Random Recipes

200/400/1200/2400 Version 1.4.2 Part Number: TECHD -00000000042 Publication Control Number: 040804 UnityOne™ is a registered trademark of TippingPoint Technologies, Inc. TippingPoint, TippingPoint Technologies, SMARTMatch and the TippingPoint Technologies logo are also registered trademarks of TippingPoint Technologies. Table of Contents UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Table of Contents About This Guide v Overview v List of Tables iv UnityOne 200/400/1200/2400 Installati on and Configuration Guide Out-of-the-Box LCD Setup Wizard 37 Additional Configuration 48 Technical Specifications 53 Connector and Pinout Specifications 57 Power Supply Module Replacement 61 Replacement Procedures 61 IPS Menu Options 63 IPS LCD Panel 64 List of Figures UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The UnityOne™ Environment 3 UnityOne™ Model 1200 4 DB-9 Connector 23 RJ-45 Connector 24 RJ-45 Connector 25 SFP Transceiver 25 List of Figures vi UnityOne 200/400/1200/2400 Installati on and Configuration Guide UnityOne 200/400/1200/2400 Installation and Configuration Guide V 1.4.2 Explains who this book is intended for, how the information is organized, where information updates can be found, and how to obtain customer support if you cannot resolve a problem. Welcome to Tipping Point Technologies’ (TPT) UnityOne 200/400/1200/2400 Installation and Configuration Guide . The UnityOne is an Intrusion Prevention System (IPS) that provides a unified approach to network security. This chapter includes the following sections: ” on pagev “ Organization ” on pagevi “ Conventions ” on pagevi “ Related Documentation ” on pageix “ Customer Support ” on pagex vi UnityOne 200/400/1200/2400 Installati on and Configuration Guide The IPA Installation and Configuration Guide is organized as follows: About the Guide Explains who this book is intended for, how the information is organized, where information updates can be found, and how to obtain customer support if you cannot resolve a problem. Overview Provides a description of the deployment environment of the UnityOne, including layout and illustrations of hardware components and features. Prepare the Site UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 vii Bold Used for the names of screen elements like buttons, drop-down lists, or fields. For example, when you are done with a dialog, you would click the button. Used for text a user must type to use the product. Italic Used for book titles, variables, and important term. Hyperlink Used for web site and cross reference links. When a topic is covered in depth elsewhere in this guide, or in another book in this series, a cross reference to the other information will be provided. Cross references within this book will take the form: “for more information about conventions, see page 6, Conventions.” Cross references to other publications will take the form: “for more information about topic&#xto16;&#x.2p8;&#x.3i8;Â.2;, see Publication Name Messages are special text that are emphasized by font, format, and icons. There are four types of messages in this book: Warning Caution Note Tip A description of each message type with an example message follows. Warning Warnings tell you how to avoid physical injury to people or equipment. For people, injury includes anything from temporary conditions, such as pain, to irreversible conditions such as death. For equipment, injury means anything requiring repair. Warnings tell you what you should or should not do, and the consequences of not heeding the warning. Warnings have an icon to the left showing a white lightning bolt drawn inside of a red octagon. Warnings also start with the word “WARNING”, and are presented in bold face type. Caution Cautions tell you how to avoid a serious loss that stops short of physical damage such as the loss of data, time, or security. Cautions tell you what you should or should not do to avoid such losses, and the consequences of not heeding the caution. WARNING: Only trained and qualified personnel should install, replace, or service this equipment. Disconnect the system before servicing. viii UnityOne 200/400/1200/2400 Installati on and Configuration Guide Cautions have an icon to the left showing a black exclamation point drawn inside of a yellow triangle. Cautions also start with the word “CAUTION”. Note Notes tell you about information that might not be obvious, or that does not relate directly to the current topic, but that may affect relevant behavior. A note has an icon to the left showing a piece of note paper, and starts with the word “Note”. Tip Tips are suggestions about how you can perform a task more easily or more efficiently. A tip has an icon to the left showing a light bulb drawn inside and starts with the word “Tip”. CAUTION: Do not type del *.* from the root (C:\) directory. Typing del *.* from the root directory will destroy all the program and configuration data that your computer needs to run, and will render your system inoperable. Note: Most car rental companies no longer allow cash deposits in lieu of a credit card when renting a car. Non-credit card deposits can only be arranged by a lengthy application and approval process. Tip: Setting the logging parameter to “off” or “minimal” will improve your system’s processing performance, but it will make debugging very difficult in the event of a system crash. During system integration, you can set logging to “full” to ease debugging. After you have finished testing, set logging to “minimal” to improve performance. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The UnityOne systems have a full set of documentation. These publications are available in electronic format on your installation CDs. For the most recent updates, check the Threat Management Center (TMC) web site at https://tmc.tippingpoint.com Table 1: UnityOne Documents Audience Publication Location Hardware Technicians Quick Start UnityOne-50 Quick Start UnityOne-2000 Quick Start UnityOne 200/400/1200/2400 printed version in the UnityOne box, UnityOne Documentation CD, https://tmc.tippingpoint.com UnityOne-50 Installation and Configuration Guide UnityOne-2000 Installation and Configuration Guide UnityOne 200/400/1200/2400 Installation and Configuration Guide UnityOne Zero Power High Availability Installation Guide UnityOne Documentation CD, https://tmc.tippingpoint.com UnityOne Security Manager System Quick Start Guide printed version in the UnityOne box, UnityOne Documentation CD, https://tmc.tippingpoint.com server System Administrators UnityOne Local Security Manager User’s Guide UnityOne Documentation CD, https://tmc.tippingpoint.com UnityOne Local Security Manager Online Help available in the LSM application Unity One Command Line Interface Reference UnityOne Documentation CD, https://tmc.tippingpoint.com UnityOne Security Manager System Quick Start Guide hard copy in the shipping materials, UnityOne Documentation CD, https://tmc.tippingpoint.com UnityOne Security Management System User’s Guide UnityOne Documentation CD, https://tmc.tippingpoint.com UnityOne Security Management System Online Online Help available in the SMS application UnityOne Migration Guide UnityOne Documentation CD, https://tmc.tippingpoint.com x UnityOne 200/400/1200/2400 Installati on and Configuration Guide The TippingPoint Technologies customer support phone number is 1-866-681-8324. TippingPoint Technologies is committed to providing quality customer support to all of its customers. Each customer is provided with a customized support agreement that provides detailed customer and support contact information. For the most efficient resolution of your problem, please take a moment to gather some basic information from your records and from your system before contacting customer support, including your customer number (on the Customer Support Agreement and shipping invoice that came with your system). Table 2: Customer Support Information Information Location Your customer numberYou can find this number on your Customer Support Agreement and on the shipping invoice that came with your UnityOne system. Your IPS serial number You can find this number on the shipping invoice that came with your UnityOne system. Your IPS software version number You can find this information in the LSM in the System Stats frame, in the Update tab, or by using the CLI command. Your IPS system boot time You can find this information in the LSM in the System Stats frame. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 This chapter introduces UnityOne concepts and functionality. It provides an overview of the UnityOne Intrusion Prevention System (IPS) Model 200/400/1200/2400. UnityOne Overview ” on page1 “ UnityOne Environment ” on page2 “ UnityOne 200/400/1200/2400 Chassis Overview ” on page5 UnityOne 200/400/1200/2400 Installation and Configuration Guide V 1.4.2 UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The LSM and IPS maintain a connection to the Threat Management Center (TMC) which is located at TPT headquarters. The TMC monitors 10,000 sensors around the world for the latest attack UnityOne 200/400/1200/2400 Installation and Configuration Guide V 1.4.2 resiliency, high availability security for remote branch offices, small-to-medium and large enterprises UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The TMC offers the following end user service: Digital Vaccine — A subscription service that offers real-time continuous update capability. With Digital Vaccine, the IPSs pull new threat si gnatures from the TMC on a routine basis. Software Updates — Updated versions of the software you can use for your UnityOne system, including the Local Security Manager and Security Management System Documentation — Downloadable PDF files of software and hardware documentation, including release notes Technical Support — Details information for contacting and receiving technical support for user issues The UnityOne 200/400/1200/2400 system comprises a two rack unit (RU, 2 = 3.5 inches) chassis that uses a front-access, four (Model 200 IPS) or eight-port architecture, supporting connection to two to four network segments. It is rack-mountable on a 19- or 23-inch rack and contains two redundant hot swappable power supplies and three chassis cooling fans. There are no removable cards in the chassis, although some software commands may refer to slot 3 when configuring certain aspects of this IPS model. This is necessary to ensure Command Line Interface (CLI) compatibility with other models of the UnityOne, specifically the UnityOne Intrusion Prevention System Model 2000, which can include up to four Multi-Zone Defense (MZD) modules. The following figure displays the UnityOne Model 1200 front and rear panels. The following sections describe the UnityOne IPS Model 200/400/1200/2400 hardware components. Figure 2: UnityOne Model 1200 - Front Panel Figure 3: UnityOne Model 1200 - Rear Panel UnityOne 200/400/1200/2400 Installation and Configuration Guide V 1.4.2 Management Processing Function The management processing function performs the central processing and control functions for the UnityOne system. This section includes the following topics: ” on page6 “ Power Switch and Audible Alarm ” on page7 “ Liquid Crystal Display (LCD) ” on page8 There are two LEDs on the front panel, one for status and one for power. There is a power switch with an LED on the front panel. There are power supply LEDs located on the power modules on the back of the chassis. Color State Description Status LEDAmberBootupIndicates that the system is booting up. GreenOperationalIndicates that the system is powered and operating properly. Power LEDGreenOperationalIndicates that power has been applied and the system is operating properly. This LED is in the center of the Power switch. Pressing this switch when operational shuts down most of the power to the unit. Table 2: Segment Port LED Descriptions Color State Description Link (left side No lightNot- Synchronized MGM UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Note: You can determine the rev of the model at the CLI prompt. Use the command show version to list the REV model (B or C). Table 3: Management Port LED Descriptions (REV B - Intel 845) Color State Description LinkNo light10MbpsProvides information on the speed of data through the port. No light indicates data passes through the port at 10Mbps. Green100MbpsGreen means the port passes data through at 100Mbps. Color State Description UnityOne 200/400/1200/2400 Installation and Configuration Guide V 1.4.2 Color State Description Power LEDGreenOnPower module is functioning properly and AC power is on NoneOffPower module has a failure or AC power to the module is off Table 6: Power Supply Audible Alarm Descriptions Component State Description Audible AlarmOffPower module is functioning properly and AC power is on OnPower module has a failure or AC power to one of the power modules is off. The audible alarm can be silenced by correcting the fault or by pressing the red Reset button on the rear of the power supply chassis. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 This chapter discusses the requirements necessary to prepare your site for the installation of the UnityOne System. Safety Requirements ” on page10 “ Rack and Clearance Requirements ” on page12 “ Ventilation and Location ” on page12 “ Environmental Requirements ” on page13 “ Power Requirements ” on page13 “ System Grounding Requirements ” on page13 “ Cabling Requirements ” on page14 “ Fiber-Optic Connection Guidelines ” on page14 “ Unpack the UnityOne System ” on page15 UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Note: Note: This device complies with part 15 of the FCC Rules. Operation is subject to the following two conditions: this device may not cause harmful interference, and this device must accept any interference received, including interference that may cause undesired operation. CAUTION: Before you start the installation procedures, read this entire chapter for UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 WARNING: This warning symbol means danger. It tells you how to avoid physical injury to people or equipment. For people, injury includes anything from temporary conditions, such as pain, to irreversible conditions such as death. For equipment, injury means anything requiring repair. Warnings tell you what you should or should not do, and the consequences of not heeding the warning. Only trained and qualified personnel should install, replace, or service this equipment. Disconnect the system before servicing. This product requires short-circuit (overcurrent) protection, to be provided as part of the building installation. Install only in accordance with national and local wiring regulations. Do not operate the system unless all cards and top cover is in place. During this procedure, wear grounding wrist straps to avoid ESD damage to cards and modules. Risk of explosion if battery is replaced by an incorrect type. Dispose of used batteries according to the instructions. To reduce the risk of fire, use only No. 26 AWG or larger telecommunication line cord. This equipment is to be installed and maintained by service personnel only as defined by AS/NZS 3260 Clause 1.2.14.3 Service Personnel. This unit is intended for installation in restricted access areas only. When connecting equipment to IT power distributions, Phase to phase voltage must not exceed 240 V. WARNING: This product is a Class 1 laser product. Do not stare into the laser beam or view it directly with optical instruments. Install covers for the laser connectors when they are not in use. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Tipping Point recommends that you mount the UnityOne system in a standard 19-or 23-inch rack. The To prevent the unit from overheating, do not operate it in an area that exceeds the maximum recommended ambient temperature of 104° F (40° C). To prevent airflow restriction, allow at least 3 inches (7.6 cm) of clearance around the ventilation openings. Only trained and qualified personnel should install, replace, or service this equipment. Disconnect the system before servicing. Read all of the installation instructions before you connect the system to its power source. Never touch uninsulated telephone wires or terminals unless the telephone line has been disconnected at the network interface. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Environmental Specifications Description Temperature0 to 40 ° C (32 to 104 ° F) — Operating -20 to 80° C (-4 to 176 ° F) — Storage Humidity5 to 95% (non-condensing) AltitudeNo degradation up to 13K feet above sea level UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Before handling the UnityOne cards or modules, you must first ground yourself to the chassis. This action helps to prevent ESD damage, which can have devastating effects on the components. To ground yourself STEP 1 Attach one end of the ESD grounding strap to your wrist. Ensure that it makes good contact with your skin. STEP 2 Locate the grounding jack situated at the rear of the unit near the power supplies. STEP 3 Plug the other end of the ESD grounding strap into the grounding jack. The UnityOne ships with the following cables: Two AC power cables for the power supplies Fiber optic cables for SFP connections Null modem cable (DB-9 FM - DB-9 FM) for (COM) port Fiber-Optic Connection Guidelines The UnityOne IPS can use fiber-optic connectors. The connector type is a Small Form-Factor Pluggable (SFP) fiber optic connector that is LC-Duplex compatible. The UnityOne also supports the following fiber-optic media: Multi-Mode Short Reach Fiber (MMSRF) Single-Mode Intermediate Reach Fiber (SMIRF) Single-Mode Long Reach Fiber (SMLRF) Note: To complete this procedure, you must use an ESD grounding strap. Note: The UnityOne IPS can use Lucent Connector (LC) fiber-optic cables in WARNING: Fiber-optic connections and connectors are Class 1 laser products. Do not look into the connectors and always cover the connectors when not in use. Do not remove the SFP transceivers from the port even if the port is not being used. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Unpack the UnityOne System Each system chassis is securely packaged in a shipping box. CAUTION: ESD can damage the UnityOne if you do not take necessary precautions. Installation and maintenance personnel should be properly grounded using ground straps to eliminate the risk of ESD damage to the equipment. All cards and modules are subject to ESD damage whenever they are removed from the chassis. Use caution when opening the UnityOne boxes. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 This chapter discusses how to install and configure the UnityOne Intrusion Prevention System and its components. Setup Wizard for more information. This chapter includes the following sections: Install the UnityOne Chassis ” on page18 “ Attach Network Connections ” on page21 “ Check LEDs ” on page22 “ UnityOne Setup Wizard ” on page23 UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 During the unpacking and installation of the UnityOne IPS device, you should consider the following for Transparent Network High Availability (TNHA) configuration. Before configuring the TNHA settings, you must consider and perform specific hardware and software configurations for the devices Bolt the UnityOne to the Rack Connect the Dual Power Supply WARNING: Security caveat: A hi-jacked IPS or a rogue IPS that “steals” the IP address of a TRHA partner can communicate with a legitimate IPS. Table 1: Rack Space Requirements Requirement Configuration Type Min/Max Number of Chassis Physical Size of Rack (Total number of chassis must be or = 42 RUs). Each UnityOne IPS requires 2RU. Typical 21 chassis maximum on a seven foot rack Network Equipment Building Systems (NEBS) (Total number of chassis must generate: or = 1372 Watts) Typical 7 chassis generating or = 196 Watts UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Use the following guidelines when bolting the UnityOne to the rack: If the rack comes with stabilizing devices, install the stabilizers before mounting or servicing the unit in the rack. If the rack is partially filled, load the rack from the bottom to the top with the heaviest component at the bottom of the rack. If you plan to expand your system to include additional UnityOne systems in the future, allow space in the rack for additions. During the initial installation, keep in mind the weight distribution and stability of the rack. After you have bolted the UnityOne to the rack, you need to attach the dual power supply AC connections. This section details various options for connections. To gain the protection for these options, follow the diagrams for the connections to your dual power supply. You can also receive a Right Angle IEC Receptacle power cord for the device. You can use this cable for connecting power to the device in cases where you may not have enough room for a straight power connection cable. This cable helps in situations when you need to install a device in a tight rack with a WARNING: To prevent bodily injury when mounting or servicing this unit in a rack, you must take special precautions to ensure that the system remains stable. Note: You should apply AC power to both power supplies to insure uninterrupted service to the UnityOne and to avoid audible alarms. Note: Cable cord retention latch will not work with right angle power connectors. Figure 1: Protection for Power Supply Failure UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 The following figure displays connections to provide protection against power supply failure and power failure on the one power feed circuit. The following figure displays connections to provide protection against power supply failure and power failure on both power feed circuits. The following figure displays connections to provide maximum protection against power supply failure and power failure on both power feed circuits. Figure 2: Protection for Power Supply Failure and One Power Feed Circuit Figure 3: Protection for Power Supply Failure and Both Power Feed Circuits Figure 4: Maximum Protection for Power Supply Failure and Both Power Feed Circuits UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 WARNING: Optical ports on this module are classified as Class 1 Lasers. Protection plugs should be installed when ports are not in use. The SFP transceivers should not be removed from the optical ports, even if the ports are not being used. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Color State Description StatusAmberBoot upIndicates that the IPS is in the process of booting up. Or if it stays amber the IPS may be faulty and should be returned to the manufacturer. Solid greenPower OnIndicates that the IPS has power and is functioning properly. No lightPower OffIndicates that the power is not on. Power (in button)No light Power OffIndicates that the power is not on. Solid greenPower OnIndicates that power has been applied to the chassis. Activity No lightNo data trafficProvides information about UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Setup Wizard UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Additional Configuration ” on page48 for details. Note: You can only run the Out-of-the-Box LCD Setup Wizard on an IPS device. IPS devices do not have a LCD panel for entering values. Note: If you need to return to the setup wizard after running the initial setup, see the Unity One Command Line Interface Reference . The commands and UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 This chapter includes the following sections: Out-of-the-Box Terminal Setup Wizard ” on page26 “ Out-of-the-Box LCD Setup Wizard ” on page37 “ Additional Configuration ” on page48 TNHA Software Configuration During the unpacking and installation of the UnityOne IPS device, you should consider the following for Transparent Network High Availability (TNHA) configuration. Before configuring the TNHA settings, you must consider and perform specific hardware and software configurations for the devices WARNING: Security caveat: A hi-jacked IPS or a rogue IPS that “steals” the IP address of a TRHA partner can communicate with a legitimate IPS. Note: For detailed information on commands, see the Unity One Command Line Interface Reference . The guide also includes these Out-of-the-Box Setup Wizard instructions. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The Out-of-the-Box Setup Wizard runs on a workstation or laptop connected to the serial port of the device. The configuration dialogs run are shown in the following table: Table 1: Out-of-the-Box Setup Wizard Configuration Settings Out-of-the-Box Setup Subsequent Setups Settings Account Security Level—account security level Super-user Data—super-user login name super-user password Host Management Port Options Host Management Port OptionsIP address network mask host name location Default GatewayDefault Gatewaygateway address Timekeeping OptionsTimekeeping OptionsSNTP or CMOS clock timezone daylight saving time SNTP: primary SNTP server secondary SNTP server CMOS clock: date time Web, CLI, and SNMP Server Options Web, CLI, and SNMP Server Options HTTPS or HTTP SSH and/or telnet NMS ConfigurationNMS ConfigurationNMS IP address and port NMS community string Restricted SMS AccessRestricted SMS AccessSMS IP address —Ethernet Portsenable ports line speed duplex setting auto negotiation UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 This section includes the following sections: Account Security Level ” on page28 “ Super-User Data ” on page29 “ Host Management Port Options ” on page31 “ Default Gateway Options ” on page32 “ Timekeeping Options ” on page33 “ Web, CLI, and SNMP Server Options ” on page34 “ NMS Settings ” on page36 “ Restricted SMS Access ” on page36 “ Additional Configuration ” on page48 Out-of-the-Box Setup Subsequent Setups Settings UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Account Security Level below. Super-User Password A login password for the super-user account. See Valid Passwords below. Table 2: Security Levels Level Description Level 0User names cannot have spaces in it. Passwords are unrestricted. Level 1User names must be at least 6 characters long without spaces. Passwords must be at least 8. Level 2Includes Level 1 restrictions and requires the following: 2 alphabetic characters, 1 numeric character, 1 non-alphanumeric character (special characters such as ! ? and *). UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Valid Login Names Valid Login Names Invalid Login Names fjohnsonfredj (too short) fredj123fred j 123 (contains spaces) fredj-123fj123 (too short) fredj-*123fj 123 (contains spaces) Table 4: Password Examples for Level 2 Security Valid Passwords Invalid Passwords my-pa55wordmy-pa55 (too short) my-b1rthdaymybirthday (must contain numeric) myd*g’snam3mydogsnam3 (must contain a non-alphanumeric character) UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The Super-user Data dialog follows: Please enter a user name that we will use to create your super- user account. Spaces are not allowed. Name: superuser Do you wish to accept [superuser] Y,[&#xY,[1;.3N;&#x]000;N]:y Please enter your super-user account password: Verify password: Saving information...Done Your super-user account has been created. You may continue initial configuration by logging into your device. After logging in, you will be asked for additional information. The login prompt should appear in approximately 90 seconds. Host Management Port Options CAUTION: When configuring the Host Management Port, you must assign it an IP address UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 The Host Management Port options dialog follows: The host management port is used to configure and monitor this device Note: If the IPS Host Management Port and the workstation from which you will manage the IPS are on different subnets, you must define a default gateway or an additional route to enable network-based management of your IPS. Tip: Using additional routes instead of a default gateway helps assure that your Management Port will only communicate with explicitly authorized network segments. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Timekeeping Options Note: If you use the CLI show sntp command, the IPS displays the current settings for Primary Addr and Secondary Addr. If SNTP timekeeping is turned off (conf t no sntp), the last SNTP servers defined (or default if never defined) will be shown. (conf t and cft are useful abbreviations for configure terminal.) CAUTION: Using external SNTP servers could possibly make your IPS susceptible to a man-in-the-middle attack. It is more secure to use an SNTP server on a local, protected network. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 The Timekeeping Options dialog follows: Note: You do not need to run any servers at all if you wish to control your IPS only through the serial port, but you will not be able to manage filters, if you choose to do this. You can turn off all servers by using the following commands: conf t server no http conf t server no https conf t server no ssh UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Name Default Setting Required By SSHONsecure CLI over network CAUTION: CAUTION: The Setup Wizard enables you to activate HTTP. HTTP is not a secure service. If you enable HTTP, you endanger the security of your UnityOne device. Use HTTPS instead of HTTP for normal operations. Note: When you modify HTTPS from its current setting, you must reboot to enact the changes. After rebooting, the IPS will run the new setting for the HTTP or HTTPS server. You can use the CLI reboot command. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 SNMP Server The SNMP Server provides access to interface counters and other statistics, configuration data, and general system information via the Simple Network Management Protocol (SNMP). The SNMP server must be enabled to use SMS management or to allow NMS access. The Server Options dialog follows: Server options allow you to enable or disable each of the UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The Restricted SMS Access dialog follows: You have the option to restrict access to your device by TippingPoint Security Management Systems (SMSs) such that only an SMS at a specified IP address can manage the device. Would you like to restrict SMS access?&#xY,[N;&#x]000; Y,[N]: y Additional Configuration on page48 for instructions on additional configuration options for the UnityOne system. Terminal Setup Wizard to configure your device. Out-of-the-Box Terminal Setup Wizard ” on page26 for instructions. Note: repeatedly, returning to the first option. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 The configuration dialogs run are listed in the following table: This section includes the following sections: Using the LCD Panel ” on page38 “ Begin Setup ” on page40 “ Super-User Account ” on page41 “ Host Management Port ” on page43 “ Default Gateway Options ” on page45 “ Timekeeping Options ” on page46 “ ” on page47 “ Additional Configuration ” on page48 Using the LCD Panel Settings UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The following image displays the general layout of the IPS panel. Button Function Select ButtonUse to choose a Yes or accept option. This button accepts a configuration you enter and continues to the next step of the setup wizard. You must press this button before you enter configuration settings during the LCD Setup Wizard or when using the LCD menu options. Cancel ButtonUse to cancel an option or step backwards through the setup wizard. Each time you use the cancel button, the setup backs Note: For instructions on using the IPS menu options, see Appendix D‚ “ IPS Menu Options UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Note: You can only run the LCD Setup Wizard on an IPS device. IPS devices do not have a LCD panel for entering values. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 . A series of messages display, indicating that the device is doing the following: Press "check" To Accept & Proceed" Press "x" to Cancel & Backup Generate Name & Password CopyTheFollowing Name & Password On a workstation or laptop connected to the serial port, the following message displays: Initial Setup is currently in progress via the LCD panel. No input here is possible till LCD operation is complete or canceled. Super-User Account After generating the super-user account, the Setup Wizard displays the super-user account name and password. You can regenerate these by pressing the Cancel Button . This section includes the following: To Configure the Super-User Name ” on page42 “ To Configure the Super-User Password ” on page43 Super-User Name CAUTION: You must copy down the displayed super-user user name and password to access and manage the device. The account information displays according to the instructions in this section on the LCD panel. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Account Security Level The security level and restrictions for entering user names and passwords. The default setting is 2, which includes the following settings: User names must be at least 6 characters long without spaces. Passwords must be at least 8 characters long and include the following: —2 alphabetic characters —1 numeric character —1 non-alphanumeric character (special characters such as ! ? and *) To Configure the Super-User Name The LCD displays the following message about the super-user name: SuperUser Name 22q2st STEP 1 Copy down the super-user account name exactly as displayed. The user name is case sensitive. STEP 2 To accept, press the Select Button STEP 3 To cancel and regenerate the name, press the Cancel Button once. The wizard will return to the following prompt, generating a new user name and password: Generating User Name & Password UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 To Configure the Super-User Password The LCD displays the following message about the super-user password: SuperUser Passwd 07/IjuWD STEP 1 Copy down the super-user account password exactly as displayed. The password is case sensitive. STEP 2 To accept, press the Select Button STEP 3 To cancel and regenerate the password, press the Cancel Button twice. The wizard will step To Configure the Host Name ” on page44 “ To Configure the Management IP ” on page44 “ To Configure the Network Mask ” on page45 CAUTION: When configuring the Host Management Port, you must assign it an IP address UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Network Mask STEP 3 To increase or decrease the number of the selected place, press the Option Selection Buttons STEP 4 To accept the change and save, press the Select Button . To regenerate the number, press the Cancel Button three times. The wizard will return to the following prompt, generating a new user name, password, and IPS device name: Generating User Name & Password To Configure the Management IP The LCD displays the following message about the Management IP address: Management IP? 127.000.000.001 STEP 1 The Setup Wizard defaults the management IP address as 127.000.000.001. You can enter the IP address using the panel buttons. STEP 2 To move forward and back through the number places, press the Movement Buttons STEP 3 To increase or decrease the number of the selected place, press the Option Selection Buttons STEP 4 To accept the change and save, press the Select Button . To cancel and move back a level, press the Cancel Button Note: UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 STEP 3 To increase or decrease the number of the selected place, press the Option Selection Buttons STEP 4 To accept the change and save, press the Select Button . To cancel and move back a level, press the Cancel Button Default Gateway Options STEP 2 To accept the change and save, press the Select Button . To cancel and move back a level, press the Cancel Button STEP 3 If you select yes and press the Select Button , the LCD prompts with the following: Gateway IP? 000.000.000.000 Note: Note: If the IPS Host Management Port and the workstation from which you will manage the IPS are on different subnets, you must define a default gateway or an additional route to enable network-based management of your IPS. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 STEP 4 You can enter a different IP using the panel buttons. STEP 5 To move forward and back through the number places, press the Movement Buttons STEP 6 To increase or decrease the number of the selected place, press the Option Selection Buttons STEP 7 To accept the change and save, press the Select Button . To cancel and move back a level, press the Cancel Button Timekeeping Options Note: Note: If you use the CLI show sntp command, the IPS displays the current settings for Primary Addr and Secondary Addr. If SNTP timekeeping is turned off conf t no sntp ), the last SNTP servers defined (or default if never defined) will be shown. ( conf t and cft area useful abbreviations for configure terminal.) CAUTION: Using external SNTP servers could possibly make your IPS susceptible to a man-in-the-middle attack. It is more secure to use an SNTP server on a local, protected network. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 To Configure the Time Zone The LCD displays the following message: STEP 1 The Time Zone option defaults as Universal Standard Time (UST) (also known as Greenwich . Pressing the up button selects time zones with a later time zone than GMT. Pressing the down button selects time zones with an earlier time zone than GMT. STEP 2 To accept the change and save, press the Select Button . To cancel and move back a level, press the Cancel Button To Configure the Daylight Saving Time The LCD displays the following message: Daylight Saving? STEP 1 The Time Zone option defaults as yes . To change the option between yes and no, press the Option Selection Buttons STEP 2 To accept the change and save, press the Select Button . To cancel and move back a level, press the Cancel Button to back up through the levels to make changes. Once you press the Select Button Note: Selecting sets the IPS to automatically adjust for daylight saving time. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Any workstation or laptop connected to the serial port displays the following message: Additional Configuration ” on page48 for instructions on additional configuration options for the UnityOne system. Ethernet Port Settings ” on page48 “ Management Port Routing Options ” on page50 “ Default Email Contact Information ” on page51 “ Remote Syslog Server ” on page52 Note: To run portions of the setup again or to configure further settings, refer to the Unity One Command Line Interface Reference . Using the setup command in the CLI, you can modify and configure settings such as timekeeping, SMS, NMS, Tip: CAUTION: UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Segments A segment is a contiguous port pair on your Multi-Zone Defense Module. A defense module has up to 5 segments, depending on the model of the IPS. Segments are referred to by a combination of the slot number in which their module is installed and the number of their port pair. For example, if a Multi- Zone Defense (MZD) Module is installed in Slot 7, from left to right, the segments for that module would be called: 7:1, 7:2, 7:3, 7:4, and 7:5. In the Intrusion Prevention System configurations, where the MZD equivalent defaults to a slot 3 designation, the segments are 3:1, 3:2, 3:3, and 3:4. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Enter [A]ccept, [C]hange, or [E]xit without saving [C]: a CAUTION: CAUTION: Define additional routes with care. The broader a definition of additional routes you use, the greater the chance that an unauthorized user can reach your IPS. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Enter [A]ccept, [C]hange, or [E]xit without saving [C]:c Enter the number of the entry you want to change []:1 UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 period. The timer continues to count and send notifications at the end of each period. A valid entry will CAUTION: Only use remote syslog on a secure, trusted network. Remote syslog, in adherence to RFC 3164, sends clear text log messages using the UDP protocol. It does not offer any additional security protections. Therefore, you should not use remote syslog unless you can be sure that syslog messages will not be intercepted, altered, or spoofed by a third party. Tip: For more information about syslog, consult the syslog server documentation that came with your operating system or syslog software. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Technical This appendix provides hardware and software specifications for the UnityOne IPS. This appendix contains the following sections: Hardware specifications Software specifications This section details the specifications for the hardware components: The following table provides technical specifications for the UnityOne Intrusion Prevention System. Table 1: UnityOne IPS Specifications Specification Description Dimensions2RU’s— 3.5 in. x 17.25 in. x 15.0 in. (8.9 cm x 43.8 cm x 30.5 cm) Rack mountable in a 19" and 23" front or center mount racks. Weight27 lb (12.3 kg) UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Technical Specifications The following table provides technical specifications on the Model 200/400/1200/2400 hardware. Network Interfaces4 (Model 200) or 8 Gigabit Ethernet (GigE) copper or optical interfaces, supporting up to 2.0 Gbps of traffic. Power Requirements100 to 240 VAC, 6-3 amperes @ 50-60 Hz Maximum Power Consumption: 300 Watts Service Provider operating requirements Temperature0 to 40 ° C (32 to104 ° F) — Operating -20 to 70° C (-4 to 158 ° F) — Storage Specification Description Table 2: Model 200/400/1200/2400 Hardware Specifications Specification Description Internal hardwareProcessorPentium 4 card at 2.8 GHz with 256MB of DRAM. Hard drive capacity of minimum30 GB 1st level cache: 32 KB on CPU full-speed cache 2nd level cache: 256 KB on CPU full-speed cache BIOS: 2 Mb of VxWorks Flash Bus PCI, 32 bits at 33 MHz Power consumptionMax 300W External interfacesTwo: one 10/100 Ethernet, one DB-9 serial. Bus interfacePCI bus, PCI Industry Consortium Manufacturing Group (PICMG)-compliant UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 Software Specifications To run the UnityOneIntrusion Prevention System (IPS), you need one of the following software applications/devices. Maximum data rates (per port)1.25 Gigabit per second External interfaces4-8 ports (depending on model, standard copper or fiber or a combination of each) Laser Modules (SFP) - not available on all IPS models 850 nanometers, Multi Mode: 500m Table 2: Model 200/400/1200/2400 Hardware Specifications Specification Description Table 3: Software Specifications for the UnityOne IPS Specification Description UnityOne Security Management System (SMS) Software, Version 1.2 and above. (optional) SMS can optionally be used to manage multiple UnityOne Intrusion Prevention Systems. 1 Windows-based PC running Windows 9x, NT or 2000 Must be attached to your network (PC needs a serial port available) UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 This appendix provides connector and pinout information for the UnityOne system. This appendix contains the following sections: Management Processor Connectors Port Connectors Management Processor Connectors See the following sections for information on Management Processor connectors. DB-9 (COM) Connector The following figure displays a -DB-9 connector. Figure 1: DB-9 Connector UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 DB-9 Connector Pinout Pin Number Signal Name Figure 2: RJ-45 Connector Table 2: RJ-45 Connector Pinouts Pin Number Signal Name 1Transmit positive (Tx+) 2Transmit negative (Tx-) 3Receive positive (Rx+) 4Ground (GND) 5Ground (GND) 6Receive negative (Rx-) 7Ground (GND) 8Ground (GND) UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 The UnityOne IPS supports two types of port connectors, one of which, the RJ-45, has pinouts shown below. The other type, the fiber-optic connector, has no pinouts and is not shown here. The following figure displays an RJ-45 connector. Pin Number Signal Name 1Twisted Pair 1 positive (TP1+) 2Twisted Pair 1 negative (TP1-) 3Twisted Pair 2 positive (TP2+) 4Twisted Pair 3 positive (TP3+) 5Twisted Pair 3 negative (TP3-) 6Twisted Pair 2 negative (TP2-) 7Twisted Pair 4 positive (TP4+) 8Twisted Pair 4 negative (TP4-) Figure 4: SFP Transceiver UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 Fiber Input Signal Left sideTransmit Right sideReceive UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 This appendix provides information for replacing a power supply module. It includes the following section: Replacement Procedures ” on page61 The power supply system contains two hot swappable AC-DC power supply modules. When the power supply is faulty or needs replacing, an alarm will sound. To replace a faulty power supply module, see the following instructions. To replace the power supply STEP 1 When a fault occurs with a power module, an audible alarm sounds. This alarm can be silenced by pressing the red Reset button located at the rear of the chassis next to the inside mounted power module. STEP 2 Locate the faulty power module by checking the LEDs on the power modules. The faulty module’s LED will be off. STEP 3 Move the retention bracket to access the power cord and module: WARNING: Power supply module removal and replacement should be performed by quality personnel. The procedure could result in electrical shock hazards if performed incorrectly. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 STEP A Loosen the screw of the retention bracket that is used to hold the power cord and faulty power module in place. STEP B Rotate the bracket 90 degrees. STEP C Tighten the retention bracket screw to hold the bracket out of the way. STEP 4 Unplug the AC power cord to Remove power from the faulty module. STEP 5 To remove the faulty power module, press down the latching lever located at the top of the faulty module and pull the module from the chassis. STEP 6 To install the power supply module replacement (PWRSP-0000000007), position the replace- ment in the open slot. Push the module in until the latching lever locks in place. STEP 7 Plug in the AC power cord and check to see that the power module status LED is green. STEP 8 Replace the retention bracket: STEP A Loosen the retention clip screw. STEP B Rotate the bracket into a locked position. STEP C Retighten the retention clip screw. WARNING: Failure to remove the power cord from the power supply prior to removal could result in an electrical shock hazard. WARNING: The power supply module may be hot when removed. You should take precautions in handling the module to prevent contact with hot surfaces. The cover of the power modules is used as a heat sink and can reach temperatures of 50 degrees Celsius under a full load. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 This appendix provides information on the IPS menu options and LCD messages. On the front panel of IPS LCD Panel ” on page64 “ Backlight Set ” on page65 “ Contrast Set ” on page66 “ Halt OS ” on page66 “ Layer 2 Fallback/Recover System ” on page67 “ Serial # Query ” on page68 “ Reload OS ” on page68 “ Reset Log Alert ” on page68 “ IPS Messages ” on page69 UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 IPS LCD Panel Button Function Select ButtonUse to choose a Yes or accept option. This button accepts a configuration you enter and continues to the next step of the setup wizard. You must press this button before you enter configuration settings during the LCD Setup Wizard or when using the LCD menu options. Cancel ButtonUse to cancel an option or step backwards through the setup wizard. Each time you use the cancel button, the setup backs UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 To enable the LCD menu, press the Select Button . The device displays the following: Menu-- up/down to view To move through the available menu choices, press the Option Selection Buttons . The LCD message describes them as the up/down buttons. Timeout While using the panel buttons, you must make selections within a certain amount of time or the panel will timeout. The IPS LCD will timeout after 15 seconds of inactivity and return to the default display. To return to the options menu, press the Select Button and Option Selection Buttons LCD Menu Overview The LCD menu of the IPS provides the following options: Backlight Set — Increases or decreases the brightness of the LCD panel Contrast Set — Increases or decreases the contrast of the LCD panel Halt OS — Halts the entire IPS and deactivates the panel buttons. You use this option prior to unplugging the device. HA Query State — Displays the High Availability (HA) state of the IPS Layer 2 Fallback/Recover System — Places the IP in Layer 2 Fallback. Once in Fallback mode, the option is replaced with the Recover option. When selected, the Recover option places the IPS back in normal mode. Serial # Query — Displays the IPS device’s serial number Reload OS — Reboots the IPS Reset Log Alert . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Backlight Set option. STEP 3 Select the option by pressing the Select Button . The LCD displays the following: Backlight 44 ||||||| STEP 4 Press the Option Selection Buttons buttons to increase or decrease the contrast. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 When you press up, the vertical bars are replaced with . When you press down, the vertical to enter the change. The LCD prompts for verification: Backlight 50 Are You Sure? STEP 6 Press Select Button to verify the change. Press Cancel Button to cancel the change. LCD returns to the default display. . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Contrast Set option. STEP 3 Select the option by pressing the Select Button . The LCD displays the following: Contrast 15 ||||||| STEP 4 Press the Option Selection Buttons buttons to increase or decrease the contrast. When you press up, the vertical bars are replaced with . When you press down, the vertical to enter the change. The LCD prompts for verification: Contrast 16 Are You Sure? STEP 6 Press Select Button to verify the change. Press Cancel Button to cancel the change. LCD returns to the default display. When you halt the system, the device performs an orderly shutdown to prepare for having the power turned off or removal of the IPS. You use this option when you need to replace a power supply or UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 STEP 1 On the LCD panel, press the Select Button . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Halt OS? option. STEP 3 Select the option by pressing the Select Button . The LCD prompts for verification: Are you sure? STEP 4 If you want to halt the system, select yes using the Option Selection Buttons and press the Select Button . Press Cancel Button to cancel. The system performs an orderly shutdown and is halted. To restart the system, you must power the system down and turn it back on. When you query for the HA state, the device displays the current High Availability state of the device. STEP 1 On the LCD panel, press the Select Button . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the HA Query State option. STEP 3 Select the option by pressing the Select Button . The LCD displays one of the following: The LCD displays Normal if the device is not in Layer 2 Fallback. The LCD displays the cause for the mode change, such as Layer 2 Fallback/Recover System When you fallback a system, you manually place the device in Layer 2 Fallback, also known as Intrinsic Network HA. If the device is in Fallback mode, the menu displays a Recover option. The Recover option manually takes the device out of Layer 2 Fallback, returning it to a normal mode. To place the device in Fallback mode STEP 1 On the LCD panel, press the Select Button . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Layer2 Fallback? option. STEP 3 Select the option by pressing the Select Button . The LCD prompts for verification: Are you sure? STEP 4 If you want to place the device in Layer 2 Feedback, select yes using the Option Selection Buttons and press the Select Button . The system is placed in Layer 2 Fallback mode. To place the device in Recover mode STEP 1 On the LCD panel, press the Select Button . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Recover? option. UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 STEP 3 Select the option by pressing the Select Button . The LCD prompts for verification: Are you sure? STEP 4 If you want to return the system to a normal mode, select yes using the Option Selection Buttons and press the Select Button . The system is removed from Layer 2 Fallback to a normal mode. When you query for the serial number, the device displays the serial number for the IPS device. STEP 1 On the LCD panel, press the Select Button . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Serial # Query option. STEP 3 Select the option by pressing the Select Button . The LCD displays the serial number for the device. When you reload a system, you reboot the device. The device performs an orderly shutdown and reloads the operating system. You should perform this function when you want to recover from a . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Reload OS? option. STEP 3 Select the option by pressing the Select Button . The LCD prompts for verification: Are you sure? STEP 4 If you want to halt the system, select yes using the Option Selection Buttons and press the Select Button . The system performs an orderly shutdown and reboots, which reloads the operating system. . The buttons activate. STEP 2 Press the Option Selection Buttons buttons to move to the Reset Log Alert? option. STEP 3 Select the option by pressing the Select Button . The LCD prompts for verification: Are you sure? STEP 4 Press Select Button . LCD returns to the default display. UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 When the IPS device panel is not activated or in-use, it cycles through a set of system information. The information only displays if it has a value other than zero (0). Table 2: IPS Messages Message Description Permit/Block Stats Displays the stats: (p)ermit or (b)lock Sys log CRIT & ERR alert Displays alert of a reset from the LSM as usual or from the LCD menu options listed in this table Thermal Alert Displays if the CPU’s Thermal Control Circuit has stepped down the CPU’s speed Memory Usage Alert Displays the state: yellow or red Disk Space Usage Alert Displays the state: yellow or red Intrinsic HA Alert IPS device in is Layer 2 Fallback mode Displays the state of the hard disk: yellow or red WARNING: If the IPS displays the "Thermal Alert","CPU TCC set" alert, the device’s UnityOne 200/400/1200/2400 Installa tion and Configuration Guide V 1.4.2 UnityOne 200/400/1200/2400 Installation a nd Configuration Guide V 1.4.2 account security levels28, 42 level 029 level 129 level 229 action set1 additional config23, 48 default email contact51 72 UnityOne 200/400/1200/2400 Installati on and Configuration Guide dual power supply19 rack space18 LEDs22 UnityOne 200/400/1200/2400 Installation an d Configuration Guide V 1.4.2 config settings38 default gateway45 host mgmt port43 panel overview38 buttons39 super-user41 timekeeping46 LCD setup wizard23 terminal26 account security28 config settings27 default gateway32 host mgmt port31 NMS36 SMS36 super-user29 timekeeping33 web/CLI/SNMP34 terminal setup wizard23 Simple Network Management Protocol36 Simple Network Time Protocol33 Single-Mode Intermediate Reach Fiber14 Single-Mode Long Reach Fiber14 small form-factor pluggable transceivers59 SMIRF14 SMLRF14 SMS2, 4, 36, 55 SNMP36 SNTP27, 33 SSH27, 34, 35 Stateful IP filtering2 super-user29 account security42 name29, 41 valid30 password29, 41 valid30 system grounding requirements13 technical specifications53 hardware53 software55 technical supportx 74 UnityOne 200/400/1200/2400 Installati on and Configuration Guide