InterScan - Trend Micro · vii Preface Preface Welcome to the Trend Micro™ InterScan™ Web...

InterScanTM

Web Security Suite3Antivirus and Content Security at the Web Gateway

Installation Guide

for Crossbeam C-Series Platforms

Web Security

ws

General Copyright InformationThe products, specifications, and other technical information regarding the products contained in this document are subject to change without notice. All information in this document is believed to be accurate and reliable, but is presented without warranty of any kind, expressed or implied, and users must take full responsibility for their application of any products specified in this document. Trend Micro Incorporated disclaims responsibility for errors that may appear in this document, and it reserves the right, in its sole discretion and without notice, to make substitutions and modifications in the products and practices described in this document.

This material is protected by the copyright and trade secret laws of the United States and other countries. It may not be reproduced, distributed, or altered in any fashion by any entity (either internal or external to Trend Micro Incorporated), except in accordance with applicable agreements, contracts, or licensing, without the express written consent of Trend Micro Incorporated.

For permission to reproduce or distribute please contact your Trend Micro Incorporated account executive.

All other product names mentioned in this manual may be trademarks or registered trademarks of their respective companies.

Trend Micro Copyright InformationTrend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice. Before installing and using the software, please review the readme files, release notes, and the latest version of the applicable user documentation, which are available from the Trend Micro Web site at:

http://www.trendmicro.com/download

Trend Micro, the Trend Micro t-ball logo, IWSS are trademarks or registered trademarks of Trend Micro, Incorporated. All other product or company names may be trademarks or registered trademarks of their owners.

Copyright© 2008 Trend Micro Incorporated. All rights reserved.

Document Part No. IHEM33620/80505

Release Date: October 2008

U.S. Patent No. not available. Patent pending.

The user documentation for Trend Micro InterScan Web Security Suite for Crossbeam C-Series Security Platforms is intended to introduce the main features of the software and installation instructions for your production environment. You should read this documentation prior to installing or using the software.

Detailed information about how to use specific features within the software are available in the online help file and the online Knowledge Base at Trend Micro’s Web site.

Trend Micro is always seeking to improve its documentation. Your feedback is always welcome. Please evaluate this documentation on the following site:

http://www.trendmicro.com/download/documentation/rating.asp

Crossbeam Systems Copyright InformationCROSSBEAM, CROSSBEAM SYSTEMS, X40, X45, X80, C2, C6, C10, C12, C25, C30, C30i, SecureShore, and any logos associated therewith are trademarks or registered trademarks of Crossbeam Systems, Inc. in the U.S. Patent and Trademark Office, and several international jurisdictions.

Contents

Contents

PrefaceAudience ............................................................................................................viiiInterScan Web Security Suite Documentation ............................................viiiCrossbeam Systems Related Documentation ..............................................viiiDocument Conventions ................................................................................... ixSupport and Training ......................................................................................... xCustomer Comments ......................................................................................... x

Chapter 1: Introduction to InterScan Web Security SuiteAbout InterScan Web Security Suite ........................................................... 1-2Standalone IWSS Server Deployment on a Crossbeam C-SeriesPlatform ............................................................................................................ 1-2

Chapter 2: Before Installing InterScan Web Security SuiteInterScan Web Security Suite Requirements .............................................. 2-2

Licensing Requirements ............................................................................ 2-2PostgreSQL Database Compatibility ...................................................... 2-2Other Requirements .................................................................................. 2-2

C-Series Platform-specific Requirements .................................................... 2-3Software Requirements ............................................................................. 2-3

Chapter 3: Installing the ApplicationLoading and Installing the Application ....................................................... 3-2Verifying the Installation ............................................................................... 3-3Troubleshooting the Installation .................................................................. 3-4

Chapter 4: Application ManagementBasic CLI Management Commands ............................................................ 4-2

Uninstalling the Application ..................................................................... 4-2

v

Trend Micro™ InterScan™ Web Security Suite for Crossbeam C-Series Platforms Installation Guide

vi

Preface

Preface

Welcome to the Trend Micro™ InterScan™ Web Security Suite for Crossbeam C-Series Platforms Installation Guide for release 3.1. This guide describes how to install and configure the Trend Micro InterScan Web Security Suite (IWSS) application on a Crossbeam Systems C-Series Security Platform. For more information regarding this application, visit our Web site at:

http://www.trendmicro.com

This preface describes the following topics:

• Audience

• InterScan Web Security Suite Documentation

• Crossbeam Systems Related Documentation

• Document Conventions

• Support and Training

• Customer Comments

vii

http://www.trendmicro.com


AudienceThis guide is intended for system integrators and other qualified service personnel responsible for installing, configuring, and managing software on Crossbeam Systems C-Series Platforms.

InterScan Web Security Suite DocumentationIn addition to the Installation Guide, the IWSS documentation set includes the following:

• Administrator’s Guide—This guide provides detailed information about all InterScan Web Security Suite configuration options. Topics include how to update your software to keep protection current against the latest risks, how to configure and use policies to support your security objectives, and using logs and reports.

• Readme file—This file contains late-breaking product information that is not found in the online or printed documentation. Topics include a description of new features, installation tips, known issues, and release history.

• Online help—The online help provides “how to’s” for the main product tasks, usage advice, and field-specific information such as valid parameter ranges and optimal values. You can access the online help by opening the Web console and then clicking the help icon.

• Knowledge Base—The Knowledge Base is an online database of problem-solving and troubleshooting information. It provides the latest information about known product issues. To access the Knowledge Base, open:

http://esupport.trendmicro.com/support

The latest versions of the Installation Guide, Administrator’s Guide, and readme file are available in electronic form at:

http://www.trendmicro.com/download/

Crossbeam Systems Related DocumentationThe following Crossbeam Systems documentation may be helpful when configuring COS and installing IWSS on a C-Series Platform:

• C12 Hardware Installation Guide

viii

http://esupport.trendmicro.com/support

http://www.trendmicro.com/download/

Preface

• C25 Hardware Installation Guide

• COS Configuration Guide

• COS Release Notes

• Install Server User Guide

For the latest updates to Crossbeam technical documentation, visit the Crossbeam Systems Customer Support Web site located at: http://www.crossbeam.com/services/online_support.php

Document ConventionsTo help you locate and interpret information easily, the IWSS documentation uses the following conventions.

CONVENTION DESCRIPTION

ALL CAPITALS Acronyms, abbreviations, and names of certain commands and keys on the keyboard

Bold Menus and menu commands, command buttons, tabs, options, and ScanMail tasks

Italics References to other documentation

Monospace Examples, sample command lines, program code, Web URLs, file names, and program output

Note:Important information to help users properly understand and carry out specific tasks

Tip: Recommendations

WARNING! Precautions users must take to avoid major errors (data loss, data unavailability, install failure, etc)

ix

http://www.crossbeam.com/services/online_support.php


Support and TrainingRefer to the following Web site regarding IWSS support:

• Trend Micro support Web site: http://esupport.trendmicro.com.

To report issues and request technical assistance for Crossbeam C-Series Platform hardware and software, contact Crossbeam Systems Customer Support:

• United States: +1 800-331-1338 or +1 978-318-7595

• EMEA: + 33 4 8986 0400 (during normal working hours)+1 978-318-7595 (outside office hours and on public holidays, ifapplicable)

• Asia Pacific: +1 978-318-7595

• Email Customer Support: [email protected]

In addition, you can access online resources, submit new technical support requests, and view all of your open requests by logging into the Crossbeam Online Support Web site, located at:


Crossbeam Systems also offers extensive customer training on all of its products. For current course offerings and schedules, please refer to the Crossbeam Training and Education Web site, located at:

http://www.crossbeam.com/services/training_education.php

Customer CommentsTo submit comments regarding products and documentation:

• Email your product comments to [email protected]

• Email your documentation comments to [email protected]

x

http://esupport.trendmicro.com

mailto:[email protected]


http://www.crossbeam.com/services/training_education.php

[email protected]

[email protected]

Chapter 1

Introduction to InterScan Web Security Suite

This chapter provides a brief introduction to InterScan Web Security Suite (IWSS) and its operation on a Crossbeam Systems C-Series Platform.

Topics include the following:

• About InterScan Web Security Suite

• Standalone IWSS Server Deployment on a Crossbeam C-Series Platform

1-1


About InterScan Web Security SuiteIWSS dynamically defends against Web-based attacks with integrated threat protection at the Internet gateway. This high-performance software solution complements award-winning antivirus and anti-spyware with a new Web Reputation feature that detects and blocks Web threats based on the reputation of the source domain. It scans the content and flow of HTTP and FTP traffic and triggers agent-less cleanup when spyware activity is detected on clients and servers.

Standalone IWSS Server Deployment on a Crossbeam C-Series Platform

You install IWSS and a PostgreSQL database on a C-Series Platform, and configure the C-Series Platform to fit into the existing network infrastructure. Each C-Series Platform functions as a standalone IWSS server with its PostgreSQL database installed locally on the C-Series Platform.

FIGURE 1-1 IWSS Server and PostgreSQL Database Installed on a C-Series Platform

1-2

Chapter 2

Before Installing InterScan Web Security Suite

This chapter presents product-specific prerequisites and pre-installation setup required for installing InterScan Web Security Suite (IWSS) on a Crossbeam Systems C-Series Platform.


• InterScan Web Security Suite Requirements

• C-Series Platform-specific Requirements

2-1


InterScan Web Security Suite Requirements

Licensing RequirementsIWSS requires the following licenses:

• InterScan Web Security Suite Anti-Virus and Web Reputation

• InterScan Web Security Suite URL Filtering

• InterScan Web Security Suite Malicious Mobile Code

To activate all IWSS features, you must install all three of the above licenses on the C-Series Platform.

PostgreSQL Database CompatibilityIWSS 3.1 includes PostgreSQL version 7.4.16; however, any PostgreSQL database later than version 7.4.16 will also work.

Other RequirementsIWSS may require the following components, depending on your installation:

• Directory Servers

To configure policies based on LDAP users and groups, IWSS can integrate with the following LDAP directories:

• Microsoft™ Active Directory™ 2000 and 2003

• Linux OpenLDAP Directory 2.2.16

• Sun™ Java System Directory Server 5.2 (formerly Sun ONE Directory Server)

• Internet Content Adaptation Protocol (ICAP):

IWSS can work with the following ICAP devices:

• NetApp™ NetCache™ release 6.0.1

• Blue Coat Systems™ SGOS version 4 or above

• Cisco Content Engine version 5.3

• Any cache server that is ICAP 1.0 compliant

2-2

Before Installing InterScan Web Security Suite

C-Series Platform-specific RequirementsTable 2-1 lists the C-Series Platform hardware requirements for IWSS.

Note: To ensure optimal performance, your C-Series Platform should have more memory than the minimum required. Additionally, if the IWSS application must process heavy traffic or must sustain a large number of network connections, the application may require additional memory.

The following table lists the hardware requirements for this application.

Software Requirements

Note: Refer to the COS Configuration Guide for instructions on configuring a C-Series Platform to meet these requirements.

The Crossbeam Systems C-Series Platform system on which you are installing the IWSS application must meet the following software requirements:

TABLE 2-1. Hardware Required

ITEM REQUIREMENT

Minimum Memory 2 GB RAM

Recommended Memory

4 GB RAM

C-Series Platform Models Supported

C12, C25

Disk Space Requirements

To maintain IWSS log files, the C-Series Platform must have at least 1.7GB of disk space for every 3 million HTTP requests per day. This calculation is based on the amount of disk space that the PostgreSQL database consumes when HTTP/FTP access logging is enabled.

2-3


• Running COS version 6.1.1.x.

• Has an active connection to the Internet configured with a default IP route.

• Configured to use a specific domain name server (DNS).

• Connected to a network time protocol (NTP) service.

2-4

Chapter 3

Installing the Application

This chapter provides instructions for loading and installing the application and for verifying and troubleshooting the installation.

Note: Be sure that your C-Series Platform meets the requirements described in the previous chapter before attempting to install InterScan Web Security Suite (IWSS).


• Loading and Installing the Application

• Verifying the Installation

• Troubleshooting the Installation

3-1


Loading and Installing the ApplicationComplete the following steps to load and install the application on your Crossbeam Systems C-Series Platform.

1. Copy the CBI file to /crossbeam/apps/archive.

2. Log into the C-Series Platform using your terminal program. (Default login and password are admin.)

3. When the Main Menu appears, type 5 to select Application Install/Uninstall.

Main Menu (for user root)=========

1) System Information

2) Network Information

3) Configuration

4) Interview

5) Application Install/Uninstall

6) Routing Protocols

7) Licenses Manager (N/A)

8) System Shell

9) Preferences

X) Exit

Enter choice? <1 - 9, X> []: 5

4. When the Application Menu appears, type 1 to select Install Application.

Application Menu

================

1) Install Application

2) Remove Application

X) Exit

Enter choice? <1 - 2, X> [X]: 1

5. When the Install Application Menu appears, type 1 to select iwss-3.1-15-cos.

3-2

Installing the Application

Install Application Menu

========================

1) iwss-3.1-15-cos

X) Exit


6. When the license agreement displays, accept the license agreement.

7. Enter the password that will be used for the PostgreSQL database.

Please enter the password for the PostgreSQL database:

Password:

Confirm password:

8. When prompted, indicate whether you want to change any information that you specified during the installation process. To rerun the installation and change your answers, type y. To proceed with the installation, type n.

Are any changes needed? [n]: n

The IWSS installer is extracted and IWSS is installed on the C-Series Platform.

** A reboot is required for the change(s) to take affect. **

Extracting Bundle: [####################] 100% [ ok ]

Installing iwss: [####################] 100% [ ok ]

9. Reboot the C-Series Platform.

Verifying the InstallationTo verify that InterScan Web Security Suite was successfully installed, try accessing the IWSS Web console using a Web browser. The default user name is admin, and the default password is adminIWSS85.

http://<C-Series IP Address>:1812

3-3


Troubleshooting the InstallationIf the IWSS installation fails, look for the file /tmp/iwss_install.out or /tmp/install.log stored on the C-Series Platform. These files contain records of the recent IWSS installation and list any errors that occurred during installation.

3-4

Chapter 4

Application Management

This chapter provides information about COS CLI commands that you can use to perform basic application management tasks. For additional information, refer to the COS Configuration Guide.


• Basic CLI Management Commands

• Uninstalling the Application

4-1


Basic CLI Management CommandsTable 4-1 lists the COS CLI commands that you can use to perform basic application management tasks.

Uninstalling the ApplicationUse the following procedure to uninstall the application:

1. Log into the C-Series Platform using your terminal program. (Default login and password are admin.)

2. When the COS Main Menu appears, enter 5 to select Application Install/Uninstall.

Main Menu (for user root)

=========

1) System Information

2) Network Information

3) Configuration

4) Interview

5) Application Install/Uninstall

6) Routing Protocols

TABLE 4-1. Basic CLI Management Commands

COMMAND FUNCTION

service iwss start Start the application

service iwss stop Stop the application

service iwss restart Restart the application

chkconfig iwss off Prevent the application from starting at boot up

chkconfig iwss on Allow the application to start at boot up

4-2

Application Management

-) Licenses Manager (N/A)

8) System Shell

9) Preferences

X) Exit

Enter choice? <1 - 9, X> []: 5

3. When the Application Menu appears, type 2 to select Remove Application.

Application Menu

================

1) Install Application

2) Remove Application

X) Exit


4. When the Remove Application Menu appears, enter 1 to select iwss-3.1-15-cos.

Remove Application Menu

=======================

1) iwss-3.1-15-cos

X) Exit


The IWSS installer is extracted and IWSS is uninstalled from the C-Series Platform.

Trend Micro, InterScan Web Security Suite 3.1 release 9-cos

Uninstalling iwss: [####################] 100% [ ok ]

** A reboot is required for the change(s) to take affect. **

WARNING! When IWSS is uninstalled, all IWSS files and directories are deleted, including the PostgreSQL database.

5. Reboot the C-Series Platform.

4-3


4-4

InterScan - Trend Micro · vii Preface Preface Welcome to the Trend Micro™ InterScan™ Web...

Documents

Transcript of InterScan - Trend Micro · vii Preface Preface Welcome to the Trend Micro™ InterScan™ Web...