Français dropdown-ico

Manuel d’utilisation Cisco Systems OL-6109-01

22 pages 0.3 mb
Télécharger

Aller à la page of 22

Summary
  • Cisco Systems OL-6109-01 - page 1

    CH A P T E R 4-1 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 4 Zone Configuration This chapter describes zone confi guration. It includes the foll owi ng major sections: • Basic Zone Conf iguration • Zone Remote Guard List • Zone Traf f ic Learning • Zone Detection Basic Zone Configuration This section describes the ini tial Zone ...

  • Cisco Systems OL-6109-01 - page 2

    Chapter 4 Z one Configuration Basic Zone Configur ation 4-2 Cisco Traffic Anomaly De tector User Guide OL-6109-01 • Removing a Zone IP Address • Removing all Zo ne IP Addresses Defining a New Zone The Detector enables the us er to define a ne w zone based on a vari ety of templates. T o defi ne a ne w zone perform the followi ng: 1. From the Co ...

  • Cisco Systems OL-6109-01 - page 3

    4-3 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Basic Zone Configuration Note If no zone template is specif ied, the zone will be defined u sing the Detector DEF A UL T zone template. – base-zone-name —(Optional) Th e name of a desired zone used as a template for the ne w zone. – interactive —(Optional ...

  • Cisco Systems OL-6109-01 - page 4

    Chapter 4 Z one Configuration Basic Zone Configur ation 4-4 Cisco Traffic Anomaly De tector User Guide OL-6109-01 2. Choose ENTER . The following prompt appears: admin@DETECTOR–conf-zone-<new-zone-name># T o duplicate a zone from the zone command group lev el perform the follo wing: 1. From the Zone command gr oup le vel of the desired zone ...

  • Cisco Systems OL-6109-01 - page 5

    4-5 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Basic Zone Configuration Removing All Zones The user may remov e all the D etector’ s zones. Caution Removing all zones eliminates their DDoS detection. T o remov e all zones perform the follo wing: 1. From the Conf iguration command group le vel type the fol l ...

  • Cisco Systems OL-6109-01 - page 6

    Chapter 4 Z one Configuration Basic Zone Configur ation 4-6 Cisco Traffic Anomaly De tector User Guide OL-6109-01 Where: – template-name —A zone template. Options i nclude: Default —The Guard default zone template LINK_128K —A template designed fo r bandwidth-limited Links LINK_1M —A template designed for bandwidth-limited Links LINK_4M ? ...

  • Cisco Systems OL-6109-01 - page 7

    4-7 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Basic Zone Configuration Where zone-name specifies the desired zone name. 2. Choose ENTER . Below is an e xample of the zone command implementation: admin@DETECTOR-conf# zone scannet admin@DETECTOR-conf-zone-scannet# Describing a Zone The user may add a descripti ...

  • Cisco Systems OL-6109-01 - page 8

    Chapter 4 Z one Configuration Basic Zone Configur ation 4-8 Cisco Traffic Anomaly De tector User Guide OL-6109-01 – ip-mask —(Optional) The zone IP subnet mask. Note If no mask is s pecified, the Detect or assumes th e default subnet mask 255.255.255.255. 2. Choose ENTER . Below is an e xample of the ip address command implemen tation: admin@DE ...

  • Cisco Systems OL-6109-01 - page 9

    4-9 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Remote Guard List Note If no mask is s pecified, the Detect or assumes th e default subnet mask 255.255.255.255. 2. Choose ENTER . Below is an example of the no ip address co mmand implemen tation: admin@DETECTOR-conf-zone-scannet# no ip address 192.168.100. ...

  • Cisco Systems OL-6109-01 - page 10

    Chapter 4 Z one Configuration Zone Remote Guar d List 4-10 Cisco Traffic Anomaly De tector User Guide OL-6109-01 This section contains the following procedures: • Adding a Guard to the Zone Remo te Guard List • Removing a Guard from the Zone Remote Guard List • Interacti ve Recommendations Mode Adding a Guard to the Zone Remote Guard List The ...

  • Cisco Systems OL-6109-01 - page 11

    4-11 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Remote Guard List Where remote-guard-address specifies the remote Guard IP address. Use ‘*’ to remov e all remote Guards from the remote Guard li st. Caution The user should verify that the Detector has at least one remote Guard on it s default remot e ...

  • Cisco Systems OL-6109-01 - page 12

    Chapter 4 Z one Configuration Zone Traffic Learning 4-12 Cisco Traffic Anomaly De tector User Guide OL-6109-01 T o create a ne w zone with interacti ve recommendations mod e perform the follo wing: 1. From the Conf iguration command group le vel type the fol low ing: admin@DETECTOR-conf# zone < new-zone-name > interactive 2. Choose ENTER . Th ...

  • Cisco Systems OL-6109-01 - page 13

    4-13 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Traffic Learning The Detector’ s tools for constructing detection policies are the Polic y T emplates. These define the policies according to the Minimum Threshold and Maximum Services parameters the user pro vides (t his chapter will not cov e r those ad ...

  • Cisco Systems OL-6109-01 - page 14

    Chapter 4 Z one Configuration Zone Traffic Learning 4-14 Cisco Traffic Anomaly De tector User Guide OL-6109-01 Where zone-name specifies a zone name. Note that the Guard enables the use of an asteri sk (*) as a wildcard denoting either of the follo wing options: – All of the Guard’ s zones. Issuing learning policy-const ruction* means setting t ...

  • Cisco Systems OL-6109-01 - page 15

    4-15 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Traffic Learning Accepting Learning Phase 1 – Policy Construction The user may accept the Detector’ s suggested policies. T o accept the results of the initial Po licy Construction phase perform the follo wing: 1. From the Global command gro up level ty ...

  • Cisco Systems OL-6109-01 - page 16

    Chapter 4 Z one Configuration Zone Traffic Learning 4-16 Cisco Traffic Anomaly De tector User Guide OL-6109-01 Note that the Detector enables the us e of an asterisk (*) as a wildcard denoting either of th e following opt ions: – All of the Detector’ s zones. Issuing no lear ning* reject means abort ing the learning phase for all o f the Detect ...

  • Cisco Systems OL-6109-01 - page 17

    4-17 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Traffic Learning Terminating Learning Phase 2 – Threshold Tuning After a suf ficient period of time (see th e above note) the user ends the Threshol d T uning phase. The user may accept the Detect or’ s suggested policies or decide to abort the second p ...

  • Cisco Systems OL-6109-01 - page 18

    Chapter 4 Z one Configuration Zone Traffic Learning 4-18 Cisco Traffic Anomaly De tector User Guide OL-6109-01 Aborting Learning Phas e 2 – Tuning Threshold The user may wish to abort the second phase of learning procedure. In this case the Detector stops the process and erases the data learned on the second phase . The data gathered on the first ...

  • Cisco Systems OL-6109-01 - page 19

    4-19 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Detection 2. Choose ENTER . The follo wing (partial sample) screen appears: admin@DETECTOR-conf-zone-scannet# show policies statistics Key Rate Policy 192.168.100.34 73.17 http/80/analysis/syns/dst_ip N/A 0.17 http/80/analysis/syns/global Key Ratio Policy 1 ...

  • Cisco Systems OL-6109-01 - page 20

    Chapter 4 Z one Configuration Zone Detection 4-20 Cisco Traffic Anomaly De tector User Guide OL-6109-01 Note that the Detector enables the us e of an asterisk (*) as a wildcard denoting either of th e following opt ions: – All of the Detector’ s zones. Issuing detect * means be ginning detection for all of the Detector’ s zones. – A wildcar ...

  • Cisco Systems OL-6109-01 - page 21

    4-21 Cisco Traffic Anomaly Dete ctor User Guide OL-6109-01 Chapter 4 Zone Configuration Zone Detection Where: – all-zone —The Detector activ ates the Guard to assume protection over the overall zone whene ver a traff ic abnormality is detected (see this section’ s explanation for further details). – only-dest-ip —The Detector acti vates t ...

  • Cisco Systems OL-6109-01 - page 22

    Chapter 4 Z one Configuration Zone Detection 4-22 Cisco Traffic Anomaly De tector User Guide OL-6109-01 The sample screen indicates that zone tr aff ic is mirrored (or split), the Detector receiv es the zone’ s traff ic and the traff i c shows normal flo w fluctuations. Zone detection is functio ning properly . Ending the Zone Detection The user ...

Fabricant Cisco Systems Catégorie Computer Hardware

Les documents que nous recevons du fabricant de l'appareilCisco Systems OL-6109-01 peuvent être divisés en plusieurs groupes. Ceux-ci sont, entre autres:
- dessins techniques Cisco Systems
- manuels d’utilisations OL-6109-01
- fiches produit Cisco Systems
- dépliants
- ou étiquettes-énergie Cisco Systems OL-6109-01
Tous sont importants, mais les informations les plus importantes du point de vue de l'utilisation de l'appareil se trouvent dans le manuel d’utilisation Cisco Systems OL-6109-01.

Un groupe de documents appelé manuels d’utilisation est également divisé en types plus spécifiques, tels que: Manuels d’installation Cisco Systems OL-6109-01, manuels d’entretien, brefs manuels ou manuels de l’utilisateur Cisco Systems OL-6109-01. Selon vos besoins, vous devriez chercher le document dont vous avez besoin. Sur notre site, vous pouvez voir le manuel le plus populaire d’utilisation du produit Cisco Systems OL-6109-01.

Manuels d’utilsiation similaires

Manuel d’utilisation complet de l’appareil Cisco Systems OL-6109-01, quelle devrait-elle être?
Le manuel d’utilisation, également appelé le mode d’emploi, ou tout simplement le manuel, est un document technique destiné à aider à utiliser Cisco Systems OL-6109-01 par les utilisateurs. Des manuels sont généralement écrits par un rédacteur technique, mais dans un langage accessible à tous les utilisateurs Cisco Systems OL-6109-01.

Le manuel d’utilisation complet Cisco Systems, devrait inclure plusieurs éléments de base. Certains d'entre eux sont moins importants, tels que: la couverture / page de titre ou pages d'auteur. Cependant, la partie restante, devrait nous fournir des informations importantes du point de vue de l'utilisateur.

1. Introduction et des conseils sur la façon d'utiliser le manuel Cisco Systems OL-6109-01 - Au début de chaque manuel, nous devrions trouver des indices sur la façon d'utiliser le document. Il doit contenir des informations sur l'emplacement de la table des matières Cisco Systems OL-6109-01, FAQ ou des problèmes les plus fréquents - les points qui sont les plus souvent recherchés par les utilisateurs de chaque manuel
2. Table des matières - index de tous les conseils pour lCisco Systems OL-6109-01 qui peuvent être trouvés dans le document courant
3. Conseils sur la façon d'utiliser les fonctions de base de l’appareil Cisco Systems OL-6109-01 - qui devraient nous aider dans les premières étapes lors de l'utilisation Cisco Systems OL-6109-01
4. Troubleshooting - séquence systématique des activités qui nous aideront à diagnostiquer et ensuite résoudre les principaux problèmes de Cisco Systems OL-6109-01
5. FAQ - questions fréquemment posées
6. Détails du contact Informations sur l'endroit où chercher le contact avec le fabricant / service Cisco Systems OL-6109-01 dans un pays donné, si le problème ne peut être résolu par nous-mêmes.

Avez-vous une question à propos de Cisco Systems OL-6109-01?

Utiliser le formulaire ci-dessous

Si vous n’avez pas résolu votre problème avec Cisco Systems OL-6109-01, avec l'aide du manuel que vous avez trouvé, posez une question en utilisant le formulaire ci-dessous. Si un utilisateur a eu un problème similaire avec Cisco Systems OL-6109-01 il est probable qu’il a envie de partager la façon de le résoudre.

Réécrire le texte de l'image

Captcha
Nouvelle image

Commentaires (0)