Create a connection
- Connect the Sensor from its console port to a computer.
- Click Start, Accessories, Communications, HyperTerminal. You see the Connection Description dialog window.
- In the Name text field, type a connection name.
- Click OK.
- In the Connect using field, select the needed communications port from the drop-down options.
- Click OK. You see the <communication port> Properties dialog window.
- Type or select the information as follows in the appropriate fields:
- Bits per second: 9600
- Data bits: 8
- Parity: None
- Stop bits: 1
- Flow control: None
- Click OK. You see the HyperTerminal command-line interface.
Return the Sensor to the factory default state
- At the logon prompt, type admin and press Enter.
- At the password prompt, type your password and press Enter.
NOTE: The Sensor defaults to the admin password admin123.
- Turn off the Sensor Watchdog:
Type watchdog off and press Enter. This command prevents the Sensor from rebooting.
- Break the trust between the Manager and Sensor:
Type deinstall and press Enter.
- View the Sensor status:
Type status and press Enter. It might take up to two minutes for the trust to be broken. Use the <Up Arrow> key to repeat the command.
NOTE: The parameter to search for is Trust Established: No.
- Return the Sensor to its original settings:
Type factorydefaults and press Enter.
- Type Y when you see the message Reset the sensor to defaults and reboot? Please enter Y to confirm.
Set the Sensor back on the network
NOTE: You can implement the following set of instructions via the HyperTerminal or Secure Shell.
- At the logon prompt, type admin and press Enter.
- At the password prompt, type your password and press Enter.
NOTE: The Sensor defaults to the admin password admin123.
- Set the Sensor name:
Type set sensor name <name> and press Enter.
- Set the Sensor IP:
Type set sensor ip <ip address><subnet mask> and press Enter.
- Set the Sensor Gateway:
Type set sensor gateway <ip address> and press Enter.
- Set the Sensor Gateway:
Type set manager ip <ip address> and press Enter.
Download the TFTP software and install it
-
Download your chosen TFTP server software.
-
Install the TFTP server software on your Manager Server.
Make the operating system available
- Click Start, Programs, Cisco TFTP Server.
- Download the latest Sensor software version from the update server.
-
If you use the Cisco TFTP server, save the
sensorsw JAR file to the
\Program Files\Cisco Systems\Cisco TFTP Server folder.
This folder is created automatically from the installation. It's the TFTP server's root directory. Otherwise, place the file in the correct directory for the TFTP server to allow the file to be read from.
- Change the extension of the downloaded sensorsw JAR file from .jar to .zip.
- Extract the sensorsw ZIP file to the Cisco TFTP Server folder.
Use TFTP for the Sensor software (or reload the Sensor software) using the loadimage command
NOTE: You can implement the following set of instructions via the HyperTerminal Secure Shell. Only use loadimage if the Manager isn't available, or if you've performed a rescue procedure.
The Manager upgrade is always the preferred method to update a Sensor software image.
- At the logon prompt, type admin and press Enter.
- At the password prompt, type your password.
NOTE: The Sensor defaults to admin password admin123.
- Set the TFTP server IP:
Type set tftpserver ip <ip address> and press Enter.
- Load the Sensor image:
Type loadimage <sensorsw_mmmm_vvvvv> and press Enter.
(Here, mmmm is the sensor model, and parameter vvvvv is the five-digit software version.)
NOTE: This command tells the sensor to load this specific software file, and might take several minutes to complete.
- Turn on the Watchdog:
Type watchdog on and press Enter.
- Reboot the Sensor:
Type reboot and press Enter.
Establish Trust on the Manager
NOTE: For more information on this process, see the Installation Guide for your release.
- Open the Trellix IPS Manager and on the right side, click the Configure icon.
- From the <My Company> resource tree, click Sensors.
- Click the Sensors tab, and then click Manage Sensors. You see the View/Add/Delete Sensors screen.
- Click the option button to the left of the <sensor name>.
- Click Edit. You see the Edit Sensor Information screen.
- In the Sensor Shared Secret field, type <shared secret key>.
- In the Confirm Shared Secret field, type <same shared secret key>.
- Click Submit and you see the following message:
Successfully edited the sensor shared secret, contact, and location information
- Click OK.
Establish Trust on the Sensor
NOTE: You can implement the following set of instructions via the HyperTerminal Secure Shell.
- At the logon prompt, type admin and press Enter.
- At the password prompt, type your password.
NOTE: The Sensor defaults to admin password admin123.
- Set the shared key:
Type set sensor sharedsecretkey and press Enter.
- When you see the prompt to Please enter shared secret key, type the same shared secret that was specified on the Manager.
- When you see the prompt to Please Re-enter shared secret key, type the same shared secret key for confirmation.
- View the Sensor status:
Type status and press Enter.
It might take up to two minutes for the trust to be re-established. Use the <Up Arrow> key to repeat the command.
The parameters to search for are:
-
Trust Established: Yes
-
Alert Channel: Up
-
Log Channel: Up
Watchdog commands:
- watchdog off: Disables the watchdog process for diagnostic purposes, when a sensor reboots continuously due to repeated system failure.
- watchdog on: Enables the watchdog process.
- watchdog status: Returns the status of the watchdog process: watchdog [on | off].