cc/td/doc/product/iaabu/csids
hometocprevnextglossaryfeedbacksearchhelp
PDF

Table of Contents

NetRanger Version
2.2.0 Release Notes

NetRanger Version
2.2.0 Release Notes

These release notes discuss late changes, enhancements, and upgrade information for NetRanger version 2.2.0.

NetRanger version 2.2.0 has been redesigned and repackaged to make it easy to install, easy to set up, and easy to use. It now consists of a Sensor appliance and a Director software module that installs on top of HP OpenView. The Sensors are based on 400 MHz Intel motherboards and come with one or two processors depending on the interface cards in the box. This motherboard supports the new 100 MHz PCI bus, allowing for faster I/O. The monitoring interface options include Ethernet, Token Ring, Fast Ethernet, Single Attached FDDI, and Dual Attached FDDI. The second control interface is 10/100bT Ethernet. The Sensor is run on the Solaris X86 2.6 operating system. The Director now runs with HP OpenView 5.0 on either Solaris 2.6 or HPUX 10.20.

Contents

These release notes summarize the following topics:

These topics are covered in detail in the totally revised NetRanger User Guide.

Caveats

This section includes the following topics:


Note Refer to the netranger220-readme.txt file bundled with the NetRanger software for last-minute changes and caveats.

Caveat for Operating a 2.2.0 Sensor with a 2.1.1 Director

Operating a 2.2.0 Sensor with a 2.1.1 Director is not supported.


Note It is highly recommended that you upgrade to the 2.2.0 Sensor to take advantage of the latest enhancements.

Caveats for Operating a 2.2.0 Director with a 2.1.1 Sensor

If you operate a 2.2.0 Director with a 2.1.1 Sensor, keep the following issues in mind:

To enable this service, Telnet to the Sensor, open the /usr/nr/etc/daemons file in a text editor, either add "nr.fileXferd" to the list of daemons or uncomment the "nr.fileXferd" line, save your changes and exit the editor, and then run nrstop and nrstart from the command line.

Caveats for nrConfigure

The following are caveats concerning the nrConfigure management tool:

Caveats for the sapd Service

If a logfile contains any errors, sapd may not load it into the RDBMS, causing sapd to fail and generate an error. If this happens, follow these steps:

Step 1 Type nrstop to stop the NetRanger services.

Step 2 Type the following command to find the name of the logfile that caused problems:

more /usr/nr/var/messages.sapd
 

Step 3 Delete the logfile, mentioned in the messages.sapd file, from the /usr/nr/var/new directory.

Step 4 Type nrstart to restart the NetRanger services.


Note When you restart the NetRanger services, it is very likely that you will have duplicate records in your database.

Caveats for the Security>Advanced>Shunning>Disable Menu Function

The Security>Advanced>Shunning>Disable menu function keeps the managed service from communicating with any routers it is controlling. If you invoke this function and then try to implement manual shunning, your commands will not be passed to the router.

Also, any currently shunned networks or hosts will not be removed from the shun list.

This menu function is normally used to temporarily disable managed so you can pass configuration commands to the router safely.

Use the Security>Advanced>Shunning>Enable menu function to resume shunning. If you reboot the Sensor, then the temporary disabling of shunning is also reset.

Upgrade Information

This section discusses the following topics:

Upgrading a Sensor from 2.1.1 to 2.2.0

If you have an existing 2.1.1 Sensor and would like to upgrade the software to NetRanger version 2.2.0, use Table 1 to guide you in the process.


Table 1: Upgrading a Sensor from 2.1.1 to 2.2.0
Upgrade to 2.2.0, but keep Solaris 2.5.1* Upgrade to 2.2.0
and upgrade
to Solaris 2.6
If you want to keep your configuration files: If you want to create new configuration files:

1 .Refer to Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

2 .Refer to the "Upgrading Device Management (for Cisco routers)" section of Chapter 3, "Installation and Configuration".

3 .Refer to the "Downloading the Sensor and Signature Update" section of these Release Notes.

4 .If the Director has also been upgraded and its configuration files changed, use nrConfigure's Insert Sensor feature to finalize the configuration.

1 .Refer to Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

2 .Run sysconfig-sensor on the Sensor.

3 .Run sysconfig-director on the Director, and then use nrConfigure's Add Host feature to finalize the Sensor upgrade.

4 .Refer to the "Downloading the Sensor and Signature Update" section of these Release Notes.

Refer to the "Building a Sensor (Optional)" section of Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

If you want to upgrade your Sensor hardware, contact your Cisco Sales representative to order a Sensor appliance, which runs on a customized version of Solaris 2.6.


*Solaris 2.5.1 is not year 2000 compliant. Be sure to install the Y2K patches for Solaris 2.5.1.

Upgrading a Director from 2.1.1 to 2.2.0

If you have an existing 2.1.1 Director and would like to upgrade the software to NetRanger version 2.2.0, use Table 2 to guide you in the process.


Note NetRanger on AIX 4.1.x is no longer supported. Contact a Cisco sales representative to migrate to Solaris or HP-based 2.2.0 Director.

Table 2: Upgrading a Director from 2.1.1 to 2.2.0
If your 2.1.1 Director is:
Sun Solaris SPARC 2.5.1 HP-UX 10.10


Keep Solaris 2.5.1
and keep configuration files*
Keep Solaris 2.5.1 and create new configuration files* Upgrade to Solaris 2.6

If you want to keep your configuration files, refer to Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

1 .Refer to Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

2 .Run sysconfig-director on the Director.

3 .Use nrConfigure to finalize the Director configuration.

4 .To upgrade and configure 2.1.1 Sensors, refer to Table 1 of these Release Notes.

1 .Refer to the "Uninstalling the Director" section of Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

2 .Upgrade the operating system to Solaris 2.6.

3 .Refer to the "Director Installation and Configuration" section of Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

4 .To upgrade and configure 2.1.1 Sensors, refer to Table 1 of these Release Notes.

1 .Refer to the "Uninstalling the Director" section of Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

2 .Upgrade the operating system to HP-UX 10.20.

3 .Refer to the "Director Installation and Configuration" section of Chapter 3, "Installation and Configuration" in the NetRanger User Guide.

4 .To upgrade and configure 2.1.1 Sensors, refer to Table 1 of these Release Notes.


*Solaris 2.5.1 is not year 2000 compliant. Be sure to install the Y2K patches for Solaris 2.5.1.

Removed Functionality in NetRanger Version 2.2.0

For NetRanger version 2.2.0, NetView for AIX support on the Director and licensing have both been removed.

Downloading the Sensor and Signature Update

The Sensor Update contains updates to the signatures list, the Sensor's intrusion detection software, and the Network Security Database (NSDB). This patch is updated periodically.

To obtain the Sensor Update Patch, follow these steps:

Step 1 If you have not already done so, become a CCO member.

To become a CCO member, access the following URL:

http://www.cisco.com/register/  
 

and follow the registration instructions.

Step 2 Access the following URL:

http://www.cisco.com/cgi-bin/tablebuild.pl/nr22-sensor  
 

Step 3 Log on with your CCO username and password.

Step 4 Download the latest readme and either the Solaris SPARC or Solaris x86 Sensor Update files.

Step 5 For each file, follow the instructions for downloading. You can download via FTP, HTTP, or e-mail.

Step 6 When you have downloaded all the files, use the FTP facility to transfer them to the Sensor.

Step 7 Follow the instructions in the readme file for installing the Sensor update.

Enhancements

For the 2.2.0 release of NetRanger, the following were a top priority:

Installation Enhancements

The following installation enhancement was made for the Sensor:

On the Director, the following enhancements were made:

Support Enhancements

The following enhancements were made to simplify technical support of NetRanger:

These three trade-in deals will be available until April 30, 1999. Contact your Cisco sales representative for details.

Usability Enhancements

The following enhancements were made for product usability:

The RecordOfExcludedAddress token is still supported in NetRanger version 2.2.0.

New Signatures

NetRanger version 2.2.0 contains the following new signatures:

Related Documentation

Use these release notes in conjunction with the following documents:

Cisco Connection Online

Cisco Connection Online (CCO) is Cisco Systems' primary, real-time support channel. Maintenance customers and partners can self-register on CCO to obtain additional information and services.

Available 24 hours a day, 7 days a week, CCO provides a wealth of standard and value-added services to Cisco's customers and business partners. CCO services include product information, product documentation, software updates, release notes, technical tips, the Bug Navigator, configuration notes, brochures, descriptions of service offerings, and download access to public and authorized files.

CCO serves a wide variety of users through two interfaces that are updated and enhanced simultaneously: a character-based version and a multimedia version that resides on the World Wide Web (WWW). The character-based CCO supports Zmodem, Kermit, Xmodem, FTP, and Internet e-mail, and it is excellent for quick access to information over lower bandwidths. The WWW version of CCO provides richly formatted documents with photographs, figures, graphics, and video, as well as hyperlinks to related information.

You can access CCO in the following ways:

For a copy of CCO's Frequently Asked Questions (FAQ), contact cco-help@cisco.com. For additional information, contact cco-team@cisco.com.


Note If you are a network administrator and need personal technical assistance with a Cisco product that is under warranty or covered by a maintenance contract, contact Cisco's Technical Assistance Center (TAC) at 800 553-2447, 408 526-7209, or tac@cisco.com. To obtain general information about Cisco Systems, Cisco products, or upgrades, contact 800 553-6387, 408 526-7208, or cs-rep@cisco.com.

Documentation CD-ROM

Cisco documentation and additional literature are available in a CD-ROM package, which ships with your product. The Documentation CD-ROM, a member of the Cisco Connection Family, is updated monthly. Therefore, it might be more current than printed documentation. To order additional copies of the Documentation CD-ROM, contact your local sales representative or call customer service. The CD-ROM package is available as a single package or as an annual subscription. You can also access Cisco documentation on the World Wide Web at http://www.cisco.com, http://www-china.cisco.com, or http://www-europe.cisco.com.

If you are reading Cisco product documentation on the World Wide Web, you can submit comments electronically. Click Feedback in the toolbar and select Documentation. After you complete the form, click Submit to send it to Cisco. We appreciate your comments.





hometocprevnextglossaryfeedbacksearchhelp
Posted: Thu Jul 27 09:26:59 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.