Adding Logical Hybrid Interfaces
License:
Control
Supported Devices:
Series 3
You must associate a logical hybrid interface with a virtual router and virtual switch to bridge traffic between Layer 2 and Layer 3. You can only associate a single hybrid interface with a virtual switch. However, you can associate multiple hybrid interfaces with a virtual router.
You can also configure SFRP on a logical hybrid interface. See Configuring SFRP for more information.
Note that disabling the
ICMP Enable Responses
option for hybrid interfaces does not prevent ICMP responses in all scenarios. You can add rules to an access control policy to drop packets where the destination IP is the hybrid interface’s IP and the protocol is ICMP; see Controlling Traffic with Network-Based Rules.
If you have enabled the
Inspect Local Router Traffic
option on the managed device, it drops the packets before they reach the host, thereby preventing any response. For more information about inspecting local router traffic, see Understanding Advanced Device Settings.
Caution Changing any (Series 2) or the highest (Series 3) MTU value for a sensing interface or inline set temporarily interrupts traffic inspection on all sensing interfaces on the device, not just the interface you changed, when you apply your changes. Whether traffic drops during this interruption or passes without further inspection depends on the model of the managed device and the interface type. See
How Snort Restarts Affect Traffic.
To edit an existing hybrid interface, click the edit icon (
) next to the interface.
To add a logical hybrid interface:
Access:
Admin/Network Admin
Step 1 Select
Devices > Device Management
.
The Device Management page appears.
Step 2 Next to the device where you want to add the hybrid interface, click the edit icon (
).
The Interfaces tab appears.
Step 3 From the
Add
drop-down menu, select
Add Logical Interface
.
The Add Interface pop-up window appears.
Step 4 Click
Hybrid
to display the hybrid interface options.
Step 5 In the
Name
field, type a name for the interface. You can use alphanumeric characters and spaces.
Step 6 From the
Virtual Router
drop-down list, select an existing virtual router, select
None
, or select
New
to add a new virtual router.
Note that if you add a new virtual router, you must configure it on the Device Management page (
Devices > Device Management> Virtual Routers
) after you finish setting up the hybrid interface. See Adding Virtual Routers.
Step 7 From the
Virtual Switch
drop-down list, select an existing virtual switch, select
None
, or select
New
to add a new virtual switch.
Note that if you add a new virtual switch, you must configure it on the Device Management page (
Devices > Device Management> Virtual Switches
) after you finish setting up the hybrid interface. See Adding Virtual Switches.
Step 8 Select the
Enabled
check box to allow the hybrid interface to handle traffic.
If you clear the check box, the interface becomes disabled and administratively taken down.
Step 9 In the
MTU
field, type a maximum transmission unit (MTU), which designates the largest size packet allowed.
The range within which you can set the MTU can vary depending on the FireSIGHT System device model and the interface type. See MTU Ranges for Managed Devices for more information.
Step 10 Next to
ICMP
, select the
Enable Responses
check box to allow the interface to respond to ICMP traffic such as pings and traceroute.
Step 11 Next to
IPv6 NDP
, select the
Enable Router Advertisement
check box to enable the interface to broadcast router advertisements.
You can only select this option if you added IPv6 addresses.
Step 12 To add an IP address, click
Add
.
The Add IP Address pop-up window appears.
Step 13 In the
Address
field, type the IP address and subnet mask. Note the following:
-
You cannot add network and broadcast addresses, or the static MAC addresses 00:00:00:00:00:00 and FF:FF:FF:FF:FF:FF.
-
You cannot add identical IP addresses, regardless of subnet mask, to interfaces in virtual routers.
Step 14 Optionally if you have IPv6 addresses, next to the
IPv6
field, select the
Address Autoconfiguration
check box to set the IP address of the interface automatically.
Step 15 For
Type
, select either Normal or SFRP.
For SFRP options, see Configuring SFRP for more information.
Step 16 Click
OK
.
The IP address is added.
Tip To edit an IP address, click the edit icon (). To delete an IP address, click the delete icon ().
Step 17 Click
Save
.
The logical hybrid interface is added. Note that your changes do not take effect until you apply the device configuration; see Applying Changes to Devices.
Deleting Logical Hybrid Interfaces
License:
Control
Supported Devices:
Series 3
The following procedure explains how to delete a logical hybrid interface.
To delete a hybrid interface:
Access:
Admin/Network Admin
Step 1 Select
Devices > Device Management
.
The Device Management page appears.
Step 2 Next to the device where you want to delete the logical hybrid interface, click the edit icon (
).
The Interfaces tab for that device appears.
Step 3 Next to the logical hybrid interface you want to delete, click the delete icon (
).
Step 4 When prompted, confirm that you want to delete the interface.
The interface is deleted. Note that your changes do not take effect until you apply the device configuration; see Applying Changes to Devices.