Position the mounting rails correctly and install them at same levels.
At the front of the rack, position one of the mounting rails so that its mounting bracket aligns with the
a
required rack holes. Clip the rail into the rack.
Revision B
Figure 1 Slide rail installation
At the back of the rack, pull the back mounting-bracket (extending the mounting rail) so that it aligns with
b
the required rack holes.
Clip the rail to the rack and secure it.
c
Repeat these steps to secure the second mounting rail to the rack.
d
Make sure that the mounting rails are at the same level on each side of the rack.
e
Make sure that you follow the safety warnings. When identifying where you want the NTBA
Appliance to go in the rack, remember that you should always load the rack from the bottom
up. If you are installing multiple NTBA Appliances, start with the lowest available position rst.
1
Page 2
Install the NTBA Appliance in the mounting rails
With help from another person, lift the NTBA Appliance so that the side rails at the back of the NTBA
1
Appliance are aligned with the mounting rails in the rack, then push the NTBA Appliance into the
mounting rails until it stops.
Lifting the NTBA Appliance and attaching it to the rack is a two-person job.
Use a screwdriver to x a screw through the front and back rack holes to secure the system to the rack.
2
Attach the provided cable management arm if required.
3
Attach the lockable bezel to protect the front panel if required.
4
2Front panel features and indicators T-500 and T-200
The front panel features and indicators of NTBA Appliance T-500 and T-200 are as follows:
Figure 2 Front panel — T-500 and T-200
ItemDescription
1Hard drives
2Optical drive
3Power-on indicator (on the Mini Control Panel)
4System identication indicator light (on the Mini Control Panel)
5USB connector (on the Mini Control Panel)
2
Page 3
3Back panel features and indicators T-500
The back panel features and indicators of NTBA Appliance T-500 are as follows:
Figure 3 Back panel — T-500
ItemDescription
1System identication indicator light
2Console port
3Video connector
4USB ports (4)
5Management port
6Remote management module NIC
7Collection ports (2-copper)
8Power supply 1
9Power supply 2
10Collection ports (2-ber)
11Power supply 1 status indicator light
12Power supply 2 status indicator light
4Back panel features and indicators—T-200
The back panel features and indicators of NTBA Appliance T-200 are as follows:
Figure 4 T-200 back panel
ItemDescription
1System identication indicator light
2Console port
3
Page 4
ItemDescription
3Video connector
4USB ports (4)
5Management port
6Remote management module NIC
7Collection ports (4-copper)
8Power supply 1 status indicator light
9Power supply 1
10Power supply 2 status indicator light
11Power supply 2
5Hardware specications
Table 1 Hardware specications
Appliance modelT-200T-500
Form factor1U1U
Width16.9" (430 mm)16.9" (430 mm)
Depth27.19" (690.6 mm)27.19" (690.6 mm)
Height1.69" (43 mm)1.69" (43 mm)
Maximum weight17.2 kg (38.1 lbs)17.2 kg (38.1 lbs)
Redundant power supply650W650W
Quiescent power utilization170W225W
Estimated inlet power utilization (worst case scenario)426W544W
6NTBA Appliance - technical specications
Table 2 NTBA Appliance technical specications
ParameterLimits
Dimensions
•Height - 43.2 mm 1.70 in•Depth without CMA - 665.5
•Width without rails - 430.0
mm 16.93 in
•Width with rails - 470.0 mm
18.50 in
mm 26.2 in
•Depth with CMA - 812.8 mm
32.00 in
Operating Temperature+10°C to +35°C with the maximum rate of change not to exceed 10°C per
Shock, packagedNon-palletized free fall in height 24 inches (≥40 lbs to <80 lbs)
Vibration, unpackaged5 Hz to 500 Hz, 2.20 g RMS random
ESD+/- 15 KV except I/O port +/- 8 KV per Intel® Environmental test specication
System Cooling Requirement
2250 BTU/hour
in BTU/Hr
7Cabling the T-500 NTBA Appliance
The T-500 NTBA Appliance has four collection ports and one management port.
The collection ports connect to the network infrastructure that generates the NetFlow data from the routers
and McAfee® Network Security Sensor (Sensor)s.
The four collection ports can be used to distribute the NetFlow data from dierent routers and Sensors.
The management port connects to a network device that in turn connects to the Manager. The NTBA
Appliance is managed through the Manager.
Ports for cabling in the back panel
Figure 5 T-500 back panel
ItemDescription
1Console port
2Management port
3Collection ports (2-copper)
4Collection ports (2-ber)
5
Page 6
8Cabling the T-200 NTBA Appliance
The T-200 NTBA Appliance has four collection ports and one management port.
The collection ports connect to the network infrastructure that generates the NetFlow data from routers and
McAfee® Network Security Sensor (Sensor)s.
The four collection ports can be used to distribute the NetFlow data from dierent routers and Sensors.
The management port connects to a network device that in turn connects to the Manager. The NTBA
Appliance is managed through the Manager.
Ports for cabling in the back panel
Figure 6 T-200 back panel ports
ItemDescription
1Console port
2Management port
3Collection ports (2-copper)
4Collection ports (2-copper)
9Connect the console ports
Plug a console cable (RJ45 to DB9 serial) to the console port at the back panel of the NTBA Appliance.
a
Connect the other end of the cable directly to the serial port of the PC or Terminal Server you will be
b
using to congure the NTBA Appliance (for example, a PC running correctly congured Windows
HyperTerminal software.)
6
Page 7
You must connect directly to the console for initial conguration. You can't congure the NTBA Appliance
remotely.
The required settings for HyperTerminal are:
NameSetting
Baud rate115200
Number of Bits8
ParityNone
Stop Bits1
Control FlowNone
The procedure for cabling the console port of NTBA Appliance T-1200 and T-600 is similar.
10Connect the power cables
Connect one end of the power cable to the NTBA Appliance. Plug the other end of the power cable into a
grounded electrical outlet or a separate power source such as an uninterrupted power supply (UPS) or a
power distribution unit (PDU).
When you connect power to the appliance, the appliance will immediately turn on and boot up.
11Install the Manager software
Prepare the system according to the requirements outlined in the McAfee® Network Security Platform
a
Installation Guide and McAfee Network Security Platform Release Notes.
Close all open applications.
b
Insert the Manager CD into the appropriate drive of the Windows server that you want to use as your
c
Manager server. Follow the instructions in the Installation Wizard as it guides you through the entire
process.
You must have administrator rights on the target Windows server to install the Manager
software.
A MySQL database is included with the Manager and is installed (embedded) automatically on
your target Windows server during this process.
7
Page 8
12Add the NTBA Appliance to the Manager
Adding an NTBA Appliance to the Manager enables the Manager to accept communication from a physically
installed and network-connected Appliance. After communication has been established, the Manager allows
editing of the Appliance conguration. The alert data is available in the Attack Log and Report queries.
You can add a device by selecting Devices | <Admin Domain Name> | Global | Add and Remove Devices but it
is recommended to use the Add Device Wizard to add all devices (except Virtual HIP Sensors) and to
establish the trust between the Manager and the device.
aThe Add Device Wizard window is displayed after the Manager Initialization Wizard is completed.
McAfee recommend to rst add an Appliance to the Manager.
The name must begin with a letter and can contain alphanumeric characters, hyphens, underscores and
periods. The length of the name is not
congurable.
dSelect the Device Type as NTBA Appliance.
eEnter the Shared Secret (repeat at Confirm Shared Secret).
The device name and shared secret are case-sensitive. The Device Name and Shared Secret must also be
entered on the device command line interface (CLI) during physical installation and initialization. If not,
the Appliance will not be able to register itself with the Manager.
The shared secret must be a minimum of 8 characters in length: the length of the shared secret is not
congurable. The shared secret cannot start with an exclamation mark or have any spaces. The characters
that can be used while creating a shared secret are as follows:
•26 alpha: upper and lower case (a,b,c,...z and A, B, C,...Z)
fFor a NTBA Appliance, the Updating mode is set to Online.
g[Optional] Enter the Contact Information and Location.
hClick Next.
The Trust Establishment page is displayed.
8
Page 9
iFollow the instructions on the page to complete the command line interface (CLI) setup and click Check
Trust.
Using the command line interface (CLI), enter the necessary information for the Appliance
and communication as described in the McAfee Network Security Platform Installation Guide.
If you set up the NTBA Appliance rst, after the Manager addition, you need to return to the
Appliance to reset the shared secret key and begin Appliance-to-Manager communication.
jClick Next.
The Next button is enabled once the trust between the Appliance and the Manager is
established.
The Port Settings page is displayed. By default, the collection ports are disabled.
kEnable the ports and modify settings. Click Save and then Next.
The General Settings page is displayed.
Congure NTBA Appliance settings for collection ports. Click Next.
l
The DNS Settings page is displayed.
mBy default global settings are inherited. If you wish, modify the DNS server details. Click Next.
The Exporters page is displayed.
identication
nAdd a router exporter that will forward records to the NBA Sensor for processing and click Next. To add a
IPS exporter, go to IPS devices.
The Inside Zones page is displayed.
oAdd a new inside zone or edit the default inside zones. Click Next.
The Outside Zones page is displayed.
pAdd a new outside zone or edit the default outside zone. Click Next.
The Update Configuration page is displayed.
qClick Update to deploy
conguration on the device. This might take some time.
The Update Status bar displays 100% complete.
rClick Finish.
On the Devices tab, under the Device drop-down list, the NTBA Appliance is added. From Global | Add andRemove Devices option, you can also view the added Appliance.
13Set up NTBA Appliance
Plug a console cable (RJ45 to DB9 serial) to the console port at the back panel of the NTBA Appliance.
a
Connect the other end of the cable directly to the serial port of the PC or Terminal Server you are using to
b
congure the NTBA Appliance. (For example, a PC running correctly congured Windows HyperTerminal
software.)
9
Page 10
The required settings for HyperTerminal are:
NameSetting
Baud rate115200
Number of Bits8
ParityNone
Stop Bits1
Control FlowNone
Run the HyperTerminal.
c
At the logon prompt, log on to the NTBA Appliance using the default user name admin and password
d
admin123.
At the Press Y to start the setup now or N to do it later prompt, enter Y. Set and conrm
e
a setup password. Wait for some time to congure the NTBA Appliance.
At the Please enter the sensor name prompt, enter the name of the NTBA Appliance.
f
The values between <> characters are to be entered by the user, excluding the <> characters.
Example: ntba_appliance_1
The NTBA Appliance name is a case-sensitive alphanumeric character string up to 25 characters. The
string must begin with a letter and can include hyphens. underscores, periods but not spaces. The NTBA
Appliance name typed here should be identical to the one entered against Device Name in the Add New
Device page of the Manager.
gAt the Please enter the sensor IP(A.B.C.D) prompt, type the management port IP address of the
NTBA Appliance.
Specify a 32-bit address written as four eight-bit numbers separated by periods as in <A.B.C.D>, where A,
B, C, or D is an eight-bit number between 0-255.
Example: 10.213.173.237
Setting the IP address for the rst time during the initial conguration of the NTBA Appliance
does not require an NTBA Appliance reboot. Subsequent changes to the IP address however,
require reboot for the change to take eect.
At the Please enter the sensor subnet mask(A.B.C.D) prompt, type the management port
h
subnet mask of the Appliance. <A.B.C.D> represents the subnet mask.
Example: 255.255.255.0
At the Please enter the manager primary IPv4 address(A.B.C.D) prompt, type the IPv4
i
address of the Manager server.
Example: 192.34.3.2
(Optional) At the Press Y to configure manager secondary IP address prompt, type Y if you
j
wish to set a Manager secondary IP address. By default, this is set to N.
10
Page 11
At the Please enter the sensor default gateway(A.B.C.D) prompt, type the IP address. Use
k
the same convention as for the Sensor IP address.
Note that you should be able to ping the gateway. The gateway should be reachable.
Example: 192.34.2.8
Make sure you have set a shared secret key on the Manager for this Sensor.
l
At the Please enter shared secret key prompt, type the shared secret key value. This value is used
m
to establish a trust relationship between the NTBA Appliance and the Manager.
nType the same shared secret key value that you typed in the Add New Device page of the Manager.
The NTBA Appliance prompts you to verify the value. Make sure that the conguration settings to this
point have successfully established the NTBA Appliance on the network.
oType the value again and press ENTER.
You can change the NTBA Appliance password by using the passwd command.
A password must be between 8 and 25 characters, is case-sensitive, and can consist of any alphanumeric
character or symbol.
McAfee strongly recommends that you choose a password with a combination of characters
that is easy for you to remember but dicult for someone else to guess.
14Verify successful NTBA Appliance conguration
You can check whether the NTBA Appliance is congured and is available by executing the following actions:
Verication process
You can check the NTBA Appliance conguration as follows:
•At the NTBA Appliance console type status.
The status information of the NTBA Appliance is displayed. This includes information on whether the
NTBA Appliance is initialized and its health status.
•At the NTBA Appliance console type show.
The system information is displayed. This includes information on system uptime and the status of the
Management port link.
To exit the session, type exit.
•To view or congure the settings of the collection ports for the NTBA appliance, you access the
conguration page in Devices | <Admin Domain Name> | Devices | <Device Name> | Setup | Physical Ports.
bSelect the latest software listed under Software Available for Download and click Download.
The Download Status window is displayed.
11
Page 12
cClick Close Window once the download is complete.
The downloaded software is listed under Software on the Manager in the Download Device Software page as also
in the Deploy Device Software page (Devices | <Admin Domain Name> | Devices | <NTBA Appliance> | Maintenance |
Deploy Device Software).
Upgrade NTBA Appliance software
You need to upgrade to the latest available version from the Manager.
McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, LLC or its subsidiaries in the US and other countries. Other
marks and brands may be claimed as the property of others.
12700-3622B00
Loading...
+ hidden pages
You need points to download manuals.
1 point = 1 manual.
You can buy points or you can get point for every manual you upload.