McAfee IIP-M65K-ISAA Product Guide - Page 8

If an attack is detected, a Sensor responds according to its configured policy. Sensor can perform

many types of attack responses, including generating alerts and packet logs, resetting TCP

connections, "scrubbing" malicious packets, and even blocking attack packets entirely before they

reach the intended target.

Network topology considerations

Deployment of a Sensor requires knowledge of your network to help determine the level of

configuration and the number of installed Sensors. You also need to determine the number of McAfee

®

ePolicy Orchestrator (McAfee ePO) /McAfee NAC servers required to protect your network. The Sensor

is purpose-built for the monitoring of traffic across one or more network segments. For more

information, see the

Getting Started Guide.

Following is an example of a network topology using Gigabit Ethernet throughput. In the illustration,

McAfee

®

Network Security Platform (formerly McAfee

®

IntruShield

®

) provides IPS protection to

outsourced servers. High port-density and virtualization provides a highly scalable solution, while

Network Security Platform protects against Web and eCommerce mail server exploits.

Figure 1-1

A sample Network Security Platform deployment

1

Overview

Network topology considerations

8

McAfee

®

Network Security Platform

M-6050 Sensor Product Guide

Section	Page
Contents	3
Preface	5
About this guide	5
Audience	5
Conventions	5
What's in this guide	6
Find product documentation	6
1 Overview	7
About Network Security Sensors	7
Functions of a Sensor	7
Network topology considerations	8
M-6050 key features	9
M-6050 physical description	9
Ports	9
Front panel LEDs	10
2 Before you install	13
Usage restrictions	13
Safety measures	13
About fiber-optic ports	14
Contents of the box	14
Unpack the Sensor	15
3 Setting up the Sensor	17
Setup overview	17
How to position the Sensor	17
Install the rails and ears on the chassis and rack	17
Mount the Sensor on a rack	18
Remove a Sensor from the rack	18
Redundant power supply	19
Install the power supply	19
Remove the power supply	20
Cable the Sensor	20
Small form-factor pluggable modules	21
SFP modules	21
XFP modules	22
Install a module	22
Remove a module	23
Power on the Sensor	24
Power off the Sensor	24
4 Attaching Cables to the Sensor	25
Cable the Console port	25
Cable the Auxiliary port	26
Connect the cable to the Response port	26
About the fail-open port	26
Cable the Management port	26
About connecting cables to the Monitoring ports	27
How to use peer ports	27
Default Monitoring port speed settings	28
Cable types for routers, switches, hubs, and PCs	28
Connect the cables for in-line mode	28
Connect the cables for tap mode	29
Connect the cables for SPAN or hub mode	29
Cable the failover interconnection ports	29
How does the fail-open function work	30
5 Troubleshooting the Sensor	31
6 Sensor technical specifications	33
A Regulatory, compliance, and safety information	35
Index	37
A	37
C	37
D	37
F	37
H	37
K	37
M	37
P	37
R	37
S	37
T	37

McAfee IIP-M65K-ISAA Product Guide - Page 8

Network topology considerations, Network Security Platform formerly McAfee - intrushield

Page 8 highlights