|
|
|
Step |
Description |
|---|---|
1 |
Select a designated physical interface for Mirror and Decrypt on the Security Gateway, or each cluster member. Important - On cluster members, you must select an interface with the same name (for example, |
2 |
Configure a dummy IP address on this designated physical interface. Important - This IP address cannot collide with other IP addresses used in your environment. This IP address cannot belong to subnets used in your environment. Make sure to configure the correct subnet mask. After you enable traffic mirroring on this interface in SmartConsole, all other traffic that is routed to this interface is dropped. For instructions about configuring an IP address on a physical interface, see R80.30 Gaia Administration Guide - Chapter Network Management - Section Network Interfaces - Section Physical Interfaces. |
3 |
Configure the required Maximum Transmission Unit (MTU) on this designated physical interface. MTU has to be the default 1500, or at least the maximal MTU value from other interfaces on the Security Gateway. For instructions about configuring an MTU on a physical interface, see R80.30 Gaia Administration Guide - Chapter Network Management - Section Network Interfaces - Section Physical Interfaces. |
4 |
Important: On cluster members, you must configure this designated physical interface in the
Note - To apply the configuration from the file and make it persistent, install an Access Control Policy on the cluster object. You install the Access Control Policy later, after the required configuration steps in the SmartConsole. |
