Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 6.1 and 6.1-XG)
Preface
Download this chapter
PrefacePreface
Download the complete book
Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 6.1 and 6.1-XG) Book-Length PDFCisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 6.1 and 6.1-XG) Book-Length PDF (PDF - 3 MB)
give_us_feedback

Table Of Contents

Preface


Preface

This guide describes how to use the Web-Based Manager (WBM) graphical user interface to operate the Detector module remotely and to monitor the Detector module activity, status, and statistics.

This preface describes the audience, organization, and conventions of this publication, and provides information on how to obtain related documentation.

This preface contains the following sections:

Audience

Organization

Symbols and Conventions

Obtaining Documentation, Obtaining Support, and Security Guidelines

Audience

The Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide is intended primarily for the following audiences:

Network administrators

Engineers

Operators

Network security professionals

This guide assumes a thorough knowledge of networking and networking security.

Organization

This user guide is divided into the following chapters:

Chapter
Description

Chapter 1, "Product Overview"

Provides information on system requirements and an overview of the Detector module and the WBM.

Chapter 2, "Launching and Customizing the WBM"

Provides an overview of the basic WBM procedures and explains how to set up and connect to the Detector module WBM.

Chapter 3, "Managing User Access"

Describes how to use the WBM to create, modify, and delete the user profiles that control access to the Detector module WBM.

Chapter 4, "Creating and Configuring Zones"

Describes how to create and manage zones.

Chapter 5, "Configuring Zone Filters"

Describes how to configure the zone filters.

Chapter 6, "Configuring Policy Templates"

Describes the policy templates and how to configure them.

Chapter 7, "Learning Zone Traffic"

Describes the learning process and how to use the learning process to construct and tune the policies that the Detector module uses for zone protection.

Chapter 8, "Managing Zone Policies"

Describes the zone policies and how to manage them.

Chapter 9, "Activating Anomaly Detection"

Describes how to configure and activate zone anomaly detection.

Chapter 10, "Monitoring Detector Module and Zone Operations"

Describes how to perform tasks that are used for monitoring the Detector module and the zones and how to display zone statistics and diagnostic information.

Chapter 11, "Monitoring Network Traffic and Extracting Attack Signatures"

Describes how to activate the packet-dump feature and how to view the packet-dump capture files to monitor network traffic.


Symbols and Conventions

This guide uses the following conventions:

Convention
Description

boldface font

Boldface text indicates commands and keywords that you enter exactly as shown.

Italic font

Italic font indicates arguments arguments for which you supply the values.

Screen font

Screen font indicates information that the Detector module displays on the screen.

Braces ({ | })

Braces enclosing keywords or arguments separated by a vertical line indicate command parameters from which you must choose one.

Square brackets ([ ])

Square brackets enclosing keywords or arguments separated by a vertical line indicate an optional choice.

admin@DETECTOR#

Default CLI prompt.


This guide uses the following symbols and conventions to identify different types of information:

Caution Means reader be careful. In this situation, you might do something that could result in equipment damage or loss of data.

Note Means reader take note. Notes contain helpful suggestions or references to material not covered in the manual.

Tip Means the following information will help you solve a problem. The tips information might not be troubleshooting or even an action, but could be useful information.

Obtaining Documentation, Obtaining Support, and Security Guidelines

For information on obtaining documentation, obtaining support, providing documentation feedback, security guidelines, and also recommended aliases and general Cisco documents, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html