-
Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 5.0)
-
Index
-
Preface
-
Introduction
-
Enabling and Launching the WBM
-
Managing User Access
-
Creating and Configuring Zones
-
Configuring Zone Filters
-
Configuring Policy Templates
-
Learning Zone Traffic
-
Managing Zone Policies
-
Activating Anomaly Detection
-
Monitoring Detector Module and Zone Operations
-
Managing the Packet-Dump Feature
-
Table Of Contents
Obtaining Documentation, Obtaining Support, and Security Guidelines
Preface
The Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide describes the Web-based Manager (WBM), a graphical user interface (GUI) for remotely operating the Detector module and monitoring the Detector module activity, status, and statistics. The WBM communicates with the Detector module by translating its HTML pages into Detector module commands. These are the same commands that you can enter using the command-line interface (CLI). This guide describes the WBM workflow and operation.
Some features of the Detector module, mostly related to the initial installation and configuration of the Detector module, can only be configured using the CLI and cannot be configured using the WBM. Refer to the Cisco Traffic Anomaly Detector Module Configuration Guide for details on using the CLI.
This preface contains the following major sections:
•
Obtaining Documentation, Obtaining Support, and Security Guidelines
Audience
This guide is intended for the following trained and qualified personnel who are responsible for operating the WBM:
· System administrator
· System operator
Organization
This user guide is divided into the following chapters:
Provides information on system requirements and an overview of the Detector module and the WBM.
Provides an overview of the basic WBM procedures and explains on how to set up and connect to the Detector module WBM.
Describes how to use the WBM to create, modify, and delete the user profiles that control access to the Detector module WBM.
Describes how to create and manage the Detector module zones.
Describes how to perform advanced zone filter configuration tasks on the Detector module.
Describes how to perform advanced policy template configuration tasks on the Detector module.
Describes how to use the Detector module learning process to analyze zone traffic and create zone-specific policies.
Describes how to manage zone policies.
Describes how to perform tasks associated with detecting zone traffic anomalies and DDoS attacks.
Chapter 10, "Monitoring Detector Module and Zone Operations"
Describes how to perform tasks used for monitoring Detector module zones and displaying zone statistics and diagnostic information.
Describes how to initiate the packet-dump capture feature and view the packet-dump capture contents.
Conventions
This manual uses the following conventions:
Notes use the following conventions:
Note
Cautions use the following conventions:
Caution
Tips use the following conventions:
Tip
Obtaining Documentation, Obtaining Support, and Security Guidelines
For information on obtaining documentation, obtaining support, providing documentation feedback, security guidelines, and also recommended aliases and general Cisco documents, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
