• No results found

CYAN SECURE WEB APPLIANCE. User interface manual

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "CYAN SECURE WEB APPLIANCE. User interface manual"

Copied!
12
0
0

Loading.... (view fulltext now)

Download now ( 12 Page )

Full text

(1)

User interface manual

Jun. 13, 2008

(2)
(3)

1 Log in

To log into the CYAN Secure Web Appliance, open a web browser and type in the address: https://<youripaddress>:9999/

Where <youripaddress> is one of the appliance's IP addresses. You can see them on the front display.

The default user name and password are both 'admin'.

2 Status

The status tab shows information about the hardware and the configuration of your appliance.

2.1 Status / System

On the System tab you can see basic information about the hardware of your appliance:

Current load: The load is a value calculated from the current memory and cpu usage, as well as some other operating system values. It shows an overview of how busy your machine is.

(4)

2.2 Status / Network

The Network tab shows information about the usage and the configuration of the network interfaces.

Status / Network / Secure Web

Here you can see how many requests are served by CYAN Secure Web.

Active threads: Amount of concurrend threads by Secure Web. Connections: All open network connections are shown here.

Status / Network / Interface Configuration

(5)

Interface assignment

There are two different CYAN Secure Web Appliance models: Rear view of DS models

0 --> eth3 1 --> eth0 2 --> eth1 3 --> eth2

The first (1) and the second (2) interface are configured in bridged mode for analyzing the passing data traffic. The third one (3) is used for management access to the user interface. The last interface is not in use.

Rear view of RS models

0 --> eth0 1 --> eth1 2 --> eth2 3 --> eth3

CYAN Secure Web Appliance has four network interfaces.

The first (0) and the second (1) interface are configured in bridged mode for analyzing the passing data traffic. The third one (2) is used for management access to the user interface. The last interface is not in use.

(6)

2.3 Services

You are able to control the different types of services running on your appliance here.

Status / Services / Secure Web

This tab show the status of all CYAN Secure Web services. You can start and stop the services here.

Status / Services / NTP

NTP (Network Time Protocol) is used to synchronize the time on your appliance with time servers in the internet.

Status / Services / Postfix

(7)

Status / Services / PostgreSQL

PostgreSQL is the database used for the CYAN Reporting System. Under this tab you can start or stop the database service.

Status / Services / OpenSSH

(8)

3 System

System specifc parameters can be configured here.

3.1 System / Time & Date

Set the time and the date of your appliance

Date/Time: System date and time of the appliance.

Use client's date/time: Update the appliance settings with your machine's date or time.

3.2 System / Logrotate

If log rotation is enabled, all Secure Web log files will be kept for 4 weeks and then deleted.

3.3 System / Kaspersky Anti-Virus

You can enable or disable the automatic Kaspersky virus pattern file update here.

3.4 System / E-Mail

The mail daemon can be configured to deliver mails in two ways:

(9)

4 Network

You can configure the network configuration of your CYAN Secure Web Appliance here. Note: If you change the IP address of the interface you used to connected to the appliance, you need to re-enter the new IP address in the web browser to access the appliance UI again.

4.1 Network / Bridge

You can either assign a static IP address to the bridged interfaces (eth0 and eth1), or user DHCP (Dynamic Host Configuration Protocol) to assign one automatically.

If you don't use DHCP, you need to specify the IP address, network mask and the gateway for the interface.

4.2 Network / Management

Here you can configure the IP address of your management interface. (eth2)

The management interface should be used to access the appliance's web interface.

Caution: If you assign an IP address to the management interface, which is in the same subnet as the bridged interface, make sure that the routing is correct.

4.3 Network / DNS

Under DNS (Domain Name Service) you can configure the IP address and the domain which the appliance should use.

(10)

4.4 Network / Firewall

This menu is used to configure the appliance's firewall and port mapping.

Network / Firewall / Transparent Proxy

Transparent mode means, that all reques to a web service passing through the bridged interface will be redirected to CYAN Secure Web.

The Proxy port can be changed in CYAN Secure Web. You need to specify the same setting here. The default value is 8080.

Network / Firewall / Access Control

The firewall can limit the IP addresses and networks which are allowed to access the proxy.

Allow management over bridge:br If you disable this setting, you only can access the appliance via the management interface (eth2).

Restrict proxy usage: If this is not enabled, all clients can access CYAN Secure Web. You can still limit web access there.

(11)

5 Maintenance

All maintenance tasks can be performed or configured here.

5.1 Maintenance / Disk

Here you can delete the content of the log and virus scanning folders of you appliance. Select the options you want and click on Execute.

Cyan Secure Web Logfiles: Delete the CYAN Secure Web log files (Path: /opt/cyan/sweb/logs/)

Cyan Secure Web HTTP Cache: Delete the cache memory of the proxy server. Cyan Secure Web Vscan Quarantine: Delete the virus scan quarantine folder. Temporary directorys/files: Delete all temporary files.

5.2 Maintenance / Firmware

This menu is used to update your appliance software to the latest version.

Update: only applies fixes to installed packages and will never remove or install any new packages.

Upgrade: applies fixes and upgrades to installed packages and will also remove, replace or install new packages, if needed.

(12)

5.3 Maintenance / Power

Use this dialog to restart or shut down the appliance.

Caution: Once you executed a command here, there is no turning back.

5.4 Maintenance / Appliance Accounts

In this menu tab you can enable or disable the support user and set a new password for the administrative user.

Appliance user: Set a new password for your admin user to access the appliance.

Support user: Enable or disable the support user for the appliance. Set a password for the support user.

Caution: The support user is needed to access the appliance via secure shell. No other user (not even root) is configured on the machine. If you disable the support user, there is no way to access the machine besides the web interface.

5.5 Maintenance / Factory

References

Download now ( PDF - 12 Page - 872.92 KB )

Related documents

Portland State Office Building, Room 1B 1:00 pm to 3:00 pm 800 NE Oregon Street Portland, OR 97232

Committee members at the March 26, 2014 meeting suggested adding information about healthcare facility-associated (HCFA) community onset Clostridium difficile infections (CDI) to

Studi Pencocokan Plat Kendaraan Dengan Metode Phase Only Correlation

Algoritma pencocokan yang digunakan pada tugas akhir ini adalah Phase only Correlation (POC), yaitu algoritma yang mencocokkan fasa dari dua buah citra dengan melihat nilai

Deploying Secure Internet Connectivity

Your service provider might not give you an IP address for the outside interface of your security appliance; they might require you to run DHCP and automatically configure your

ALACHUA COUNTY COMPREHENSIVE PLAN

Development within the area (SantaFe Village) designated ‘Mixed Use’ in the northeast quadrant of the Activity Center (Tax Parcel.. Numbers 06041-002-002,

How To - Deploy Cyberoam in Gateway Mode

If due to incorrect IP address configuration, you are not able to access appliance, rollback to factory default settings and re-configure Cyberoam by repeat the entire deployment

Installing an SSL Certificate Provided by a Certificate Authority (CA) on the vwlan Appliance

You must add a new host (A) record and an associated pointer (PTR) record using the network interface IP address of the vWLAN Appliance to your organizations DNS server to match

Yealink Phones User Guide Bicom Systems

Open a new browser window and enter your phone IP address in order to access the phone web administration interface login screen.. Example: http://192.168.1.22 Login to phone

Temporary Work in Turbulent Times: The Swedish Experience

It is noteworthy that the relative increase in exit rates to unemployment is larger among workers on open-ended contracts than among those on fixed-term contracts; the rise in