PacketViper Installation Tips, Network bridging, Gateway, Mirror, Span Configuration, Unable to Register, DNS settings, Network Interfaces, Trusted NIC Ports

PacketViper Installation Tips

[+] Where do I put PacketViper on my network?

Anywhere you like!  But to be most effective, it should be on the edge of your network.  Some of the more common configurations are:

  • Layer 2 network bridge between the Internet and your router
  • PacketViper as the gateway device
  • Mirror/SPAN

 

Most Common Configuration

PV-50

PV50Map.001.jpg

 PV-100

 

Inline_Image.001.jpg

PV-300

PV300Map.001.jpg

 

On our web site go to Support -->Configuration Maps to see how PacketViper can be implemented.

Check DUPLEX / Auto Negotiation on Bridge Connections

Before installing PacketViper inline you should verify how your internet connections are configured for duplex/Auto Negotiation.  Common practice is Auto-Negotiation, but some carriers prefer specifying the duplex and speed.  PacketViper allows you to do this also. 

 

Go to Setup - > Networking - and scroll to your bridge ports.  They can be easily identified by the NIC port Number and the work "Bridge".  Unless you changed the out of the box bridge, ETH2 and ETH3 are the default bridge ports. These will correspond to the labels on PacketViper.

BridgePorts.png

 

Click on Update Port and match the port settings to both sides of the bridge.

 

AutoNeg.png

[+] Can't Register PacketViper?

The most common issues we noticed why you are unable to register your PacketViper is DNS setting are not set, or PacketViper's inability to access the internet. PacketViper must be able to register itself, so requires access. if PacketViper can not register, you will not be able to filter traffic.

Do this:

1. Check your DNS settings by clicking on the SETUP tab, then NETWORK INTERFACES. At the bottom of the screen you will see an area which holds the Hostname, and DNS. Make sure those are correct.

DNSSettings.jpg

2. Go to TOOLS then PING and enter and 8.8.8.8 (Google DNS servers) and click on GENERATE. You should see replies such as

PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
64 bytes from 8.8.8.8: icmp_seq=1 ttl=53 time=24.6 ms
64 bytes from 8.8.8.8: icmp_seq=2 ttl=53 time=24.9 ms
64 bytes from 8.8.8.8: icmp_seq=3 ttl=53 time=24.5 ms
64 bytes from 8.8.8.8: icmp_seq=4 ttl=53 time=24.3 ms


--- 8.8.8.8 ping statistics ---
10 packets transmitted, 10 received, 0% packet loss, time 9005ms
rtt min/avg/max/mdev = 24.266/24.475/24.948/0.234 ms


if you do not see these replies, your PacketViper does not have access to the internet. You must correct this issue, before you can register. If you require a proxy connection you can enter one at SYSTEM - > PROXY SETTING


Proxy_Setting.png

[+] Things you could do before placing inline.

PacketViper can be placed on the network before actual cut over.  This would be a good idea to get the registration process out of the way.  All that needs to be done is plug in the ETH0 to the inside network. 

1. Plug in a monitor and keyboard and mouse, and power up the unit. 

2. Once the unit is done booting, you will see the IP address it obtained from their DHCP server.  

3. Go to a different workstation, open up the browser, and type the address of the PacketViper in the address bar (

example http://<Your PV IP Address:47880)

4. At the log in, accept the EULA, then use the default username and password.

You will now see the home screen with a registration message, click it, and you will be taken to the registration area. They should have received their license number, simply paste it into the license field, and apply.

Subscription-4.png

Note:  The system will need access to the internet, for the registration and update process.  So make sure they allow the PacketViper IP address out through the firewall. 

This would complete the registration.  

It would also be a good idea to update the system after registration, Click on Setup, then System, and Version Information. Click Update Now. (Might take 1-2 min for message to appear, Depends on network speed)

Subscription-5.png

Some other good things to do is disable seeing inside broadcasts.  You can do this by trusting the ETH0 NIC 

Click on Setup

Select Security

Click on Trusted NIC Ports

Place a Check mark next to ETH0.

SecurityNic-6.png

If you want to change the username and password, go to Setup, then users. (Good idea to change) 

NOTE: If the are any errors during the update or registration process, most likely the inside IP address of the PacketViper does not have access to the internet.  Double check the firewall access.

Jump To

PACKETVIPER GEO IP FILTER

Read useful tips on how to install, edit, and manage PacketViper, our Geo IP network Filter.  Get it installed quickly using our tips to begin blocking countries, and filtering unwanted network traffic. PacketViper is a Geo IP filter on steroids that can block any country by port inbound, and outbound.  Eliminate the unwanted traffic and get yourself a PacketViper! Click here to order one today!


HOW TO A BLOCK COUNTRY?

It's simple to block countries, get a PacketViper and filter out unwanted network traffic to your exposed network ports in seconds. Relieve the pressure through your security environment today.