McAfee DTP-165C-DPVG Installation Guide - Page 17

Setting up the hardware Select an integration mode for McAfee DLP Monitor 2 3 Using interface show commands on the switch, verify that traffic is being received on the switch port to which McAfee DLP Monitor is connected. 4 Save the configuration on the switch. Common configuration If a SPAN port is configured on a Cisco switch, the WAN router would be connected to interface "GigabitEthernet1/0/1". The DLP appliance would be connected to interface "GigabitEthernet1/0/2". Switch: configure terminal Switch(config)# interface GigabitEthernet1/0/2 Switch(config-if)# port monitor GigabitEthernet1/0/1 Switch(config-if)# end Switch# show port monitor Monitor Port Port being monitored GigabitEthernet1/0/2 GigabitEthernet1/0/1 Switch# write memory Network tap configuration A network tap configuration enables monitoring by injecting a tap in between two network devices (generally the LAN switch and the WAN router) using additional cabling, then connecting the tap to McAfee DLP Monitor. The network tap captures traffic through a tap that is attached to the LAN switch and WAN router through two network ports. Traffic from these ports flows directly to the capture ports on McAfee DLP Monitor. In environments where there is a firewall or a series of devices separating the LAN switch from the WAN router, the network tap should be installed between the LAN switch and the first device. Figure 2-5 Network tap configuration 1 Capture ports 2 Analyzer ports 3 Network tap 4 LAN 5 LAN switch 6 Router 7 WAN McAfee Data Loss Prevention 9.2.0 Installation Guide 17