CYAN Secure Web 1.4 and above - FTP Directory Listing

cuttlefishblueData Management

Dec 16, 2012 (4 years and 9 months ago)

154 views

CYAN SECURE WEB APPLIANCE
User interface manual
Jun
. 13, 2008
Applies to: CYAN Secure Web 1.4 and above
CYAN SECURE WEB APPLIANCE
User interface m
anual
Contents
1 Log in
............................................................................................................................................................
3
2 Status
............................................................................................................................................................
3
2.1 Status / System
.....................................................................................................................................
3
2.2 Status / Network
....................................................................................................................................
4
 Status / Network / Secure Web
.............................................................................................................
4
 Status / Network / Interface Configuration
............................................................................................
4
 Interface assignment
.............................................................................................................................
5
2.3 Services
................................................................................................................................................
6
 Status / Services / Secure Web
............................................................................................................
6
 Status / Services / NTP
.........................................................................................................................
6
 Status / Services / Postfix
.....................................................................................................................
6
 Status / Services / PostgreSQL
............................................................................................................
7
 Status / Services / OpenSSH
................................................................................................................
7
3 System
..........................................................................................................................................................
8
3.1 System / Time & Date
...........................................................................................................................
8
3.2 System / Logrotate
................................................................................................................................
8
3.3 System / Kaspersky Anti­Virus
..............................................................................................................
8
3.4 System / E­Mail
.....................................................................................................................................
8
4 Network
.........................................................................................................................................................
9
4.1 Network / Bridge
....................................................................................................................................
9
4.2 Network / Management
.........................................................................................................................
9
4.3 Network / DNS
......................................................................................................................................
9
4.4 Network / Firewall
................................................................................................................................
10
 Network / Firewall / Transparent Proxy
................................................................................................
10
 Network / Firewall / Access Control
.....................................................................................................
10
5 Maintenance
................................................................................................................................................
11
5.1 Maintenance / Disk
..............................................................................................................................
11
5.2 Maintenance / Firmware
......................................................................................................................
11
5.3 Maintenance / Power
...........................................................................................................................
12
5.4 Maintenance / Appliance Accounts
.....................................................................................................
12
5.5 Maintenance / Factory
.........................................................................................................................
12
©
2008 CYAN Networks Software GmbH
-
2
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
1
Log in
To log into the CYAN Secure Web Appliance, open a web browser and type in the address:
https://<youripaddress>:9999/
Where <youripaddress> is one of the appliance's IP addresses. You can see them on the

front display.
The default user name and password are both 'admin'.
2
Status
The status tab shows information about the hardware and the configuration of your

appliance.
2.1
Status / System
On the
System
tab you can see basic information about the hardware of your appliance:
Current load:
The load is a value calculated from the current memory and cpu usage, as

well as some other operating system values. It shows an overview of how busy your machine

is.
Uptime:
Shows, how long your machine is running since the last reboot.
Current disk status:
Information about the harddisk usage.
©
2008 CYAN Networks Software GmbH
-
3
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
2.2
Status / Network
The
Network
tab shows information about the usage and the configuration of the network

interfaces.
Status / Network / Secure Web
Here you can see how many requests are served by CYAN Secure Web.
Active threads:
Amount of concurrend threads by Secure Web.
Connections:
All open network connections are shown here.
Status / Network / Interface Configuration
This list shows all the appliance's network interfaces and their configuration.
©
2008 CYAN Networks Software GmbH
-
4
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
Interface assignment
There are two different CYAN Secure Web Appliance models:
Rear view of DS models
0 --> eth3
1 --> eth0
2 --> eth1
3 --> eth2
The first (1) and the second (2) interface are configured in bridged mode for analyzing the

passing data traffic. The third one (3) is used for management access to the user interface.
The last interface is not in use.
Rear view of RS models
0 --> eth0
1 --> eth1
2 --> eth2
3 --> eth3
CYAN Secure Web Appliance has four network interfaces.
The first (0) and the second (1) interface are configured in bridged mode for analyzing the

passing data traffic. The third one (2) is used for management access to the user interface.
The last interface is not in use.
If you want to access the appliance directly, you can connect keyboard and monitor here.
©
2008 CYAN Networks Software GmbH
-
5
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
2.3
Services
You are able to control the different types of services running on your appliance here.
Status / Services / Secure Web
This tab show the status of all CYAN Secure Web services. You can start and stop the services

here.
Status / Services / NTP
NTP (Network Time Protocol) is used to synchronize the time on your appliance with time

servers in the internet.
Status / Services / Postfix
Postfix is a open source mail server. Under this tab you can start or stop this service as you

like.
©
2008 CYAN Networks Software GmbH
-
6
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
Status / Services / PostgreSQL
PostgreSQL is the database used for the CYAN Reporting System. Under this tab you can start

or stop the database service.
Status / Services / OpenSSH
OpenSSH is used to access the appliance from a command line. This is needed mostly only

for support issues. If you CYAN Networks support needs to access the machine, you need to

make sure that this service is running.
©
2008 CYAN Networks Software GmbH
-
7
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
3
System
System specifc parameters can be configured here.
3.1
System / Time & Date
Set the time and the date of your appliance
Date/Time:
System date and time of the appliance.
Use
client's date/time:
Update the appliance settings with your machine's date or time.
3.2
System / Logrotate
If log rotation is enabled, all Secure Web log files will be kept for 4 weeks and then deleted.
3.3
System / Kaspersky Anti-Virus
You can enable or disable the automatic Kaspersky virus pattern file update here.
3.4
System / E-Mail
The mail daemon can be configured to deliver mails in two ways:
- Relay all mails to another mail server. Enter the mail server which processed all mails.
- Direct delivery. Leave the relay server blank.
©
2008 CYAN Networks Software GmbH
-
8
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
4
Network
You can configure the network configuration of your CYAN Secure Web Appliance here.
Note:
If you change the IP address of the interface you used to connected to the appliance,

you need to re-enter the new IP address in the web browser to access the appliance UI

again.
4.1
Network / Bridge
You can either assign a static IP address to the bridged interfaces (eth0 and eth1), or user

DHCP (Dynamic Host Configuration Protocol) to assign one automatically.
If you don't use DHCP, you need to specify the IP address, network mask and the gateway for

the interface.
4.2
Network / Management
Here you can configure the IP address of your management interface. (eth2)
The management interface should be used to access the appliance's web interface.
Caution:
If you assign an IP address to the management interface, which is in the same

subnet as the bridged interface, make sure that the routing is correct.
4.3
Network / DNS
Under DNS (Domain Name Service) you can configure the IP address and the domain which

the appliance should use.
Note:
If DHCP is enabled, settings may be overwritten from the DHCP daemon when the

DHCP lease if refreshed.
©
2008 CYAN Networks Software GmbH
-
9
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
4.4
Network / Firewall
This menu is used to configure the appliance's firewall and port mapping.
Network / Firewall / Transparent Proxy
Transparent mode means, that all reques to a web service passing through the bridged

interface will be redirected to CYAN Secure Web.
The
Proxy port
can be changed in CYAN Secure Web. You need to specify the same setting

here. The default value is 8080.
Network / Firewall / Access Control
The firewall can limit the IP addresses and networks which are allowed to access the proxy.
Allow management over bridge:
br If you disable this setting, you only can access the

appliance via the management interface (eth2).
Restrict proxy usage:
If this is not enabled, all clients can access CYAN Secure Web. You

can still limit web access there.
Allowed IP networks: If restricted access is enabled, enter a list of allowed IP addresses and

subnets seperated by blanks here. (e.g. “192.168.0.0/16 10.1.2.3/32”)
©
2008 CYAN Networks Software GmbH
-
10
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
5
Maintenance
All maintenance tasks can be performed or configured here.
5.1
Maintenance / Disk
Here you can delete the content of the log and virus scanning folders of you appliance.
Select the options you want and click on
Execute
.
Cyan Secure Web Logfiles:
D
elete the CYAN Secure Web log files
(Path: /opt/cyan/sweb/logs/)
Cyan Secure Web HTTP Cache:
Delete the cache memory of the proxy server.
Cyan Secure Web Vscan Quarantine:
Delete the virus scan quarantine folder.
Temporary directorys/files:
Delete all temporary files.
5.2
Maintenance / Firmware
This menu is used to update your appliance software to the latest version.
Update:
only applies fixes to installed packages and will never remove or install any new

packages.
Upgrade:
applies fixes and upgrades to installed packages and will also remove, replace or

install new packages, if needed.
If you select to
simulate
the actions, you will only see an output of what would be done,

instead of applying the updates immediately.
©
2008 CYAN Networks Software GmbH
-
11
-
CYAN SECURE WEB APPLIANCE
User interface m
anual
5.3
Maintenance / Power
Use this dialog to restart or shut down the appliance.
Caution:
Once you executed a command here, there is no turning back.
5.4
Maintenance / Appliance Accounts
In this menu tab you can enable or disable the support user and set a new password for the

administrative user.
Appliance user:
Set a new password for your admin user to access the appliance.
Support user:
Enable or disable the support user for the appliance. Set a password for the

support user.
Caution:
The
support user
is needed to access the appliance via secure shell. No other user

(not even root) is configured on the machine. If you disable the support user, there is no way

to access the machine besides the web interface.
5.5
Maintenance / Factory
This tab will reset all settings to the factory default.
Note:
Once
you executed the command, there is be no turning back. After you push the

execute button your appliance will be shut down.
©
2008 CYAN Networks Software GmbH
-
12
-