Black Box EncrypTight Enforcement Point (ETEP) Network Hardware User Manual


  Open as PDF
of 88
 
ETEP Installation Guide 29
Grounding
Maintain reliable grounding of a rack-mounted ETEP. Pay particular attention to supply connections
other than direct connections to the branch circuit, such as the use of power strips.
Maintenance
Allow at least 19 inches (48.3 cm) of clearance at the front of the rack for maintenance. Use a cable-
management system to help keep cables organized, out of the way, and free from kinks or bends that
degrade cable performance.
Firewall Ports
Table 13 lists the protocols that are used by the ETEPs and the EncrypTight Manager system. Make sure
that any firewalls in your system are configured to allow for the protocols that are required for your
deployment: standalone ETEPs used for point-to-point encryption or ETEPs used in the EncrypTight
Manager system.
Installation Instructions: ET0010A
The ET0010A can be mounted in a standard 19-inch rack using the mounting kit, or simply placed on a
rack shelf or solid surface. Before installing the ETEP in a 19-inch rack, review the mounting guidelines
listed in “ETEP Site Preparation” on page 28.
Table 13 Firewall ports
Protocol Port Description
Standalone
ETEPs
EncrypTigh
t Manager
FTP TCP 20,
21
Used for upgrading the software on the
ETEP and retrieving appliance log files.
Yes Yes
ICMP/Ping Used to check connectivity with a device. Yes Yes
IKE /
ISAKMP
UDP 500 Used to establish security associations in
IKE policies.
Yes
IPSec ESP IP
protocol
50
Used in encryption policies. Yes Yes
SFTP TCP 22 Used for secure FTP operations. Yes Yes
SNMP UDP
161, 162
Used to send SNMP traps from the ETEPs
to a management workstation.
Yes
SNTP UDP 123 Used for time synchronization among
EncrypTight Manager components.
Yes
SSH TCP 22 Used to securely access the CLI on ETEPs. Yes Yes
Syslog UDP 514 Used to send syslog messages from the
ETEPs to a syslog server.
Yes
TLS
(HTTPS)
TCP 443 A secure method of communicating
management information between
EncrypTight Manager and the ETEPs.
Yes
XML-RPC TCP 443 Used for communications between
EncrypTight Manager components.
Yes
 previous next