: Getting Connected

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Getting Started . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

Connecting the Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Configuring the Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Completing the Initial Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Accessing Proventia Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Working with Proventia Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

Installing License Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

Applying Mail Security Updates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Verifying Network Connectivity and SMTP Settings . . . . . . . . . . . . . . . . . . . . . . . . . 36

Reinstalling the Appliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6

3

Contents

4

IBM Internet Security Systems

Preface

Overview

Introduction This getting started guide contains information about installing and

configuring initial settings for the IBM Proventia Network Mail Securi ty
System appliance.

Scope This guide includes general information and procedures required for

connecting the appliance to your network and configuring the basic
settings for the appliance.

Audience This guide is intended for Administrators with a fundamental knowledge

of mail security best practices and SMTP configuration.

Note: If you are running the appliance on VMware, see the Getting

Started Guide for VMware Workstation on the IBM ISS Web site at

www.iss.net/support/documentation/

using VMware.

for installation procedures

http://

IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6

5

Preface

How to Use the Appliance Documentation

Using this guide Read this entire guide before you install or operate this product. You

should review prerequisites and considerations before you begin.

Latest information For the latest appliance documentation, always r efer to the Help found in

Proventia Manager and in the Readme files associated with each
firmware release located on the IBM ISS Download Center at

http://www.iss.net/download/

Related publications The following publications provide more information about the

appliance:

Document Contents

.

Licensing
agreement

IBM Proventia Network
Mail Security System
Getting Started Guide for
VMware Workstation

IBM Proventia Network
Mail Security System
Administrator Guide

IBM Proventia Network
Mail Security System
Help

Readme file This file contains the most current information about

Tabl e 1: Reference documentation

This guide contains information on how to set up the
appliance on VMware.

This guide contains information on configuring,
managing, and maintaining the appliance.

The online Help is accessed from Proventia
Manager (the Web-based Management Interface),
and contains information on how to use features of
the appliance while you are in the application.

product issues and updates, including how to
contact Technical Support.

For licensing information on IBM Internet Security Systems products,
download the IBM Licensing Agreement from:

http://www-935.ibm.com/services/us/iss/html/
contracts_landing.html

6

IBM Internet Security Systems

Getting Technical Support

Getting Technical Support

Introduction IBM ISS provides technical support through its Web site and by email or

telephone.

The IBM ISS Web
site

The IBM Internet Security Systems (IBM ISS) Resour ce Center Web site at

http://www-935.ibm.com/services/us/index.wss/offerfamily/
iss/a1029129

provides direct access to user documentation, current
versions listings, detailed product literature, white papers, and the
Technical Support Knowledgebase.

Hours of support The following table provides hours for Technical Support at the Americas

and other locations:

Location Hours

Americas 24 hours a day
All other

locations

Tabl e 2: Hours for technical support

Monday through Friday, 9:00 A.M. to 6:00 P.M. during their
local time, excluding IBM published holidays

Note: If your local support office is located outside the
Americas, you may call or send an email to the Americas
office for help during off-hours.

Contact information For contact information, go to the IBM Internet Security Systems

(IBM ISS) Resource Center Web site at

services/us/index.wss/offering/iss/a1029178

IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6

http://www-935.ibm.com/

.

7

Preface

8

IBM Internet Security Systems

Chapter 1

Introduction to the Appliance

Overview

Introduction This chapter contains introductory information about deploying your

appliance.

In this chapter This chapter contains the following topics:

Topic Page

Appliance Package Contents 10
About the Appliance 11
Understanding SMTP Mail Routing 13

IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6

9

Chapter 1: Introduction to the Appliance

Appliance Package Contents

Introduction Before you begin, you should verify that you have all of the package

contents necessary to install the appliance.

Verifying the
contents

Verify the appliance package includes the following:

Item

9













Tabl e 1: Materials for connecting the appliance

IBM Proventia Network Mail Security System appliance

Ethernet crossover cable

Po wer cord

Recovery CD pack

Getting Started Gui de

Warranty statement

10

IBM Internet Security Systems

About the Appliance

About the Appliance

Introduction Before you connect the appliance to the network, familiarize yourself

with the appliance’s hardware features.

Front panel Figure 1 illustrates the front panel of the appliance:

Figure 1: Front panel of the appliance

The front panel of the appliance includes the following:

Label Description

A LED Indicators (from left to right:)

• Power LED - Green

• HDD Activity LED - Green

• LAN1 LED - Green

• LAN2 LED - Green

• Fault Event LED - Amber

B The LCD module navigation arrow keys are used for entering IP

addresses.
C The LCD controller module is used for initial network configuration.
D The LCD module configuration keys are used to set up the ETH1

interface from the front panel.

Tabl e 2: Front panel label descriptions

IBM Proventia Network Mail Security System Getting Started Guide, Version 1.6

11

Chapter 1: Introduction to the Appliance

Back panel Figure 2 illustrates the back panel of the appliance:

Figure 2: Appliance back panel

The back panel of the appliance includes the following:

Label Description

E Ethernet Port 2 (ETH2)
F Ethernet Port 3 (ETH3)

Configuring the
ETH1 interface

G Ethernet Port 1 (ETH1) (This is the default gateway for the appliance.)
H Ethernet Port 0 (ETH0)

Tabl e 3: Back panel label descriptions

You will need to re-route mail traffic through the appliance, before it can
inspect all incoming mail and then forward the clean mail on to internal
mail servers. Make sure the ETH1 interface is configured as the default
gateway IP address for the appliance.

Figure 3: ETH1 interface setup

12

IBM Internet Security Systems