To set Defense4All configuration parameters:
- From an Internet browser, go to http://<ip address>:8086/controlapps, where <ip address> is the address for the host that is running Defense4All.
- From the FrameWork Setup pane, select Framework > Setup.
- Set the Framework Control Network Address to the IP address Defense4All uses to access the control network.
- To the right of the SDN Controllers label, click Add.
- In the Add SDN Controller pane, set the following parameters:
Parameter | Description |
---|---|
Hostname | Name of the SDN Controller. This is the SDN Controller that supports OpenFlow network programming (OFC stands for OpenFlow Controller). OpenDaylight Controller provides this flavor both for OpenFlow enabled network devices and other network devices with adequate plug-ins in the PFC. |
IP address | IP address of the SDN Controller. |
Port | Port number of the SDN Controller. |
Statistics Polling Interval | The frequency that the SDN Controller polls for statistics. |
Username | Username to log into the SDN Controller. |
Password | Password to log into the SDN Controller. |
Confirm Password | Confirmation of the password of the SDN Controller. |
- Click Submit.
Note | |
---|---|
The SDN controller cannot be changed or removed. Only one (1) SDN controller can be configured. To change the SDN controller, you must reset Defense4All to factory settings. . In the FrameWork Setup pane, to the right of the Attack Mitigation Systems (AMSs) label, click Add. . In the Add Attack Mitigation System (AMS) pane, set the following parameters: |
Parameter | Description |
---|---|
Name | AMS descriptive name. |
Brand | Select the AMS brand from the drop-down list. Values: Radware DefensePro, Other Default: Radware Note: The Radware DefensePro device can be removed only when there are no active mitigations (traffic redirections to it). |
Version | AMS version. Note: This parameter is only applicable to Radware DefensePro. |
IP Address | AMS IP address. Note: This parameter is only applicable to Radware DefensePro. |
Port | AMS port number. Note: This parameter is only applicable to Radware DefensePro. |
Username | AMS username. Note: This parameter is only applicable to Radware DefensePro. |
Password | Password to log into the AMS. Note: This parameter is only applicable to Radware DefensePro. |
Confirm Password | Confirmation of the password of the AMS. Note: This parameter is only applicable to Radware DefensePro. |
Health Check | Interval Time in seconds. Note: This parameter is only applicable to Radware DefensePro. Default: 60 seconds |
Note | |
---|---|
Only relevant for DefensePro. Layer 2 Broadcast Destination MAC Address, Multicast Destination MAC Address, Unrecognized L2 Format, and TTL Less Than or Equal to 1 blocking must be configured to avoid Layer 2 loops. For more information, refer to the discussion on Packet Anomaly protection in the DefensePro User Guide. |
- Click Submit.
- In the FrameWork Setup pane, to the right of the Net Nodes label, click Add.
In the Add Net Node pane, set the following parameters:
Parameter Description Name
NetNode descriptive name.
ID
NetNode ID.
Type (read-only)
Default: Openflow
SDN Node Mode (read-only)
Default: sdnenablednative.
Health Check Interval (read- only)
Default: 60 seconds
- To the right of the Protected Links label, click Add.
In the Add Protected Link pane, set the following parameters:
Parameter Description Incoming Traffic Port
The incoming traffic port number.
Outgoing Traffic Port
The outgoing traffic port number.
- Click OK.
- To the right of the AMS Connections label, click Add.
In the Add AMS Connection pane, set the following parameters:
Parameter Description Name
AMS connection descriptive name.
AMS Name
AMS connection name.
NetNode North Port
NetNode NothPort.
NetNode South Port
NetNode South Port.
AMS North Port
AMS North Port.
AMS South Port
AMS South Port.
- Click OK.
- In the Add Net Node pane, click Submit.