Need help?Do you have a question about the Allen-Bradley Stratix 5950 and is the answer not in the manual?
General| Series | Stratix 5950 |
|---|---|
| Category | Security Appliance |
| Mounting | DIN Rail |
| Switching Capacity | 20 Gbps |
| Power Supply | Redundant DC input |
| Operating Temperature | 70 °C |
| Security Features | Firewall, VPN, IPS |
| Management | Web-based, CLI, SNMP |
| Ports | 8 x 10/100/1000Base-T RJ45 ports, 2 x 100/1000Base-X SFP ports |
Provides a general introduction to the Stratix 5950 Security Appliance and its key features.
Details the physical components, ports, and specifications of the Stratix 5950 Security Appliance.
Describes the status indicators for the Stratix 5950 Security Appliance, including EIP ModStatus, Ports, and Power Inputs.
Explains how to install the security appliance and use the Express Setup button for initial configuration.
Introduces industrial firewall technology and its role in securing industrial automation networks.
Presents a logical overview of the industrial firewall (IFW) components: ASA and FirePOWER modules.
Discusses how firewalls segment networks and prevent unauthorized traffic entry or exit.
Explains Deep Packet Inspection (DPI) and how FirePOWER provides Intrusion Prevention Systems (IPS) and IDS.
Covers Transparent Mode, Routed Mode, and NAT configurations for industrial firewalls.
Describes architectures for Redundant Star and Ring Cell/Area Zone Protection using firewalls.
Details the process for configuring time synchronization using NTP for firewall and FirePOWER components.
Lists prerequisites and outlines initial setup steps including Ethernet devices, device setup, and startup wizard.
Guides through configuring administrative settings for the FirePOWER module using PuTTY.
Details the steps to configure HTTPS certificate information for secure access.
Explains how to create a test policy to block CIP administrative traffic and verify DPI functionality.
Describes how to switch the security appliance from Monitor Mode to Full Blocking Configuration.
Provides instructions for configuring Precision Time Protocol (PTP) to synchronize device clocks.
Describes the various status indicators on the Stratix 5950 Security Appliance and their meanings.
Discusses the benefits and approach of centralized management for multiple security appliances.
Explains how FireSIGHT Management Center manages the FirePOWER module for comprehensive security.
Details Cisco Security Manager's role in scalable, centralized management of the firewall component.
Provides recommendations for managing the IFW, favoring centralized management for most deployments.
Explains hardware bypass relay support, triggered by power failure or manual CLI commands.
Lists ASA CLI commands to support hardware bypass feature configuration and status checking.
Discusses considerations and limitations when enabling the hardware bypass feature.
Describes the CIP preprocessor's role in interpreting the CIP protocol for policy rule authoring.
Recommends using CIP Application Categories to configure CIP rules in Access Control Policies.
Details specifying CIP protocol parameters for granular traffic identification using IDS preprocessor rules.
Explains the two ASA firewall modes: Routed and Transparent, and FirePOWER module modes.
Discusses placement and deployment options (inline, passive) based on policy enforcement and risk tolerance.
Describes the 'bump in the wire' transparent mode where traffic is inspected by the firewall.
Explains monitor-only mode for evaluating traffic without impacting the network, logging events only.
Covers routed mode where the ASA acts as a layer 3 router hop in the network.
Details passive monitor-only mode for non-impacting traffic monitoring via SPAN ports.
Describes use cases for separating machines/skids from higher-level networks for security.
Explains firewall placement for redundant star network configurations supporting Layer 2 EtherChannel links.
Step-by-step guide to update the ASDM software image from a local computer.
Instructions for updating the ASA software image using the ASDM Home dialog.
Covers backing up controls license and installing SFR updates via CLI.
Procedure to reset the device to factory defaults, involving software installation.
Guides on uninstalling an old SFR module and reinstalling it via the command line.
Instructions for installing specific SFR patch updates (5.4.1.4 and 5.4.1.6).
Steps to perform a final reset on the system using the ASA CLI.
Methods for obtaining the current running software versions (ASDM and ASA console) for troubleshooting.
Procedure to reset the device to factory defaults, involving software installation.
Guides on uninstalling an old SFR module and reinstalling it via the command line.
Instructions for installing the SFR 5.4.1.2 update, recommended if not updating to 6.4.
Instructions for installing specific SFR patch updates (5.4.1.4 and 5.4.1.6).
Steps to perform a final reset on the system using the ASA CLI.
To Next Page