Version 5.2 Sourcefire 3D System Installation Guide 84
Installing a Sourcefire 3D System Appliance
Testing an Inline Bypass Interface Installation
Chapter 3
ensure that you properly install these devices and quantify any latency introduced
by their installation.
IMPORTANT! Your switch’s spanning tree discovery protocol can cause a
30-second traffic delay. Sourcefire recommends that you disable the spanning
tree during the following procedure.
The following procedure, applicable only to copper interfaces, describes how to
test the installation and ping latency of an inline bypass interface. You will need to
connect to the network to run ping tests and connect to the managed device
console.
To test a device with inline bypass interface installation:
A
CCESS: Admin
1. Ensure that the interface set type for the appliance is configured for inline
bypass mode.
See Configuring Inline Sets in the Sourcefire 3D System User Guide for
instructions on configuring an interface set for inline bypass mode.
2. Set all interfaces on the switch, the firewall, and the device sensing interfaces
to auto-negotiate.
IMPORTANT! Cisco devices require auto-negotiate when using auto-MDIX
on the device.
3. Power off the device and disconnect all network cables.
Reconnect the device and ensure you have the proper network connections.
Check cabling instructions for crossover versus straight-through from the
device to the switches and firewalls, see Cabling Inline Deployments on
Copper Interfaces on page 34.
4. With the device powered off, ensure that you can ping from the firewall
through the device to the switch.
If the ping fails, correct the network cabling.
5. Run a continuous ping until you complete step 10.
6. Power the device back on.
7. Using your keyboard/monitor or serial connection, log into the device using an
account with Administrator privileges. The password is the same as the
password for the device’s web interface.
The prompt for the device appears.
To Next Page
Loading...