O le Cisco Secure Network Analytics Virtual Edition Appliance o
se fofo o feso'ota'iga feso'otaiga fa'akomepiuta. E maua ai tulaga maualuga
mata'itū ma au'ili'ili vaega mo fefa'ataua'iga o feso'otaiga. Lenei
faʻapipiʻi taʻiala o le a fesoasoani ia te oe e faʻapipiʻi ma faʻapipiʻi le
meafaigaluega e faʻamautinoa le faʻatinoina lelei ma le faʻatinoga.

Fa'atonuga o le Fa'aaogaina o Mea

Auala Fa'apipi'i

Ole Cisco Secure Network Analytics Virtual Edition Appliance e mafai
fa'apipi'i fa'aoga VMware po'o KVM virtualization platforms. Filifili
le auala fa'apipi'i talafeagai e fa'atatau i lou si'osi'omaga.

Fegalegaleaiga

Ia fa'amautinoa o lo'o fa'amalieina e lau polokalama mana'oga fa'afetaui mo
fa'atautaia le Cisco Secure Network Analytics Virtual Edition
Meafaigaluega. Siaki le faiga e manaʻomia e Cisco i
faʻamautinoa se faʻagasologa faʻapipiʻi lelei.

La'uina o polokalame

Aʻo leʻi amataina le faʻapipiʻi, ia mautinoa e sii mai le
polokalama talafeagai files mai Cisco Polokalama Tutotonu. Ulufale i le
faitotoa ma download le faapipiiina files mo le Lomiga Fa'apitoa
Meafaigaluega.

Fa'atonu Manaoga

I le taimi o le faʻapipiʻiina, e tatau ona e faʻapipiʻi
tulaga eseese ina ia mautinoa fesootaiga talafeagai ma galuega
o le meafaigaluega. O nei faatulagaga e aofia ai:

Fa'atonuga puipui
Tatala ports ma protocols

Feso'ota'iga feso'ota'iga mo feso'ota'iga va'aiga Node
Fa'atonuga mata'ituina mo au'ili'iliga o feoaiga

Fa'apipi'i le Mea Fa'apitoa

Ina ia faʻapipiʻi le Cisco Secure Network Analytics Virtual Edition
Mea faigaluega, mulimuli i laasaga nei:

Ulufale i totonu o lau faʻasalalauga faʻapitoa (VMware vCenter poʻo
KVM).

Fa'atonu tulaga feso'ota'iga talafeagai, pei ole LAN tu'ufua
mo feso'ota'iga va'aiga Node va'aiga.
La'u mai le fa'apipi'iina o le Virtual Edition files mai Cisco
Polokalama Tutotonu.

Mulimuli i faʻatonuga faʻapipiʻi saunia e Cisco mo lau
faʻamatalaga faʻapitoa faʻapitoa (VMware poʻo KVM).
Fa'atulaga tulaga o mea faigaluega i le taimi o le fa'apipi'iina
faagasologa, e aofia ai le igoa talimalo, igoa ole igoa, NTP server, ma le taimi
sone.

Fa'auma le fa'apipi'iina ma fa'amaonia le fa'atinoga o le
Mea Fa'atonu Fa'amatalaga.

FAQ

Q: O a mea e manaʻomia mo le faʻaogaina o le Cisco
Secure Network Analytics Virtual Edition Mea faigaluega?

A: E eseese manaʻoga faʻavae e faʻatatau i le virtualization
fa'aoga tulaga. Fa'amolemole va'ai ile ta'iala feso'ota'i ua saunia e
Cisco mo manaoga faʻapipiʻi faʻapitoa.

Q: E mafai faapefea ona ou sii maia le faʻapipiʻi files mo le Virtual
Lomiga Meafaigaluega?

A: Ina ia sii maia le faʻapipiʻiina files, ulufale i totonu i Cisco Software
Central fa'aoga lau fa'amaumauga Cisco. Fa'asaga i le
vaega o oloa talafeagai ma la'u mai le Virtual Edition
fa'apipi'i files.

F: O a feso'ota'iga feso'otaiga e mana'omia mo le inter-Data Node
fesootaiga?

A: Faʻalagolago i lau virtualization platform, e te manaʻomia
fa'atulaga se vSphere Standard Switch po'o se vSphere Distributed
Su'e ina ia mafai ai feso'ota'iga i le va o Nodes Fa'amaumauga. Faamolemole silasila i
le ta'iala fa'apipi'i mo fa'atonuga auiliili.

View Fullscreen

Cisco Secure Network Analytics
Taiala Fa'apipi'i Mea Fa'asinotonu Lomiga 7.4.2

Lisi o Mataupu

Folasaga

Ua umaview

Tagata fa'alogo

Fa'apipi'i Meafaigaluega ma Fa'atulaga Lau Fa'atonu

Fa'amatalaga Fa'atatau

Fa'aupuga

Faapuupuuga

Saogalemu Su'esu'ega Feso'ota'iga e aunoa ma le Faleoloa Fa'amaumauga

Saogalemu Su'esu'ega Feso'ota'iga ma Fa'amaumauga Fa'amaumauga

Fesili

Teuga o Fa'amaumauga ma Fa'apalepale Fa'aletonu

Telemetry Teuga Example

Tulaga Lautele Fa'atonu Manaoga

Auala Fa'apipi'i

Fegalegaleaiga

Manaoga Lautele mo Meafaigaluega uma

VMware

KVM

La'uina o polokalame

TLS

Talosaga a le Vaega Lona Tolu

Su'esu'e

Igoa Talimalo

Igoa ole igoa

NTP Server

Sone Taimi

Tulaga Fa'atonu Mea Manaoga (e aunoa ma Fa'amaumauga Fa'amaumauga)

Manaoga Fa'atonu le Pule ma le Fa'aputu A'o

-2-

Fa'atonu Fa'atonu Fa'amaumauga

Mea Manaomia (fa'atasi ai ma Fa'amaumauga Fa'amaumauga)

Manaoga Fa'atonu le Pule ma le Fa'aputu A'o

Fa'amatalaga Node Fa'atulagaina Manaoga

Tele-Fa'amatalaga Node Deployment

Su'ega Meafaigaluega Lagolago (fa'atasi ai ma fa'amatalaga fa'aagaoioiga)

Su'ega Meafaigaluega Lagolago (e aunoa ma le fa'aogaina o fa'amaumauga)

Fa'asoa Node Fa'amatalaga Tasi

Fa'amatalaga Node Fa'atonu Manaoga

Feso'ota'iga ma Fetufa'aiga Manatu

Suiga Fa'ata'ita'i Example

Fa'atonuga o le Tu'uina o Fa'amaumauga

Fa'ata'ita'iga Fa'atonu Manaoga

Punaoa Manaomia

Fa'atulagaina o le CPU

Pule Fa'amatalaga Fa'amatalaga

Pule

Flow Collector Virtual Edition

Flow Collector e aunoa ma se Faleoloa Fa'amaumauga

Fa'aputuga Fa'asolo ma Fa'amaumauga Fa'amaumauga

Fa'amatalaga Node Fa'amatalaga Fa'apitoa

Fa'amaumauga Fa'amaumauga ma se Node Fa'amatalaga Fa'amatalaga Tasi

Fa'amaumauga Fa'amaumauga ma 3 Nodes Fa'amatalaga Fa'amatalaga

Flow Sensor Virtual Edition

Flow Sensor Virtual Edition Siosiomaga Fesootaiga

Flow Sensor Virtual Edition Ta'avale

UDP Fa'atonu Fa'atonu Fa'amatalaga

Fa'atatauina o tafega ile sekone (filifiliga)

Fuafuaga o tafega i le sekone mo le teuina o le aoina o tafe (fa'aga e aunoa ma

Faleoloa Fa'amaumauga)

-3-

Fuafuaga o Tafe ile Sekona mo Fa'amaumauga Node Teuina

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga

Tatala Taulaga (Meafaigaluega uma)

Taulaga Tatala Faaopoopo mo Nodes Fa'amatalaga

Feso'ota'iga Taulaga ma Maliega

O Taulaga Tatala Faaopoopo mo Faleoloa Fa'amaumauga

Taulaga Feso'ota'iga Filifilia

Secure Network Analytics Deployment Example

Saogalemu Network Analytics Deployment with Data Store Example

2. Si'itia le Fa'apipi'iina o Lomiga Fa'apitoa Files

Fa'apipi'i Files

1. Ulufale i Cisco Software Central

2. Si'itia Files

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)

Ua umaview

Ae e te le'i Amata

Fa'apipi'iina o se Mea Fa'apitoa e Fa'aaoga ai le vCenter (ISO)

Nodes Fa'amatalaga

Su'esu'e o le tafe

Isi Mea uma

1. Fa'atulagaina o se LAN Tu'ufua mo Feso'ota'iga Node i le va o Fa'amaumauga

Fa'atulagaina o le vSphere Standard Switch

Fa'atulagaina o le vSphere Distributed Switch

2. Fa'atulaga le Flow Sensor e Mata'ituina Ta'avale

Mata'ituina o Ta'avale i fafo ma le PCI Pass-Through

Mata'ituina o le vSwitch ma le tele o 'au

Fa'atonu Manaoga

Mataituina o se vSwitch ma se Host nofofua

Fa'atonu Manaoga

Fa'atulaga le Vaega o Taulaga i le Faiga Fa'atau

-4-

3. Fa'apipi'iina o le Mea Fa'apitoa

4. Fa'amalamalamaina o Taulaga Fa'aopoopo e Mata'ituina (Na'o Va'aiga Fa'asolo)

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)

Ua umaview

Ae e te le'i Amata

Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'atasi Server (ISO)

Fa'agasologa Fa'aumaview

Nodes Fa'amatalaga

1. Ulufale i le VMware Web Tagata fa'atau

2. Fa'aosoina mai le ISO

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)

Ua umaview

Ae e te le'i Amata

Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)

Fa'agasologa Fa'aumaview

Fa'atulagaina o se LAN Tu'ufua mo Nodes Fa'amaumauga

1. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host

Mata'ituina Ta'avale

Fa'atonu Manaoga

Fa'apipi'iina o se Mea Fa'apitoa ile KVM Host

2. Fa'aopoopoina o le NIC (Node Fa'amatalaga, Fa'asolo Va'aiga) ma Promiscuous Port Monitoring i luga o se

Tatala vSwitch (Na'o Fa'asu'esu'e)

4. Fa'atulagaina o Lau Faiga Fa'atekonolosi Saogalemu

System Configuration Manaoga

SNA Feso'ota'i Lagolago

Suiga Tala'aga

-5-

Folasaga
Folasaga
Ua umaview
Fa'aoga le ta'iala lea e fa'apipi'i ai mea nei Cisco Secure Network Analytics (muamua Stealthwatch) Mea Fa'atonu Fa'asinomaga:
l Cisco Secure Network Analytics Manager (muamua Stealthwatch Management Console) Lomiga Fa'apitoa
l Cisco Secure Network Analytics Data Store Virtual Edition l Cisco Secure Network Analytics Flow Collector Virtual Edition l Cisco Secure Network Analytics Flow Sensor Virtual Edition l Cisco Secure Network Analytics UDP Director Virtual Edition
Tagata fa'alogo
O le au fa'amoemoe mo lenei ta'iala e aofia ai pule o feso'otaiga ma isi tagata faigaluega o lo'o nafa ma le fa'apipi'iina ma le fa'atulagaina o oloa Secure Network Analytics. Afai o loʻo e faʻatulagaina mea faʻaoga faʻapitoa, matou te manatu o loʻo e masani ile VMware poʻo le KVM. Afai e te manaʻo e galue ma se faʻapipiʻi faʻapolofesa, faʻamolemole faʻafesoʻotaʻi lau Cisco Partner poʻo Cisco Support.
Fa'apipi'i Meafaigaluega ma Fa'atulaga Lau Fa'atonu
Fa'amolemole maitau le fa'asologa atoa o galuega mo le fa'apipi'iina ma le fa'atulagaina o Su'esu'ega Fa'asaogalemu.
1. Fa'apipi'i Meafaigaluega: Fa'apipi'i lau Secure Network Analytics Virtual Edition appliances e fa'aaoga ai lenei ta'iala fa'apipi'i. Ina ia fa'apipi'i masini (fa'aletino), mulimuli i fa'atonuga i le x2xx Series Hardware Appliance Installation Guide po'o le x3xx Series Hardware Appliance Installation Guide.
2. Fa'atulaga Su'esu'ega Fa'amatalaga Puipuiga: A mae'a ona e fa'apipi'i masini ma masini fa'atekonolosi, ua e sauni e fa'apipi'i Secure Network Analytics i totonu o se faiga pulea. Mulimuli i faatonuga i le Secure Network Analytics System Configuration Guide v7.4.2.
Fa'amatalaga Fa'atatau
Mo nisi faʻamatalaga e uiga i le Secure Network Analytics, tagai i punaoa nei:

-6-

Folasaga

l Ua umaview: https://www.cisco.com/c/en/us/products/security/stealthwatch/index.html
l Fa'amatalaga Fa'ata'ita'iga mo Faleoloa: https://www.cisco.com/c/dam/en/us/products/collateral/security/stealthwatch/st ealthwatch-data-store-guide.pdf
Fa'aupuga
E fa'aogaina e lenei ta'iala le fa'aupuga "mea faigaluega" mo so'o se oloa Secure Network Analytics, e aofia ai oloa fa'apitoa e pei o le Flow Sensor Virtual Edition (VE).
Ole “cluster” ole vaega lea ole Secure Network Analytics appliances e pulea e le Pule.
Faapuupuuga
O fa'apuupuuga nei e mafai ona maua i lenei ta'iala:

Fa'apuupuuga Fa'amatalaga

DNS

Faiga o igoa ole igoa (Au'aunaga po'o le Server)

dvPort

Fa'asoaina Taulaga Va'aia

ESX

Enterprise Server X

Gigabyte

IDS

Faiga Su'esu'ega

IPS

Faiga Fa'alavelave Fa'alavelave

ISO

Fa'alapotopotoga Tulaga Fa'ava-o-malo

Fa'amatalaga Tekonolosi

KVM

Masini Fa'ata'ita'i fa'avae Kernel

MTU

Tulaga Maualuga Maualuga

NTP

Fesootaiga Taimi Protocol

Terabyte

-7-

Fa'apuupuuga Fa'amatalaga

UUID

Fa'ailoa Tulaga Fa'alelalolagi

VDS

vNetwork Distributed Switch

VLAN

Feso'ota'iga Fa'alotoifale Fa'apitonu'u

Masini Va'aiga

Folasaga

-8-

Saogalemu Su'esu'ega Feso'ota'iga e aunoa ma le Faleoloa Fa'amaumauga
Saogalemu Su'esu'ega Feso'ota'iga e aunoa ma le Faleoloa Fa'amaumauga
I se fa'agaioiina o le Su'esu'ega o Feso'otaiga Saogalemu e aunoa ma se Faleoloa Fa'amatalaga, e tasi pe sili atu Flow Collectors e fa'aaoga ma toe fa'aputu fa'amaumauga, fa'atino au'ili'iliga, ma lipoti sa'o atu fa'amaumauga ma taunu'uga i le Pule. Ina ia foia fesili na tuuina mai e le tagata e faaaogāina, e aofia ai kalafi ma siata, e fesiligia e le Pule le Flow Collectors pulea uma. E toe fa'afo'i e Flow Collector fa'ai'uga tutusa i le Pule. E tu'ufa'atasia e le Pule fa'amatalaga mai seti fa'ai'uga 'ese'ese, ona fa'atupuina lea o se kalafi po'o se siata e fa'aalia ai taunu'uga. I lenei fa'agaioiga, e teuina e Flow Collector fa'amaumauga i luga o fa'amaumauga fa'apitonu'u. Va'ai i le ata o lo'o i lalo mo se fa'ata'ita'igaample.

-9-

Saogalemu Su'esu'ega Feso'ota'iga ma Fa'amaumauga Fa'amaumauga
Saogalemu Su'esu'ega Feso'ota'iga ma Fa'amaumauga Fa'amaumauga
I se fa'agaioiga Fa'amautu Fa'amatalaga Fa'amatalaga ma se Faleoloa Fa'amatalaga, o lo'o nofo le fa'aputuga o Fa'amaumauga i le va o lou Pule ma le Flow Collectors. E tasi pe sili atu Flow Collectors e fa'aogaina ma fa'ate'aina tafega, fa'atino au'ili'iliga, ma lipoti sa'o fa'amaumauga ma fa'ai'uga i le Faleoloa Fa'amaumauga, fa'asoa tutusa i Nodes uma o Fa'amaumauga. O le Faleoloa Fa'amaumauga e fa'afaigofie ai le teuina o fa'amaumauga, fa'atumauina uma au fefa'ataua'iga i lena nofoaga fa'atotonugalemu nai lo le fa'asalalauina i le tele o Flow Collectors, ma e ofoina atu le tele o mea e teu ai nai lo le tele o Flow Collectors. Va'ai i le ata o lo'o i lalo mo se fa'ata'ita'igaample.

O lo'o tu'uina atu e le Faleoloa Fa'amatalaga se nofoaga tutotonu e teu ai le telemetry a lau feso'otaiga, e aoina mai e au Flow Collectors. O le Faleoloa Fa'amaumauga o lo'o aofia ai se fuifui o Nodes Fa'amaumauga, o lo'o iai se vaega o au fa'amaumauga, ma se fa'amaumauga o fa'amaumauga a le Node Fa'amatalaga. Talu ai o au fa'amatalaga uma o lo'o i totonu o se fa'amaumauga tu'ufa'atasi, e ese mai le fa'asalalauina i le tele o Flow Collectors, e mafai e lou Pule ona toe aumai fa'ai'uga mai le Faleoloa Fa'amatalaga e sili atu le vave nai lo le fesiligia o au Flow Collectors uma. O lo'o tu'uina mai e le fa'aputuga o Fa'amaumauga

– 10 –

Saogalemu Su'esu'ega Feso'ota'iga ma Fa'amaumauga Fa'amaumauga
fa'aleleia le fa'apalepale fa'aletonu, fa'aleleia le tali atu i fesili, ma fa'avave le kalafi ma siata le faitau aofa'i.
Fesili
Ina ia foia fesili na tuʻuina atu e le tagata faʻaoga, e aofia ai kalafi ma siata, e fesiligia e le Pule le Faleoloa Faʻamatalaga. E su'e e le Faleoloa Fa'amaumauga i'uga tutusa i koluma e fetaui i le fesili, ona toe aumai lea o laina fa'afetaui ma toe fa'afo'i tali fesili i le Pule. E fa'atupuina e le Pule le kalafi po'o le siata e aunoa ma le mana'omia o le fa'aputuina o seti fa'ai'uga mai le tele o Flow Collectors. E fa'aitiitia ai le tau o fesili, pe a fa'atusatusa i le fesiligia o le tele o Flow Collectors, ma fa'aleleia ai le fa'atinoga o fesili.
Teuga o Fa'amaumauga ma Fa'apalepale Fa'aletonu
E aoina e le Faleoloa Fa'amaumauga fa'amaumauga mai Flow Collectors ma tufatufa tutusa i Nodes Fa'amaumauga i totonu o le fuifui. O Node Fa'amaumauga ta'itasi, fa'aopoopo i le teuina o se vaega o lau telemetry lautele, e teu ai fo'i se fa'amaumauga o le telemetry a le isi Node Fa'amatalaga. Teuina o faʻamatalaga i lenei faiga:
E fesoasoani i le faapaleniina o uta e tufatufaina atu le faagasologa i pona taitasi ia mautinoa o faamatalaga uma o loo i totonu o le Faleoloa o Faamatalaga o loo i ai se faaleoleo mo le faapalepale o sese e mafai ai ona faateleina le numera o Node o Faamatalaga e faaleleia atili ai le teuina ma
faatinoga fesili
Afai o lau Faleoloa Faʻamatalaga e 3 pe sili atu Faʻamatalaga Faʻamatalaga, ma e alu i lalo se Node Faʻamatalaga, pe a fai o loʻo avanoa pea le Node Faʻamaumauga o loʻo i ai lana faʻamaumauga, ma a itiiti ifo ma le afa o lau numera atoa o Faʻamatalaga Faʻamatalaga o loʻo i luga pea, o le Faʻamaumauga atoa o Faʻamaumauga. tumau i luga. Ole mea lea e mafai ai ona e taimi e toe fa'aleleia ai le feso'ota'iga ua pa'u po'o masini fa'aletonu. A mae'a ona e sui le Node Fa'amatalaga sese, e toe fa'afo'i e le Faleoloa Fa'amaumauga le fa'amaumauga a le pona mai le fa'amaumauga o lo'o iai o lo'o teuina i luga o le Node Fa'amatalaga lata ane, ma faia se fa'amaumauga o fa'amaumauga i lena Node Fa'amatalaga.

– 11 –

Saogalemu Su'esu'ega Feso'ota'iga ma Fa'amaumauga Fa'amaumauga
Telemetry Teuga Example
Va'ai i le ata o lo'o i lalo mo se fa'ata'ita'igaampLe auala e teu ai e 3 Data Nodes le telemetry:

– 12 –

Tulaga Lautele Fa'atonu Manaoga

Tulaga Lautele Fa'atonu Manaoga
Ae e te le'i amataina, toeview lenei taiala e malamalama ai i le faagasologa faapea foi ma sauniuniga, taimi, ma punaoa e te manaomia e fuafua mo le faapipiiina.
Auala Fa'apipi'i
E mafai ona e fa'aogaina se si'osi'omaga VMware po'o le KVM (Kernel-based Virtual Machine) mo le fa'apipi'iina o masini.
Ae e te leʻi amataina le faʻapipiʻiina, toe faiview le Fa'amatalaga Feso'ota'i ma Punaoa Manaomia o lo'o fa'aalia i vaega nei.

Metotia

Fa'atonuga fa'apipi'i (mo fa'amatalaga)

Fa'apipi'i File

Fa'amatalaga

VMware vCenter

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)

Fa'apipi'i lau virtual

ISO

mea faigaluega faʻaaoga VMware

vCenter.

VMware ESXi Tu'u Tu'atasi Server

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi StandAlone Server (ISO)

Fa'apipi'i lau virtual

ISO

meafaigaluega i luga ole ESXi

'au'aunaga talimalo tuto'atasi.

KVM ma le Pule o masini masini

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)

Fa'apipi'i lau virtual

ISO

mea faigaluega fa'aaoga KVM ma

Pule o masini masini.

– 13 –

Tulaga Lautele Fa'atonu Manaoga

Fegalegaleaiga
Pe e te fuafua e faʻapipiʻi au mea faʻaogaina i totonu ole VMware siosiomaga poʻo le KVM (Kernel-based Virtual Machine), ia mautinoa e teview fa'amatalaga fetaui nei:
Manaoga Lautele mo Meafaigaluega uma

Fa'amatalaga Manaoga

Punaoa tuuto

O mea faigaluega uma e mana'omia le tu'ufa'atasia o puna'oa tu'ufa'atasia ma e le mafai ona fa'asoa i isi masini po'o 'au.

Leai se Femalagaa'i Ola

E le lagolagoina e mea faigaluega le vMotion ona o le ono mafai ona piopio.

Fesootaiga Fesootaiga

O masini uma e mana'omia a itiiti ifo ma le 1 feso'ota'iga feso'otaiga.
Flow Sensors e mafai ona fa'apipi'i fa'atasi ma isi mea fa'aopoopo e lagolago ai le fa'aopoopoina o galuega.
E mana'omia e Nodes Fa'amaumauga se feso'ota'iga feso'ota'iga lona lua mo feso'ota'iga ma isi Nodes Fa'amatalaga o se vaega o le Faleoloa Fa'amaumauga.

Pule Teuina

A faʻapipiʻi le ISO i le VMware, filifili le ituaiga LSI Logic SAS SCSI Pule.

Tuuina atu o le teuina

Fa'atonu mea e teu ai le Lazy Zeroed mafiafia o lo'o tu'uina pe a fa'aogaina masini fa'apitoa.

VMware
l Fesootaiga: VMware 7.0 poʻo le 8.0.
l Faiga Faʻatonu: Debian 11 64-bit
l Feso'ota'iga Feso'ota'iga: O le VMXNET3 Adapter Type e fautuaina mo le fa'atinoga sili.
l ISO Deployment: Secure Network Analytics v7.4.2 e fetaui ma VMware 7.0 ma 8.0. Matou te le lagolagoina VMware 6.0, 6.5, poʻo le 6.7 faʻatasi ma Secure Network Analytics v7.4.x. Mo nisi fa'amatalaga, tagai ile VMware pepa mo vSphere 6.0, 6.5, ma le 6.7 End of General Support.

– 14 –

Tulaga Lautele Fa'atonu Manaoga
l Femalaga'iga ola: Matou te le lagolagoina le talimalo e talimalo i femalaga'iga ola (mo le example, ma le vMotion).
l Ata: E le lagolagoina ata pue masini.
Aua ne'i fa'apipi'i VMware Tools i luga o se mea fa'atekonolosi fa'atekonolosi a le Network Analytics aua o le a fa'aogaina ai le fa'asologa masani ua uma ona fa'apipi'iina. O le faia o lea mea o le a le mafai ai ona fa'aogaina le masini mamana ma mana'omia le toe fa'apipi'i.
KVM
L Fesootaiga: E mafai ona e faʻaogaina soʻo se faʻasalalauga Linux talafeagai. l KVM Host Versions: E tele auala e faʻaogaina e faʻapipiʻi ai se masini komepiuta i luga
se KVM talimalo. Na matou suʻeina KVM ma faʻamaonia le faʻatinoga e faʻaaoga ai vaega nei:
l libvirt 2.10 – 7.1.0 l qemu-KVM 2.6.1 – 5.2.0 l Tatala vSwitch 2.6.x – 2.15.x**** l Linux Kernel 4.4.x, ma nisi 5.10.xl Operating System: Debian 11 64 -bit. l Virtualization Host: Mo mana'oga maualalo ma fa'atinoga sili, toeview le vaega o Manaoga Punaoa ma va'ai le pepa fa'amatalaga meafaigaluega mo lau masini ile Cisco.com.
O le faʻatinoga o le faiga e faʻamoemoeina e le siosiomaga talimalo. Atonu e eseese lau faatinoga.
La'uina o polokalame
Fa'aoga Cisco Software Central e fa'apipi'i ai masini fa'aoga (VE). files, patches, ma fa'afouga polokalame files. Ulufale i lau Cisco Smart Account ile https://software.cisco.com pe fa'afeso'ota'i lau pule. Va'ai ile 2. Si'itia le Fa'apipi'iina o Lomiga Fa'anatura Files mo faatonuga.
TLS
Secure Network Analytics e manaʻomia le v1.2.

– 15 –

Tulaga Lautele Fa'atonu Manaoga
Talosaga a le Vaega Lona Tolu
E le lagolagoina e le Secure Network Analytics le fa'apipi'iina o talosaga a isi vaega i masini.
Su'esu'e
l Su'esu'ega Feso'ota'i: E lagolagoina e le Secure Network Analytics le lomiga fou o Chrome, Firefox, ma Edge.
l Microsoft Edge: Atonu e iai se file fa'atapula'a tele ma Microsoft Edge. Matou te le fautuaina le faʻaaogaina o Microsoft Edge e faʻapipiʻi ai le Virtual Edition ISO files.
Igoa Talimalo
E mana'omia se igoa talimalo tulaga ese mo masini taitasi. E le mafai ona matou fa'atulagaina se masini e tutusa le igoa talimalo e pei o se isi masini. E le gata i lea, ia mautinoa o igoa taʻitasi o mea faigaluega e fetaui ma tulaga manaʻomia o le Initaneti mo 'au faʻainitaneti.
Igoa ole igoa
E mana'omia se igoa fa'apitoa atoatoa mo masini ta'itasi. E le mafai ona matou fa'apipi'i se masini e iai se vaega avanoa.
NTP Server
l Fa'atonuga: E mana'omia le 1 NTP server mo masini ta'itasi. l NTP fa'afitauli: Aveese le 130.126.24.53 NTP server pe afai o lo'o i lau lisi o
'au'auna. O lenei 'auʻaunaga ua iloa e faʻafitauli ma e le o toe lagolagoina i la matou lisi faʻaletonu o NTP servers.
Sone Taimi
E fa'aoga uma mea faigaluega Fa'asa'o feso'ota'iga Su'esu'ega Taimi Fa'atasi (UTC).
l Virtual Host Server: Ia mautinoa ua seti lau server host virtual i le taimi sa'o.
Ia mautinoa ua setiina le taimi i luga o le virtual host server (lea o le a e faʻapipiʻiina ai masini masini) ua seti i le taimi saʻo. A leai, atonu o le a le mafai ona fa'atūina masini.

– 16 –

Tulaga Lautele Fa'atonu Manaoga

Tulaga Fa'atonu Mea Manaoga (e aunoa ma Fa'amaumauga Fa'amaumauga)
Afai o loʻo e faʻapipiʻi Secure Network Analytics e aunoa ma se Faleoloa Faʻamatalaga, faʻapipiʻi mea nei:

Fa'atonu Pule Fa'aa'oa'o Fua UDP Fa'atonu Flow Sensor

Mana'oga l Laiti ole 1 Pule l Laiti ole 1 Fa'aputu Aoina
Tuu i le Faitalia Pule oe i le Faitalia

Ia toeview mana'oga fa'apipi'i masini mo Su'esu'ega Puipuiga o Feso'ota'iga ma se Faleoloa Fa'amaumauga, fa'asino ile Fa'atonu Fa'atonu Fa'amatalaga.
Manaoga Fa'atonu le Pule ma le Fa'aputu A'o
Mo Pule taʻitasi ma Flow Collector e te faʻapipiʻiina, tuʻu se tuatusi IP e mafai ona faʻaogaina i le eth0 pulega port.

– 17 –

Fa'atonu Fa'atonu Fa'amaumauga

Fa'atonu Fa'atonu Fa'amaumauga
Ina ia fa'apipi'i Su'esu'ega Feso'otaiga Saogalemu ma se Faleoloa Fa'amatalaga, toeview o mana'oga nei ma fautuaga mo lou fa'aulufaleina.
Mea Manaomia (fa'atasi ai ma Fa'amaumauga Fa'amaumauga)
O le laulau o lo'o i lalo o lo'o tu'uina atu ai se fa'asiliview mo meafaigaluega e manaʻomia e faʻapipiʻi Secure Network Analytics with Data Store.

Mea Manaomia

Pule

l itiiti ifo i le 1 Pule

Faleoloa Fa'amaumauga

l Laiti ole 1 pe 3 Nodes Fa'amatalaga
l Seti fa'aopoopo o Nodes Fa'amatalaga e 3 e fa'alautele ai le Faleoloa Fa'amaumauga, maualuga ole 36 Nodes Fa'amaumauga
l E le lagolagoina na'o le 2 Nodes Fa'amatalaga i se fuifui.

Aoina mai o le tafe

l La'ititi o le 1 Fa'aputu Aoina

Fa'asu'esu'e Fa'agasolo Filifilia

Manaoga Fa'atonu le Pule ma le Fa'aputu A'o
Mo Pule taʻitasi ma Flow Collector e te faʻapipiʻiina, tuʻu se tuatusi IP e mafai ona faʻaogaina i le eth0 pulega port.
Fa'amatalaga Node Fa'atulagaina Manaoga
O Fa'amaumauga ta'itasi o lo'o iai Fa'amatalaga Nodes.
l Virtual Edition: A e sii maia se Virtual Data Store, e mafai ona e fa'aogaina le 1, 3, po'o le tele o Fa'amatalaga Nodes Virtual Edition (i seti o 3).
l Meafaigaluega: E mafai foʻi ona e faʻapipiʻi meafaigaluega Faʻamatalaga Nodes. O le DN 6300 Data Store e tu'uina atu ai se ta'avale meafaigaluega e tasi o le Data Node.

Ia mautinoa o au Nodes Faʻamatalaga o meafaigaluega uma poʻo faʻasologa uma. E le lagolagoina le fa'afefiloiina o masini ma Nodes Fa'amatalaga fa'akomepiuta ma e tatau ona sau mai masini e tasi (DS 6200 uma po'o DN 6300 uma).

– 18 –

Fa'atonu Fa'atonu Fa'amaumauga
Tele-Fa'amatalaga Node Deployment
Ole fa'aogaina ole tele-Data Node e maua ai taunu'uga aupito maualuga. Manatua mea nei:
l Seti o Tolu: E mafai ona fa'aputuina le Nodes Fa'amatalaga e fai ma vaega o lau Faleoloa Fa'amaumauga i seti o le 3, mai le la'ititi o le 3 i le maualuga o le 36. Fa'apipi'iina na'o le 2 Fa'amatalaga Nodes i se fuifui e le lagolagoina.
l Meafaigaluega uma po'o Mea Fa'apitoa uma: Ia mautinoa o au Nodes Fa'amatalaga o meafaigaluega uma (o le tupulaga lava e tasi) po'o le Fa'amatalaga Fa'amatalaga uma. E le lagolagoina le fa'afefiloi o masini ma Nodes Fa'amatalaga fa'akomepiuta po'o le fa'afefiloi o Fa'amaumauga Faleoloa 6200 ma Node Fa'amaumauga 6300 Fa'amaumauga.
l Faamatalaga Node Profile Tele: Afai e te faʻaogaina Nodes Faʻamatalaga Faʻamatalaga Faʻamatalaga, ia mautinoa e tutusa uma i latoufile lapopoa ina ia tutusa le latou RAM, PPU, ma le avanoa tisiki. Mo fa'amatalaga, va'ai ile Fa'amatalaga Node Virtual Edition ile vaega o Manaoga Punaoa.

– 19 –

Fa'atonu Fa'atonu Fa'amaumauga

Su'ega Meafaigaluega Lagolago (fa'atasi ai ma fa'amatalaga fa'aagaoioiga)

Numera o Nodes e tafe i le Sekona Tulaga Tulaga Totonu

600,000

1.3 miliona

3 ma luga atu

600,000

1.3 miliona

3 ma luga atu

850,000

700,000

O nei fautuaga e na'o le telemetry. E ono fesuisuia'i lau fa'atinoga e fa'atatau i mea fa'aopoopo, e aofia ai le aofa'i o tagata talimalo, fa'aogaina o le Flow Sensor, traffic profiles, ma isi uiga feso'ota'iga. Fa'afeso'ota'i Cisco Lagolago mo se fesoasoani ile tele.
Su'ega Meafaigaluega Lagolago (e aunoa ma le fa'aogaina o fa'amaumauga)

Numera o Nodes 1 3 ma luga

Fa'asolo ile Sekona E o'o ile 1 miliona E o'o ile 3 miliona

Tulaga Tulaga Fa'alotoifale E o'o i le 33 miliona E o'o atu i le 33 miliona

O nei fuainumera o loʻo faʻatupuina i totonu oa tatou siosiomaga suʻega e faʻaaoga ai faʻamaumauga masani a tagata faʻatau ma 1.3 miliona 'au faʻapitoa. E tele mea e ono a'afia ai lau fa'atinoga fa'apitoa, e pei o le numera o 'au, averesi le tele o le tafe, ma isi mea. Fa'afeso'ota'i Cisco Lagolago mo se fesoasoani ile tele.
Fa'asoa Node Fa'amatalaga Tasi
Afai e te filifili e fa'apipi'i se tasi (1) Node Fa'amaumauga:
l Flow Collectors: Ole maualuga ole 4 Flow Collectors e lagolagoina. l Fa'aopoopoina Nodes Fa'amatalaga: Afai e te fa'aogaina na'o le tasi le Node Fa'amatalaga, e mafai ona e fa'aopoopoina Nodes Fa'amatalaga i
lau fa'agaioiga i le lumana'i. Va'ai ile Multi-Data Node Deployment mo fa'amatalaga.

– 20 –

Fa'atonu Fa'atonu Fa'amaumauga

I le taimi nei, e le lagolagoina e le Faleoloa Faʻamatalaga le faʻapipiʻiina o Nodes Faʻamatalaga faʻapitoa e suitulaga otometi pe a alu i lalo le Node Faʻamatalaga muamua. Fa'afeso'ota'i Cisco Support mo ta'iala.
Fa'amatalaga Node Fa'atonu Manaoga
Ina ia fa'apipi'i se Faleoloa Fa'amaumauga, tu'u mea nei i Node Fa'amaumauga ta'itasi. O faʻamatalaga e te saunia o le a faʻapipiʻiina ile First Time Setup e faʻaaoga ai le System Configuration Guide.
l Tuatusi IP Fa'asalalau (eth0): Mo le fa'afoega, fa'aogaina, ma feso'ota'iga fa'afesili ma au mea faigaluega Fa'asa'o feso'otaiga.
l Inter-Data Node Feso'ota'iga: Fa'atulaga se tuatusi IP e le mafai ona fa'aogaina mai le poloka 169.254.42.0/24 CIDR i totonu o se LAN patino po'o le VLAN e fa'aoga mo feso'ota'iga interData Node.
Mo le fa'aleleia atili o le fa'atinoina o galuega, fa'afeso'ota'i le alalaupapa o lo'o iai le eth2 ma le eth3 Fa'amautinoa e mafai e Node Fa'amaumauga ta'itasi ona o'o atu i isi Node Fa'amatalaga uma e ala i se ki fa'aoga po'o se feso'otaiga vavave. I le avea ai o se vaega o le Faleoloa o Faʻamatalaga, o au Nodes Faʻamatalaga e fesoʻotaʻi i le va ma le va o le tasi ma le isi.
l Feso'ota'iga Feso'ota'iga: E te mana'omia ni feso'ota'iga se lua, tasi mo le pulega, fa'aogaina, ma feso'ota'iga fesili, ma le tasi mo feso'ota'iga i totonu o Fa'amatalaga Node.
Feso'ota'iga ma Fetufa'aiga Manatu
O le laulau o lo'o i lalo o lo'o tu'uina atu ai se fa'asiliview mo le feso'ota'iga feso'ota'iga ma le fesuia'iga o iloiloga mo le fa'atinoina o Su'esu'ega Fa'asaogalemu Fa'atasi ma se Faleoloa Fa'amatalaga.

Fuafuaga Fesootaiga
Feso'ota'iga Node Inter-Data

Fa'amatalaga
l Fa'atulaga se LAN tu'ufua fa'atasi ai ma se ki fa'asolo ina ia mafai ai e Nodes Fa'amatalaga ona feso'ota'i le tasi ma le isi.
l Fa'atuina se taimi fautuaina e toe fo'i mai (RTT) le umi i lalo ole 200 microseconds i le va ma le va o Nodes Fa'amatalaga

– 21 –

Fa'atonu Fa'atonu Fa'amaumauga

Suiga Node Fa'amatalaga
Saogalemu Network Analytics Appliance Feso'ota'iga

l Taofi le uati i le 1 sekone pe maualalo i le va ma totonu o au Nodes Fa'amatalaga.
l Fa'atuina se fa'atonuga fa'aopoopo o le 6.4Gbps pe sili atu (10 Gbps full duplex switched connection) i le va ma totonu o au Nodes Fa'amatalaga.
l Nodes Fa'amatalaga e mana'omia a latou lava Layer 2 VLAN e fa'ataga ai feso'ota'iga interData Node. E mafai ona fa'afeso'ota'i Nodes Fa'amatalaga Fa'apitoa i se feso'ota'iga tu'ufua, fa'atatau ile fa'aogaina o lau Nodes VE.
l Pule ma Flow Collectors e tatau ona mafai ona o'o atu i Nodes uma Fa'amaumauga
l Nodes Fa'amaumauga e tatau ona mafai ona o'o atu i le Pule, Flow Collectors uma, ma Node Fa'amaumauga ta'itasi

I le taimi nei, e le lagolagoina e le Faleoloa Faʻamatalaga le faʻapipiʻiina o Nodes Faʻamatalaga faʻapitoa e suitulaga otometi pe a alu i lalo le Node Faʻamatalaga muamua. Fa'amolemole fa'afeso'ota'i Cisco Support mo ta'iala.

– 22 –

Fa'atonu Fa'atonu Fa'amaumauga
Suiga Fa'ata'ita'i Example
Ina ia mafai ona fesoʻotaʻi i le va o Faʻamatalaga Node i luga ole eth1, faʻapipiʻi se ki faʻaoga ma se LAN tuʻufua poʻo le VLAN mo fesoʻotaʻiga vaʻavaʻa-Data Node. Fa'apa'ia le suiga fa'akomepiuta i feso'ota'iga i totonu o Fa'amatalaga Node. Fa'atulaga foi se LAN lautele po'o le VLAN mo Fa'amatalaga Nodes eth0 feso'ota'iga ma le Pule ma Flow Collectors. Va'ai i le ata o lo'o i lalo mo se fa'ata'ita'igaampLe:

E mana'omia e le fa'aputuga o Fa'amaumauga o Fa'amaumauga le tata o le fatu i le va o pona i totonu ole VLAN tu'ufua. A aunoa ma lenei tātā fatu, e ono alu tuusao le Nodes o Fa'amaumauga, lea e fa'ateleina ai le fa'aletonu ole Faleoloa Fa'amatalaga.
Fa'afeso'ota'i Cisco Professional Services mo se fesoasoani i le fuafuaina o lau fa'agaioiga.
Fa'atonuga o le Tu'uina o Fa'amaumauga
Tuu Node Fa'amaumauga ta'itasi ina ia mafai ona feso'ota'i ma au Flow Collectors, lou Pule, ma isi Node Fa'amatalaga uma. Mo le fa'atinoga sili ona lelei, fa'apipi'i au Nodes Fa'amatalaga ma Flow Collectors e fa'aitiitia ai le fa'agaoioiga o feso'ota'iga, ma fa'apipi'i Nodes ma Pule mo le fa'atinoina o su'esu'ega sili.
l Pa puipui: Matou te fautuaina tele le tu'u o Nodes o Fa'amatalaga i totonu o lau puipui, pei o totonu ole NOC.

– 23 –

Fa'atonu Fa'atonu Fa'amaumauga
l Tagata Fa'aletino/Fa'aola Fa'aletino: Mo le fa'afaigofieina o fa'atonuga, fa'apipi'i uma au Fa'amatalaga Nodes Virtual Edition i le 'au fa'aletino e tasi/hypervisor, e fa'afaigofie ai le fa'atulagaina o le fa'aogaina o le Node i totonu o se LAN tu'ufua.
l Malosiaga: Afai e alu i lalo le Faleoloa o Fa'amatalaga ona o le leiloa o le paoa po'o le fa'aletonu o meafaigaluega, e te fa'atuputeleina le fa'atuputeleina o le fa'aletonu o fa'amaumauga ma le leiloa o fa'amaumauga. Faʻapipiʻi au Nodes Faʻamatalaga ma le taimi tumau i le mafaufau.
Afai e le'i mafaufauina le paoa o le Node Fa'amatalaga, ma e te toe fa'afou le masini, e le mafai ona toe otometi le toe amataina o le fa'amaumauga o fa'amaumauga i lea Node Fa'amatalaga. Va'ai ile System Configuration Guide mo fa'afitauli ma toe amata ma le lima le database.
Fa'ata'ita'iga Fa'atonu Manaoga
Secure Network Analytics e fa'aogaina le fa'ata'ita'iga fa'apitoa e siaki ai le tulaga o lau feso'otaiga. I le tulaga o Secure Network Analytics, o se faʻalapotopotoga o se mea e mafai ona siaki i le taimi, e pei o se talimalo poʻo se pito i luga o lau fesoʻotaiga. Fa'ata'ita'iga fa'aletino malosi e aoina fa'amatalaga e uiga i fa'alapotopotoga e fa'atatau i femalagaiga latou te fa'asalalauina ma gaioiga latou te faia i lau feso'otaiga. Mo nisi fa'amatalaga, va'ai ile Analytics: Detections, Alert, and Observations Guide. Ina ia mafai ona faʻaogaina Analytics, e tatau ona faʻatulagaina lau faʻagaioiga
l i luga ole fa'aogaina ole Faleoloa Fa'amatalaga Fa'atekonolosi ma so'o se numera o Flow Collectors.
l ma na'o le 1 Secure Network Analytics Data Store domain.

– 24 –

Punaoa Manaomia
Punaoa Manaomia
O lenei vaega o loʻo tuʻuina atu ai mea e manaʻomia mo mea faʻapitoa. Fa'aoga laulau o lo'o tu'uina atu i lenei vaega e fa'amaumau ai fa'atulagaga o le a e mana'omia e fa'apipi'i ma fa'atulaga ai mea faigaluega Fa'asinomaga Fa'atekonolosi Puipuiga Fa'amautu.
l Pule Lomiga Mamao l Flow Collector Lomiga Mamao l Node Fa'amatalaga Fa'amatalaga Fa'amatalaga l Flow Sensor Virtual Edition l UDP Fa'atonu Fa'asinomaga l Fa'atatauga Fa'asolo ile Lua (Filifili)
Ia mautinoa e te faʻaagaga punaoa manaʻomia mo lau polokalama. O lenei laasaga e taua tele mo le faʻatinoina o le polokalama.
Afai e te filifili e faʻapipiʻi mea faigaluega Cisco Secure Network Analytics e aunoa ma le manaʻomia o punaoa, e te tauaveina le matafaioi e mataʻituina lelei le faʻaogaina o lau meafaigaluega ma faʻateleina punaoa pe a manaʻomia e faʻamautinoa ai le soifua maloloina lelei ma le gaioiga o le faʻaogaina.

– 25 –

Punaoa Manaomia
O le gigabyte poʻo le GB faʻamatalaga o loʻo i luga o laulau o loʻo faʻamatalaina e pei ona taua i lalo: O se iunite o faʻamatalaga e tutusa ma le 2 siitia i le 30th power, poʻo le 1,073,741,824 bytes.
Fa'atulagaina o le CPU
Mo le maualuga o le faʻatinoga pe a faʻapolopolo PPU i EXSi hosts, ia mautinoa i totonu o lau CPU Sets, o le Faʻasao faʻatulagaina mo taimi ole CPU e faʻaogaina ai le faʻatusatusaga o loʻo i lalo:
* = E mafai ona e mauaina le tele o taimi (Processor Type) o lau PPU i lalo o le "Host Details" vaega o lau hypervisor. I le exampi lalo, e te faʻateleina le 8 PPU i le faʻasologa autu, lea i lenei tulaga o le 2,400MHz (poʻo le 2.4 GHz). E tu'uina atu ia te oe se numera o le 19200 MHz, lea e te fa'aogaina mo lau fa'aagaga taimi.

Mo nisi fa'amatalaga, tagai ile 3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi StandAlone Server (ISO).

– 26 –

Punaoa Manaomia

Pule Fa'amatalaga Fa'amatalaga
Ina ia fuafuaina le vaega maualalo o punaoa mo le Pule Virtual Edition, fuafua le numera o tagata faʻaoga tutusa e faʻamoemoe e ulufale i totonu i le Pule. Va'ai i fa'amatalaga o lo'o i lalo e fuafua ai au vaevaega o punaoa:
Pule

Tagata fa'aoga fa'atasi*

Manaomia PPU Fa'asao

e oo atu i le 9

sili atu i le 10

Manaomia Fa'aagaga Fa'aagaga
40 GB
70 GB

Manaomia Laiti Laiti Teuga
200 GB
480 GB

Tafe ile Totonu

tulaga lua

Talimalo

E oo atu i le 100,000
Sili atu i le 100,000

100,000 250,000

*O tagata faʻaoga faʻatasi e aofia ai lipoti faʻatulagaina ma tagata o loʻo faʻaaogaina le Manager client i le taimi e tasi.

– 27 –

Punaoa Manaomia

Flow Collector Virtual Edition
Ina ia iloa au mea e mana'omia mo le Flow Collector Virtual Edition, ia mautinoa e te fa'atatauina le tafe i le sekone o lo'o fa'amoemoeina i luga ole feso'ota'iga ma le aofa'i o tagata fa'atau atu ma 'au e fa'amoemoe e mata'ituina. Va'ai ile vaega ole Calculating Flows Per Second mo fa'amatalaga.
E le gata i lea, e mafai ona fa'atupula'ia le la'ititi avanoa e teu ai e fa'atatau i lau fa'atatauga FPS ma ou mana'oga fa'amau.
Ona o le Fa'amaumauga o Fa'amaumauga i totonu o le Faleoloa Fa'amatalaga o le a teuina tafe nai lo le Flow Collectors, ia mautinoa e te va'ai i fa'amatalaga mo lau fa'atulagaina fuafuaina (e aunoa ma le Fa'atauga Fa'amatalaga po'o le Faleoloa Fa'amatalaga).
Flow Collector e aunoa ma se Faleoloa Fa'amaumauga

Tafe ile sekone

Manaomia PPU Fa'asao

Manaomia Fa'aagaga Fa'aagaga

Manaomia La'ititi o Fa'amaumauga mo le 30 Aso

Fa'afeso'ota'i

Tagata fa'atau atu i fafo

Talimalo i totonu

E oo atu i le 10,000

24 GB

600 GB

E oo atu i le 65535

E oʻo atu i le 1024 25,000

E oo atu i le 30,000

32 GB

900 GB

E oo atu i le 65535

E oʻo atu i le 1024 100,000

E oo atu i le 60,000

64 GB

1.8 TB

E oo atu i le 65535

E oʻo atu i le 2048 250,000

E oo atu i le 120,000

128 GB

3.6 TB

E oo atu i le 65535

E oo atu i le 4096

sili atu i le 250,000

– 28 –

Punaoa Manaomia

Fa'aputuga Fa'asolo ma Fa'amaumauga Fa'amaumauga

Tafe ile sekone

Manaomia PPU Fa'asao

Manaomia Fa'aagaga Fa'aagaga

Manaomia Laiti Laiti Teuga

Fa'afeso'ota'i

Tagata fa'atau atu i fafo

Talimalo i totonu

E oo atu i le 10,000

24 GB

200 GB

E oo atu i le 65535

E oʻo atu i le 1024 25,000

E oo atu i le 30,000

32 GB

200 GB

E oo atu i le 65535

E oʻo atu i le 1024 50,000

E oo atu i le 60,000

64 GB

200 GB

E oo atu i le 65535

E oʻo atu i le 2048 100,000

E oo atu i le 120,000

128 GB

200 GB

E oo atu i le 65535

E oʻo atu i le 4096 250,000

– 29 –

Punaoa Manaomia

Fa'amatalaga Node Fa'amatalaga Fa'apitoa
Review fa'amatalaga o lo'o mulimuli mai e fa'atatau i mea mana'omia mo le Fa'amatalaga Fa'amatalaga Fa'amatalaga.
l Fa'atatau le tafe ile lua: Su'e le tafe ile sekone o lo'o fa'amoemoeina ile feso'otaiga. Va'ai ile vaega ole Calculating Flows Per Second mo fa'amatalaga.
l Numera o Nodes Fa'amatalaga: E mafai ona e fa'aogaina le 1 Fa'amatalaga Node po'o le 3 pe sili atu Fa'amatalaga Fa'amatalaga (i seti o 3). Mo fa'amatalaga, va'ai i Mea Mana'omia (fa'atasi ma Fa'amaumauga Fa'atau).
Fa'avae i au fa'atatauga Fa'asolo ile Lua, fa'asino ile fa'amatalaga nei e fa'amautu ai au mea e mana'omia:
Fa'amaumauga Fa'amaumauga ma se Node Fa'amatalaga Fa'amatalaga Tasi

Tafe ile sekone

Manaomia PPU Fa'asao

E oʻo atu i le 30,000 6

E oʻo atu i le 60,000 6

E oo atu i le 120,000

E oo atu i le 225,000

Manaomia Fa'aagaga Fa'aagaga 32 GB 32 GB
32 GB
64 GB

Manaomia Laiti Laiti Teuga mo Node Fa'amatalaga Tasi mo 30 Aso Fa'atumauina 2.25 TB 4.5 TB
9 TB
18 TB

– 30 –

Punaoa Manaomia

Fa'amaumauga Fa'amaumauga ma 3 Nodes Fa'amatalaga Fa'amatalaga

Tafe ile sekone

Manaomia PPU Fa'asao

Manaomia Fa'aagaga Fa'aagaga

Manaomia Laiti Laiti Teuga mo Node Fa'amaumauga ta'itasi mo le 30 Aso Fa'atumauina

Manaomia La'ititi Teuina mo le 3 Fa'amaumauga Node Fa'amaumauga mo le 30 Aso Fa'atumauina

E oo atu i le 30,000

32 GB

1.5 TB ile Node Fa'amatalaga

4.5 TB le aofaʻi mo Faʻamaumauga

E oo atu i le 60,000

32 GB

3 TB i le Node Fa'amatalaga 9 TB le aofa'i mo Fa'amaumauga

E oo atu i le 120,000

32 GB

6 TB ile Node Fa'amatalaga

18 TB le aofaʻi mo Faʻamaumauga

E oo atu i le 220,000

64 GB

10 TB ile Node Fa'amatalaga*

30 TB atoa mo le Faleoloa Fa'amaumauga*

E oo atu i le 500,000

64 GB

15 TB ile Node Fa'amatalaga*

45 TB atoa mo le Faleoloa Fa'amaumauga*

* I le fua Fa'atauga Fa'atau oloa e fa'aogaina e fa'aitiitia ai le tuputupu a'e laina ole telemetry

– 31 –

Punaoa Manaomia

Flow Sensor Virtual Edition
O lenei vaega o loʻo faʻamatalaina le Flow Sensor Virtual Edition.
l Cache: O le koluma Flow Cache Size o loʻo faʻaalia ai le maualuga o le numera o tafega e mafai e le Flow Sensor ona faʻaogaina i le taimi e tasi. O le cache e fetuutuunai ma le aofaʻi o manatuaga faʻaagaga, ma tafega e faʻafefe i le 60 sekone. Fa'aoga le Flow Cache Size e fa'atatau ai le aofa'i o manatua e mana'omia mo le aofa'i o feoaiga o lo'o mata'ituina.
l Manaoga: Atonu e mana'omia e lou si'osi'omaga nisi alagaoa e fa'atatau i le tele o fesuiaiga, e pei ole lapo'a averesi o le pa'u, fua o le pa, ma isi feso'ota'iga ma tulaga talimalo.

NICs mata'ituina uafu

Manaomia PPU Fa'asao

Manaomia La'ititi Fa'aagaga Fa'aagaga

Manaomia Laiti Fa'amaumauga Fa'amaumauga

1 x 1 Gbps 2

4 GB

75 GB

Fuafuaina o Galuega

Fa'asolo Cache
Tele (numera aupito maualuga o tafega fa'atasi)

850 Mbps

32,766

1,850 Mbps

2 x 1 Gbps 4

8 GB

75 GB

Feso'ota'iga ua fa'atulagaina e pei o le PCI passthrough (igb/ixgbe fa'amalie po'o le e1000e fa'amalieina)

65,537

3,700 Mbps

4 x 1 Gbps 8

16 GB

75 GB

Fa'afeso'ota'i fa'atulagaina e pei o le PCI passthrough

131,073

– 32 –

Punaoa Manaomia

NICs mata'ituina uafu

Manaomia PPU Fa'asao

Manaomia La'ititi Fa'aagaga Fa'aagaga

Manaomia Laiti Fa'amaumauga Fa'amaumauga

Fuafuaina o Galuega

Fa'asolo Cache
Tele (numera aupito maualuga o tafega fa'atasi)

(Igb/ixgbe tausisia po'o le e1000e tausisia)

8 Gbps

1 x 10 Gbps* 12

24 GB

75 GB

Feso'ota'iga fa'atulagaina e pei o le PCI passthrough (Intel ixgbe/i40e fa'amalieina)

~512,000

16 Gbps

2 x 10 Gbps* 22

40 GB

75 GB

Feso'ota'iga fa'atulagaina e pei o le PCI passthrough (Intel ixgbe/i40e fa'amalieina)

~1,000,000

* Mo le 10 Gbps throughput, fetuutuunai uma PPU i le 1 socket. Mo fa'aopoopo 10 Gbps NIC, fa'aopoopo 10 vCPUs ma le 16 GB o le RAM.
Filifilia: Tasi pe sili atu 10G NICs e mafai ona faʻaogaina i luga ole VM faʻapitoa.

– 33 –

Punaoa Manaomia

Flow Sensor Virtual Edition Siosiomaga Fesootaiga
A'o le'i fa'apipi'i le Flow Sensor Virtual Edition, ia mautinoa e te iloa le ituaiga feso'ota'iga si'osi'omaga o lo'o ia te oe. O lenei ta'iala e aofia uma ai ituaiga feso'ota'iga si'osi'omaga e mafai e le Flow Sensor Virtual Edition ona mata'ituina.
Fesoʻotaʻiga: Puipuiga Faʻasalalauga Faʻasalalau e lagolagoina se siosiomaga VDS, ae e le lagolagoina le VMware Distributed Resource Scheduler (VM-DRS).
Si'osi'omaga Feso'ota'iga Va'aia: O lo'o mata'ituina e le Flow Sensor Virtual Edition ituaiga nei o si'osi'omaga feso'otaiga vavave:
l O se feso'ota'iga ma feso'ota'iga fa'apitonu'u fa'apitonu'u (VLAN) ogalaau l VLAN tu'ufa'atasi e fa'asa ai se tasi pe sili atu VLANs mai le fa'apipi'iina o pepa.
masini mata'ituina (moample, ona o faiga fa'alotoifale) l Private VLANs l Hypervisor hosts nai lo VLANs
Flow Sensor Virtual Edition Ta'avale
O le Flow Sensor o le a faʻatautaia feoaiga faʻatasi ma Ethertypes nei:

Ethertype 0x8000 0x86dd 0x8909 0x8100 0x88a8 0x9100 0x9200 0x9300 0x8847 0x8848

Polokalama masani IPv4 masani IPv6 SXP VLAN
VLAN QnQ
MLPS unicast MLPS multicast

– 34 –

Punaoa Manaomia

E fa'asaoina e le Flow Sensor le fa'ailoga MPLS pito i luga po'o le VLAN ID ma auina atu i fafo. Na te pasia isi fa'ailoga pe a fa'agaioia pepa.
UDP Fa'atonu Fa'atonu Fa'amatalaga
O le UDP Director Virtual Edition e manaʻomia le faʻamalieina e le masini masini faʻamatalaga nei. E le gata i lea, e mafai ona fa'atupula'ia le la'ititi avanoa e teu ai e fa'atatau i lau fa'atatauga FPS ma ou mana'oga fa'amau.

Manaomia PPU Fa'asao

Manaomia Fa'aagaga Fa'aagaga

La'ititi Fa'amaumauga Fa'amaumauga

Fua maualuga FPS

4 GB

75 GB

10,000

– 35 –

Punaoa Manaomia
Fa'atatauina o tafega ile sekone (filifiliga)
Afai e te manaʻo e faʻatatau au mea e manaʻomia e faʻavae i luga o se aofaʻi e teu ai nai lo le mea na matou saunia i vaega muamua, e mafai ona e faʻaogaina le Flows per Second (FPS) faʻatusatusaga o loʻo faʻaalia iinei.
Fuafuaina o tafega i le sekone mo le teuina o le aoina o le tafe (fa'aga e aunoa ma se Faleoloa)
Afai e te fa'aogaina se Flow Collector (NetFlow) e aunoa ma se Fa'atauga Fa'amatalaga, fa'atatau le vaevaega e teu ai e pei ona ta'ua i lalo: [(FPS/1,000 aso ta'itasi) x 1.6 x aso] l Fuafua lau FPS i aso ta'itasi l Vaevae lenei numera i le 1,000 FPS l Fa'atele lenei numera i le 1.6 GB o le teuina mo le aso e tasi le aoga o le teuina l Faatele lenei numera i le numera o aso e te manaʻo e teu ai le tafe mo le aofaʻi.
teuina i luga ole Flow Collector
Mo example, pe afai o lau faiga:
E 50,000 le averesi o le FPS i aso ta'itasi. O le a teu ai tafega mo le 30 aso, fuafua ile Flow Collector e fa'apea:
[(50,000/1,000) x 1.6 x 30] = 7200 GB (7.2 TB)
l averesi FPS i aso taitasi = 50,000 l 50,000 averesi FPS i aso taitasi / 1,000= 50 l 50 x 1.6 GB = 80 GB mo le aso e tasi le aoga o le teuina l 80 GB x 30 aso mo le Fa'aputuga Fa'asolo = 7200 GB mo le Fa'aputuga Fa'asolo.
Fuafuaga o Tafe ile Sekona mo Fa'amaumauga Node Teuina
Afai e te faʻapipiʻiina se Faʻamatalaga Faʻamatalaga Faʻamatalaga Faʻamatalaga ma le 3 Data Nodes Virtual Edition, matou te fautuaina mo faʻamaumauga taʻitasi, faʻatatau le faʻasoaina o le teuina e pei ona taua i lalo:
[[(FPS i aso uma/1,000) x 1.6 x aso] / numera o Nodes Fa'amaumauga
l Fuafua lau averesi FPS i aso taitasi l Vaevae lenei numera i le 1,000 FPS l Faatele lenei numera i le 1.6 GB o le teuina mo le aso e tasi le aoga o le teuina

– 36 –

Punaoa Manaomia
l Fa'atele lenei numera i le aofa'i o aso e te mana'o e teu ai fa'agasolo mo le aofa'i o Fa'amaumauga a Faleoloa
l Vaevae lenei numera i le numera o Nodes Faʻamatalaga i lau Faleoloa Faʻamaumauga mo le teuina i le Node Faʻamatalaga
Mo example, pe afai o lau faiga: e 50,000 le averesi FPS i aso ta'itasi ou te teuina tafega mo le 90 aso, ma e 3 au Nodes Fa'amatalaga
fa'atatau ile Node Fa'amatalaga e pei ona taua i lalo: [(50,000/1,000) x 1.6 x 90] / 3 = 2400 GB (2.4 TB) ile Node Fa'amatalaga
l averesi FPS i aso taitasi = 50,000 l 50,000 averesi i aso taitasi FPS / 1,000 = 50 l 50 x 1.6 GB = 80 GB mo le aso e tasi le aoga o le teuina l 80 GB x 90 aso i le Faleoloa o Faamatalaga = 7200 GB i le Faleoloa o Faamatalaga l 7200 GB / 3 Faamatalaga Nodes = 2400 GB (2.4 TB) ile Node Fa'amatalaga

– 37 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga
1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga
Ina ia mafai ona fesoʻotaʻi lelei mea faigaluega, e tatau ona e faʻapipiʻi le fesoʻotaʻiga ina ia le taofia e puipui afi poʻo lisi faʻatonutonu avanoa ia fesoʻotaʻiga manaʻomia. Fa'aaogā fa'amatalaga o lo'o tu'uina atu i lenei vaega e fa'atulaga ai lau feso'ota'iga ina ia mafai ona feso'ota'i masini e ala ile feso'ota'iga.
Tatala Taulaga (Meafaigaluega uma)
Fa'atalanoa ma lau pule o feso'ota'iga e fa'amautinoa ai o lo'o tatala avanoa o lo'o i lalo ma e le fa'asaoina le avanoa i au mea faigaluega (Pule, Flow Collectors, Data Nodes, Flow Sensors, ma UDP Directors):
l TCP 22 l TCP 25 l TCP 389 l TCP 443 l TCP 2393 l TCP 8910 l UDP 53 l UDP 123 l UDP 161 l UDP 162 l UDP 389 l UDP 514 l UDP 2055 l UDP 6343
Taulaga Tatala Faaopoopo mo Nodes Fa'amatalaga
E le gata i lea, afai e te faʻapipiʻi Nodes Faʻamatalaga i lau fesoʻotaʻiga, ia mautinoa o loʻo tatala ia ports ma e le faʻatapulaaina avanoa:
l TCP 5433 l TCP 5444 l TCP 9450

– 38 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga

Feso'ota'iga Taulaga ma Maliega
O le laulau o lo'o i lalo o lo'o fa'aalia ai le fa'aogaina o ports ile Secure Network Analytics:

Mai (Client) Admin User PC Mea faigaluega uma

I le (Server) Mea faigaluega uma Fa'afeso'ota'i taimi puna

Active Directory Pule

Cisco ISE

Pule

Cisco ISE

Pule

Punavai ogalaau fafo

Pule

Aoina mai o le tafe

Pule

UDP Faatonu

Pule

UDP Faatonu

Fa'aputuga o le tafe (sFlow)

UDP Faatonu

Fa'aputuga Fa'asolo (NetFlow)

UDP Faatonu

Faiga fa'afoega a le Vaega lona 3

Tafe Sensor

Pule

Tafe Sensor

Fa'aputuga Fa'asolo (NetFlow)

NetFlow Exporters Flow Collecte (NetFlow)

sFlow Fa'aola Fa'aola Fa'aola Aoina mai (sFlow)

Pule

UDP Faatonu

Pule

Cisco ISE

Taulaga TCP/443 UDP/123 TCP/389, UDP/389 TCP/443 TCP/8910
UDP/514
TCP/443 TCP/443 UDP/6343* UDP/2055*
UDP/514
TCP/443 UDP/2055 UDP/2055* UDP/6343* TCP/443 TCP/443

Polokalama HTTPS NTP
LDAP
HTTPS XMPP
SYSLOG
HTTPS HTTPS sFlow NetFlow
SYSLOG
HTTPS NetFlow NetFlow sFlow HTTPS HTTPS

– 39 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga

Mai le (tagata fa'atau) Pule Pule Pule Pule Pule Pule Pule Pule Tagata fa'aoga PC

I le (Server) Cisco ISE DNS Flow Collector Flow Sensor Flow Fa'atau Atu LDAP CRL Fa'asoa Fa'ailoga OCSP tali Pule

Taulaga TCP/8910 UDP/53 TCP/443 TCP/443 UDP/161 TCP/636 TCP/80 TCP/80 TCP/443

Protocol XMPP DNS HTTPS HTTPS SNMP TLS HTTP OCSP HTTPS

*O le uafu faaletonu lea, ae o so'o se UDP uafu e mafai ona fa'atulagaina i le fa'atau atu.

– 40 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga

O Taulaga Tatala Faaopoopo mo Faleoloa Fa'amaumauga
O lo'o lisiina atu i lalo ports feso'ota'iga e tatala i luga o lau pa puipui e fa'aoga ai le Faleoloa Fa'amatalaga.

# Mai (tagata fa'atau) i le (Server)

Taulaga

Polokalama po'o le Fa'amoemoe

1 Pule

Fa'aputuga ma Nodes Fa'amatalaga

22 / TCP

SSH, e manaʻomia e amata ai faʻamaumauga a le Data Store

1 Nodes Fa'amatalaga

isi Nodes Fa'amaumauga uma

22 / TCP

SSH, e mana'omia e amata ai fa'amaumauga a le Faleoloa Fa'amaumauga ma mo galuega fa'afoe o fa'amaumauga

Pule, Flow 2 Collectors, ma le NTP server
Nodes Fa'amatalaga

123/UDP

NTP, mana'omia mo le fa'amaopoopo taimi

2 NTP server

Pule, Fa'aputuga Flow, ma Nodes Fa'amaumauga

123/UDP

NTP, mana'omia mo le fa'amaopoopo taimi

3 Pule

Fa'aputuga ma Nodes Fa'amatalaga

443 / TCP

HTTPS, manaʻomia mo fesoʻotaʻiga malupuipuia i le va o masini

3 Pule Fa'aputuga

443 / TCP

HTTPS, manaʻomia mo fesoʻotaʻiga malupuipuia i le va o masini

3 Nodes Fa'amatalaga

Pule

443 / TCP

HTTPS, manaʻomia mo fesoʻotaʻiga malupuipuia i le va o masini

NetFlow Exporters

Flow Collectors – NetFlow

2055/UDP

NetFlow ingestion

5 Nodes Fa'amatalaga

isi Nodes Fa'amaumauga uma

4803 / TCP

'au'aunaga fe'au fe'au va'aiga Node

6 Node Fa'amatalaga

isi Fa'amatalaga uma

4803/UDP fe'au i totonu o Fa'amatalaga Node

– 41 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga

Nodes

auaunaga

7 Nodes Fa'amatalaga

isi Nodes Fa'amaumauga uma

4804/UDP

'au'aunaga fe'au fe'au va'aiga Node

Pule, Flow 8 Collectors, ma Nodes Fa'amaumauga
Nodes Fa'amatalaga

5433/TCP Vertica feso'ota'iga tagata fa'atau

9 Node Fa'amatalaga

isi uma Node Faʻamatalaga

5433/UDP

Mata'ituina auaunaga tau fe'au Vertica

sFlow Exporters

Fa'aputuga o le tafe (sFlow)

11 Nodes Fa'amatalaga

isi Nodes Fa'amaumauga uma

6343/UDP sFlow ingestion

6543/UDP

'au'aunaga fe'au fe'au va'aiga Node

Taulaga Feso'ota'iga Filifilia
O le laulau o lo'o i lalo e mo fa'atonuga e filifili ai e fuafua e au feso'ota'iga mana'oga:

Mai le (tagata fa'atau) i le (Server)

Taulaga

Polokalama

Meafaigaluega uma Tagata fa'aoga PC

TCP/22 SSH

Pule

3rd Party mea e fai faiga pulega UDP/162 SNMP-mailei

Pule

Faiga fa'afoega a le Vaega lona 3 UDP/514 SYSLOG

Pule

faitotoa imeli

TCP/25 SMTP

Pule

Fafaga Fa'amata'u

TCP/443 SSL

Tagata fa'aoga PC

Meafaigaluega uma

TCP/22 SSH

– 42 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga
Secure Network Analytics Deployment Example
O le ata o loʻo i lalo o loʻo faʻaalia ai fesoʻotaʻiga eseese o loʻo faʻaogaina e Secure Network Analytics. O nisi o nei uafu e filifili.

– 43 –

1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga
Saogalemu Network Analytics Deployment with Data Store Example
E pei ona faʻaalia i le ata o loʻo i lalo, e mafai ona e faʻapipiʻi faʻapipiʻiina mea faigaluega Secure Network Analytics e tuʻuina atu ai le faʻaogaina lelei o vaega autu o fesoʻotaʻiga i luga o le fesoʻotaʻiga, pe i totonu o fesoʻotaʻiga i totonu, i le nofoaga, poʻo le DMZ.

– 44 –

2. Si'itia le Fa'apipi'iina o Lomiga Fa'apitoa Files

2. Si'itia le Fa'apipi'iina o Lomiga Fa'apitoa Files
Fa'aaoga faatonuga nei e la'u mai ai le ISO files mo le fa'apipi'iina o lau masini masini.
Fa'apipi'i Files

Masini Vaavaaia 3a. VMware vCenter

Fa'apipi'i Mea File

Fa'amatalaga

ISO

Fa'apipi'iina o au masini fa'atekonolosi e fa'aaoga ai le VMware vCenter.

3b. VMware ESXi Tu'u Tu'atasi Server

ISO

3c. KVM ma le Pule o masini masini

ISO

Fa'apipi'iina o au mea fa'atekonolosi i luga o le ESXi e tu'u to'atasi le 'au'aunaga talimalo.
Faʻapipiʻiina o au mea faʻapitoa e faʻaaoga ai le KVM ma le Virtual Machine Manager.

1. Ulufale i Cisco Software Central
1. Ulufale i Cisco Software Central ile https://software.cisco.com. 2. I totonu o le Download ma pulea > Download ma Fa'aleleia vaega, filifili Avanoa
download. 3. Fa'asolo i lalo se'ia e va'ai i le Fa'ailoga Filifilia o Mea. 4. E mafai ona e mauaina le Secure Network Analytics filei auala e lua:

l Su'esu'e ile Igoa: Fa'aigoa Secure Network Analytics in the Select a Product field. Oomi le Ulufale.
l Su'esu'e ile Menu: Kiliki Su'esu'e Uma. Filifili Saogalemu > Va'aiga Feso'ota'i ma Vaevaega> Fa'amaumauga Saogalemu (Stealthwatch).

– 45 –

2. Si'itia le Fa'apipi'iina o Lomiga Fa'apitoa Files
2. Si'itia Files
1. Filifili se ituaiga meafaigaluega. l Saogalemu Su'esu'ega Fa'atekonolosi Pule Fa'apitoa l Saogalemu Su'esu'ega Fa'atekonolosi Fa'aputuga Fa'aola Malaga l Saogalemu Su'esu'ega Fa'atekonolosi Va'aiga Fa'aola Va'ai l Saogalemu Su'esu'ega Fa'atekonolosi Fa'atonu UDP Saogalemu l Faleoloa Fa'amatalaga Fa'amatalaga Saogalemu
2. Filifili Secure Network Analytics System Software. 3. I le koluma Fa'asalalau Fou, filifili le 7.4.2 (po'o le lomiga o le 7.4.x o lo'o e iai.
fa'apipi'i). 4. Download: Su'e le fa'apipi'i ISO file. Kiliki le ata o le Download po o le Add to Cart
fa'ailoga. 5. Toe fai nei faatonuga e sii mai ai le files mo ituaiga meafaigaluega taitasi.

– 46 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
Ua umaview
Fa'aoga fa'atonuga nei e fa'apipi'i ai au mea fa'aoga virtual e fa'aaoga ai le VMware vCenter. Ina ia faʻaaoga se isi auala, faʻafesoʻotaʻi mea nei:
l VMware ESXi Tu'u Tu'atasi Server: Fa'aaoga le 3b. Fa'apipi'i o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO).
l KVM: Fa'aaoga le 3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO).
Secure Network Analytics v7.4.2 e fetaui ma VMware 7.0 poʻo 8.0. Matou te le lagolagoina VMware 6.0, 6.5, poʻo le 6.7 faʻatasi ma Secure Network Analytics v7.4.x. Mo nisi fa'amatalaga, tagai ile VMware pepa mo vSphere 6.0, 6.5, ma le 6.7 End of General Support.
Ae e te le'i Amata
Ae e te leʻi amataina le faʻapipiʻiina, faʻamaeʻa faiga nei sauniuniga:
1. Fesootaiga: Review le fetaui talafeagai i le Fesoʻotaʻi. 2. Punaoa Manaomia: Review le vaega o Punaoa Manaomia i
fuafua le vaevaega mana'omia mo le meafaigaluega. E mafai ona e fa'aogaina se puna puna po'o se isi auala e fa'asoa ai punaoa. 3. Pa puipui: Fa'atulaga lau pa puipui mo feso'ota'iga. Va'ai ile 1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga. 4. Files: La'u mai le masini ISO files. Va'ai ile 2. Si'itia le Fa'apipi'iina o Lomiga Fa'anatura Files mo faatonuga. 5. Taimi: Faʻamaonia le taimi seti i luga o le hypervisor host i lau siosiomaga VMware (lea o le ae faʻapipiʻiina ai le masini komepiuta) faʻaalia le taimi saʻo. A leai, atonu o le a le mafai ona fa'aa'e i luga masini masini.
Aua ne'i fa'apipi'i se masini fa'aletino po'o se masini fa'atauva'a i luga o le fuifui/faiga fa'aletino e pei o au mea faigaluega Fa'asa'o Network Analytics.
Aua ne'i fa'apipi'i VMware Tools i luga o se mea fa'atekonolosi fa'atekonolosi a le Network Analytics aua o le a fa'aogaina ai le fa'asologa masani ua uma ona fa'apipi'iina. O le faia o lea mea o le a le mafai ai ona fa'aogaina le masini mamana ma mana'omia le toe fa'apipi'i.

– 47 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
Fa'apipi'iina o se Mea Fa'apitoa e Fa'aaoga ai le vCenter (ISO)
Afai e iai sau VMware vCenter (pe tutusa), faʻaaoga faatonuga nei e faʻapipiʻi ai se masini masini e faʻaaoga ai le ISO. Afai o lo'o e fa'aogaina Nodes Fa'amatalaga po'o Flow Sensors, ia mautinoa e te fa'amae'aina uma faiga e mana'omia.
Nodes Fa'amatalaga
Fa'auma faiga nei:
1. Fa'atulagaina o se LAN Tu'ufua mo Feso'ota'iga Node i le va o Fa'amaumauga. 3. Fa'apipi'iina o le Mea Fa'apitoa. A e faʻapipiʻi le Data Node virtual appliance, e manaʻomia foʻi ona e faʻapipiʻi ni fesoʻotaʻiga fesoʻotaʻiga se lua.
Su'esu'e o le tafe
Fa'auma faiga nei:
2. Fa'atulagaina o le Fua Fa'asolo e Mata'ituina Ta'avale Ta'avale 3. Fa'apipi'i le Mea Fa'apitoa 4. Fa'amalamalamaga o Taulaga Fa'aopoopo e Mata'ituina (Na'o Fa'aalumaga)
Isi Mea uma
Afai o le masini e le o se Node Faʻamatalaga poʻo se Fua Faʻafefe, faʻamaeʻa le faiga o loʻo i lalo:
3. Fa'apipi'iina o le Mea Fa'apitoa
O nisi o menus ma ata e mafai ona eseese mai faʻamatalaga o loʻo faʻaalia iinei. Fa'amolemole va'ai lau ta'iala VMware mo fa'amatalaga e feso'ota'i ma le polokalame.

– 48 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
1. Fa'atulagaina o se LAN Tu'ufua mo Feso'ota'iga Node i le va o Fa'amaumauga
Afai o loʻo e faʻapipiʻi Faʻamatalaga Faʻamatalaga Virtual Edition i lau fesoʻotaʻiga, faʻapipiʻi se LAN tuʻufua ma se ki faʻaoga ina ia mafai ai e le Nodes Faʻamatalaga ona fesoʻotaʻi le tasi ma le isi i luga ole eth1 mo fesoʻotaʻiga vaʻavaʻa-Data Node. E lua filifiliga mo le fa'atulagaina o ki:
l Fa'atulagaina o le vSphere Standard Switch
l Fa'atulagaina o le vSphere Distributed Switch
Fa'atulagaina o le vSphere Standard Switch
1. Ulufale i totonu o lau siosiomaga talimalo VMware. 2. Mulimuli i le VMware Fausia se vSphere Standard Suiga pepa mo
fa'atulagaina se vSphere Standard Switch. Manatua i le Laasaga 4, e te manaʻo e filifili le Virtual Machine Port Group mo se filifiliga Suiga masani. 3. Alu i le 3. Fa'apipi'i le Mea Fa'apitoa.
Fa'atulagaina o le vSphere Distributed Switch
1. Ulufale i totonu o lau siosiomaga talimalo VMware. 2. Mulimuli i le VMware Fausia se vSphere Distributed Switch documentation mo
fa'atulagaina o le vSphere Distributed Switch. Manatua mo le numera o uplinks i le laasaga 5a, o loʻo i ai se manaʻoga o le itiiti ifo i le 1 uplink, peitaʻi e le manaʻomia le faʻapipiʻiina o se uplink seivagana ua e tufatufaina atu nodes i le tele o au. Afai e te manaʻomia le tufatufaina atu o nodes i le tele o 'au, faʻafesoʻotaʻi Cisco Support mo se fesoasoani. 3. Alu i le 3. Fa'apipi'i le Mea Fa'apitoa.
2. Fa'atulaga le Flow Sensor e Mata'ituina Ta'avale
O le Flow Sensor Virtual Edition o loʻo i ai le malosi e tuʻuina atu ai le vaʻaia i totonu ole siosiomaga VMware, faʻatupuina faʻamatalaga tafe mo vaega e le mafai ona tafe. I le avea ai o se masini faʻapipiʻi faʻapipiʻi i totonu o talimalo taʻitasi taʻitasi, o le Flow Sensor Virtual Edition e puʻeina faʻamauina faʻavaa Ethernet mai le host vSwitch, ma e mataʻituina ma fatuina faʻamaumauga o loʻo i ai faʻamaumauga taua o sauniga e fesoʻotaʻi ma paga talanoaga, fua faʻatatau, ma fua faʻatatau.
E te mana'omia le fa'apipi'iina o se Flow Sensor i luga o 'au ta'itasi i totonu o le si'osi'omaga e te mana'o e mata'ituina.
Fa'aoga fa'atonuga nei e fa'atulaga ai le Flow Sensor Virtual Edition e mata'ituina ai femalagaiga i luga o le vSwitch e fa'apea:

– 49 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
l Mata'ituina o se vSwitch ma ni 'au e tele l Mata'ituina o se vSwitch ma se 'au nofo to'atasi
Mata'ituina o Ta'avale i fafo ma le PCI Pass-Through
E mafai fo'i ona e fa'atulaga lau Flow Sensor Virtual Edition mo le mata'ituina o feso'ota'iga sa'o e fa'aoga ai le fa'aogaina o le PCI.
l Manaoga: igb/ixgbe fa'amalieina po'o le e1000e fa'amalieina le fa'aogaina o le PCI. l Fa'amatalaga Punaoa: Va'ai ile Flow Sensor Virtual Edition. l Tu'ufa'atasia: Va'ai ile 1. Fa'atulagaina o lau Pafi mo Feso'ota'iga. l Fa'atonuga: Ina ia fa'aopoopoina feso'ota'iga PCI i le Flow Sensor Virtual Edition, fa'asino
i lau pepa VMware.

– 50 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
Mata'ituina o le vSwitch ma le tele o 'au
Fa'aoga fa'atonuga i lenei vaega e fa'aoga ai le Flow Sensor Virtual Edition e mata'ituina ai femalagaiga i luga ole Distributed vSwitch lea e va'aia ai le tele o 'au VM po'o fuifui. O lenei vaega e fa'aoga na'o feso'ota'iga VDS. Afai o lau feso'ota'iga o lo'o i totonu o se si'osi'omaga e le o VDS, alu i le Mata'ituina o se vSwitch ma se Ta'ita'i Ta'ita'i.
Fa'atonu Manaoga
E te mana'omia le fa'apipi'iina o se Flow Sensor i luga o 'au ta'itasi i totonu o le si'osi'omaga e te mana'o e mata'ituina. O lenei fa'atulagaga o lo'o iai mana'oga nei: l Fa'asoa Fa'asinoala Taulaga (dvPort): Fa'aopoopo se vaega dvPort fa'atasi ai ma fa'atulagaga VLAN sa'o mo VDS ta'itasi o le a mata'ituina e le Flow Sensor Virtual Edition. Afai e mataituina e le Flow Sensor Virtual Edition le VLAN ma le le VLAN felauaiga i luga o le upega tafailagi, e tatau ona e faia ni vaega se lua dvPort, tasi mo ituaiga taitasi. l VLAN Identifier: Afai e fa'aogaina e lou si'osi'omaga se VLAN (e ese mai le VLAN trunking po'o se VLAN tumaoti), e te mana'omia le VLAN fa'ailoa e fa'auma ai lenei faiga. l Faiga Fa'atauva'a: Fa'aaga. l Promiscuous Port: Fa'atonu i le vSwitch. Fa'auma laasaga nei e fa'atulaga ai le feso'ota'iga e fa'aaoga ai se VDS: 1. Kiliki le Networking icon.
2. I le laau Networking, kiliki-matau le VDS. 3. Filifili Vaega Fa'asoa Taulaga > Vaega Fou Fa'asoa Taulaga.

– 51 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
4. Fa'aoga le New Distributed Port Group dialog box e fa'atulaga ai le vaega o le uafu, e aofia ai fa'amatalaga i laasaga nei.
5. Filifili Igoa ma Nofoaga: I le Igoa fanua, ulufale i se igoa e iloa ai lenei vaega dvPort.
6. Fa'atulaga Fa'atonu: I le Numera o Taulaga fanua, fa'aofi le numera o Flow Sensor Virtual Editions i lau fuifui o 'au.

7. Kiliki le VLAN type drop-down list.
l Afai e le fa'aogaina e lou siosiomaga se VLAN, filifili Leai. l Afai e fa'aogaina e lou si'osi'omaga se VLAN, filifili le ituaiga VLAN. Fa'atulaga e pei o
o lo'o mulimuli mai:

VLAN

Ituaiga VLAN

Fa'amatalaga I le VLAN ID fanua, fa'aofi le numera

– 52 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)

VLAN Trunking Private VLAN

(i le va o le 1 ma le 4094) e fetaui ma le fa'amatalaga.
I totonu o le VLAN trunk range field, ulufale i le 0-4094 e mata'ituina uma VLAN felauaiga.
Filifili Promiscuous mai le lisi pa'ū.

8. Sauni e Fa'auma: Review le fa'atulagaina o fa'atulagaga. Kiliki Finish. 9. I le laau Networking, kiliki-matau le vaega fou dvPort. Filifili Fa'atonu Fa'atonu. 10. Filifili Saogalemu. 11. Kiliki i lalo le lisi o le Promiscuous Mode. Filifili Talia.

12. Kiliki OK e tapuni ai le pusa talanoaga. 13. E mata'ituina e le Flow Sensor Virtual Edition le VLAN ma feso'ota'iga le VLAN
feoaiga?
l Afai ioe, toe fai laasaga i lenei vaega Mata'ituina o le vSwitch ma le tele o 'au.
l Afai e leai, fa'aauau i le isi laasaga.
14. E i ai se isi VDS i le VMware siosiomaga o le a mataʻituina e le Flow Sensor Virtual Edition?
l Afai e ioe, toe fai laasaga i lenei vaega Mata'itūina o se vSwitch ma le tele o 'au mo le isi VDS.
15. Alu i le 3. Fa'apipi'i le Mea Fa'apitoa.

– 53 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
Mataituina o se vSwitch ma se Host nofofua
Fa'aoga fa'atonuga i lenei vaega e fa'aoga ai le Flow Sensor Virtual Edition e mata'ituina ai femalagaiga i luga o le vSwitch ma se talimalo e tasi.
O lenei vaega e fa'aoga na'o feso'ota'iga e le o VDS. Afai e fa'aogaina e lau feso'ota'iga se VDS, alu i le Mata'ituina o se vSwitch ma le tele o 'au.
Fa'atonu Manaoga
O lenei fa'atulagaga o lo'o i ai mana'oga nei: l Promiscuous Port Group: Fa'aopoopo se vaega uafu fa'atauva'a mo ki fa'aoga ta'itasi o le a mata'ituina e le Flow Sensor Virtual Edition. l Faiga Fa'atauva'a: Fa'aaga. l Promiscuous Port: Fa'atonu i le vSwitch.
Fa'atulaga le Vaega o Taulaga i le Faiga Fa'atau
Fa'aaoga faatonuga nei e fa'aopoopo ai se vaega uafu, po'o le fa'asa'o o se vaega uafu, ma tu'u i le Promiscuous.
1. Fa'ailoga i totonu o lau siosiomaga talimalo VMware ESXi. 2. Kiliki Networking.

3. Filifili le Fa'ailoga vaega o Taulaga. 4. E mafai ona e faia se vaega uafu fou pe faasa'o se vaega uafu.
© 2023 Cisco Systems, Inc. ma/po'o ana paaga. Ua taofia aia tatau uma.

– 54 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)

l Fausia le Vaega o Taulaga: Kiliki Fa'aopoopo vaega o le taulaga. l Fa'asa'o Vaega Tau: Filifili le vaega uafu. Kiliki Fa'atonu Fa'atonu.
5. Fa'aoga le pusa fa'atalanoaga e fa'atulaga ai le vaega o le taulaga. Fa'atulaga le VLAN ID po'o le VLAN Trunking:

VLAN Ituaiga VLAN ID VLAN Trunking

Fa'amatalaga
Fa'aaoga le VLAN ID e fa'amaonia ai se VLAN e tasi. I le VLAN ID fanua, fa'aofi le numera (i le va o le 1 ma le 4094) e fetaui ma le fa'amatalaga.
Fa'aoga VLAN Trunking e mata'itu uma fe'avea'i VLAN. E fa'aletonu le laina ile 0-4095.

6. Kiliki le aū Saogalemu.

7. Faiga Fa'aipoipo: Filifili Talia.

– 55 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
8. O le a mata'ituina e le Flow Sensor Virtual Edition se isi kilia fa'apitoa i lenei siosiomaga VMware?
Afai o le ioe, toe fo'i i le 2. Fa'atulaga le Flow Sensor e Mata'ituina le Ta'avale, ma toe fai uma la'asaga mo le isi kilia virtual.
9. Alu i le 3. Fa'apipi'i le Mea Fa'apitoa

– 56 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
3. Fa'apipi'iina o le Mea Fa'apitoa
Fa'aoga fa'atonuga nei e fa'apipi'i ai se masini fa'apitoa i luga o lau 'au'aunaga hypervisor ma fa'amatala le fa'atonuga o meafaitino ma mata'itū uafu.
O nisi o menus ma ata e mafai ona eseese mai faʻamatalaga o loʻo faʻaalia iinei. Fa'amolemole va'ai lau ta'iala VMware mo fa'amatalaga e feso'ota'i ma le polokalame.
1. Ulufale i lau VMware Web Tagata fa'atau. 2. Su'e le masini komepiuta masini komepiuta file (ISO) na e siiina mai Cisco
Polokalama Tutotonu. 3. Fa'aavanoa le ISO ile vCenter. E iai au filifiliga nei:
l Tu'u le ISO i se faleteuoloa vCenter. l Fa'aopoopo le ISO i se faletusi. l Taofi le ISO i lau fale faigaluega i le lotoifale, ma fetuutuunai le faʻapipiʻiina i
faasino i lena file. Va'ai le VMware pepa mo nisi fa'amatalaga. 4. Mai le vCenter UI, filifili Menu > Hosts and Clusters. 5. I le navigation pane, kiliki taumatau se fuifui po'o le talimalo ma filifili New Virtual Machine… e maua ai le New Virtual Machine wizard. 6. Mai le Filifili se ituaiga foafoaga faamalama, filifili Fausia se masini virtual fou, ona kiliki le Next.

– 57 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
7. Mai le Filifili se igoa ma le faila faamalama, ulufale i se igoa masini masini, filifili se nofoaga mo le masini komepiuta, ona kiliki le Next.
8. Mai le Fa'amalama o punaoa fa'akomepiuta, filifili se fuifui, talimalo, puna'oa, po'o le vApp lea e te fa'aogaina ai le meafaigaluega, ona kiliki lea o le Next.

9. Mai le faamalama Filifilia teuina, filifili se VM Storage Policy mai le pa'ū-lalo, ona filifili lea o se nofoaga e teu ai, ona kiliki lea o le Next.

– 58 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)

10. Mai le faamalama Filifiliga fetaui, filifili se masini masini masini mai le Fesoʻotaʻi ma pa'ū-i lalo, e faavae i luga o lou deployed lomiga ESXi nei. Mo example, o le screenshot o loʻo mulimuli mai e faʻaalia ESXi 7.0 ma mulimuli ane ona o ESXi 7.0 ua faʻapipiʻiina. Kiliki le Next.

11. Mai le Select a guest OS screen, filifili le Linux Guest OS Family ma le Debian GNU/Linux 11 (64-bit) Guest OS Version. Kiliki le Next.

– 59 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
12. Mai le faamalama Customize hardware, fetuutuunai le masini komepiuta. Va'ai i Punaoa Manaomia mo fautuaga patino mo lau ituaiga meafaigaluega. O lenei laasaga e taua tele mo le faʻatinoina o le polokalama. Afai e te filifili e faʻapipiʻi mea faigaluega Cisco Secure Network Analytics e aunoa ma le manaʻomia o punaoa, e te tauaveina le matafaioi e mataʻituina lelei le faʻaogaina o lau meafaigaluega ma faʻateleina punaoa pe a manaʻomia e faʻamautinoa ai le soifua maloloina lelei ma le gaioiga o le faʻaogaina.

– 60 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)

I le faaopoopo atu i punaoa e manaʻomia, ia mautinoa ua filifilia tulaga nei:
l Kiliki New Hard disk e faʻalautele ai le faʻatulagaina o filifiliga. Filifili Thick Provision Lazy Zeroed mai le Disk Provisioning drop-down.
l Kiliki le Pule SCSI Fou e fa'alautele ai le fa'atulagaina o filifiliga. Filifili LSI Logic SAS mai le Suiga Ituaiga pa'ū-lalo. Afai e te le filifilia le LSI Logic SAS, atonu e le mafai ona faʻapipiʻi lelei lau masini komepiuta.
l I le New CD/DVD Drive fanua, filifili se nofoaga ISO e fa'atatau i le mea na e teuina ai le ISO. Kiliki New CD/DVD Drive e fa'alautele ai le fa'atulagaina o filifiliga. Siaki Feso'ota'i I le Malosiaga.
l Afai o le meafaigaluega o se Flow Sensor, ma o loʻo e faʻatulagaina le 10 Gbps throughput mo le NIC, kiliki le PPU e faʻalautele ai le faʻatulagaina o filifiliga. Fa'atulaga uma Cores i Socket ina ia tu'u uma PPU ile tasi socket.
13. Nodes o Fa'amaumauga: Afai o lo'o e fa'aogaina se masini fa'aigoa Fa'amatalaga Node, fa'aopoopo fo'i se isi feso'ota'iga feso'ota'iga lona lua.
Kiliki Add New Device, ona filifili lea o le Network Adapter ma ia mautinoa o le Adapter Type o le VMXNET3.

– 61 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
l Mo le feso'ota'iga feso'ota'iga muamua, filifili se ki e mafai ai e le Data Node Virtual Edition ona feso'ota'i i luga o se feso'ota'iga lautele ma isi masini.
l Mo le feso'ota'iga lona lua o feso'ota'iga, filifili le ki na e faia i le 1. Fa'atulagaina o se LAN Tu'ufua mo Feso'ota'iga Node i le va o Fa'amaumauga e mafai ai ona feso'ota'i le Node Fa'amatalaga Virtual i luga o se feso'otaiga tuma'oti ma isi Nodes Fa'amatalaga.
Ia fa'amautinoa ua e tu'u sa'o le feso'ota'iga feso'ota'iga ma suiga fa'apitoa mo Node Fa'amatalaga uma i lau fa'agaioiga a'o e fa'aogaina Node Fa'amaumauga ta'itasi.

– 62 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
14. Mai le Sauni e fa'amalama fa'amalama, review au faatulagaga, ona kiliki lea o le Finish.

15. O le fa'apipi'iina e amata pe a e kiliki le Power On icon. Mata'ituina le fa'agaioiga o le fa'agaioiga i le vaega o Galuega lata mai. Ia mautinoa ua maeʻa le faʻapipiʻiina ma faʻaalia i le Inventory tree ae e te leʻi alu i le isi laasaga.
16. Laasaga e sosoo ai:
l Flow Sensors: Afai o le masini o se Flow Sensor ma o le a mataʻituina le sili atu ma le tasi le kilia mataʻutia i le siosiomaga VMware, poʻo le sili atu ma le tasi VDS i totonu o se fuifui, faʻaauau i le isi vaega 4. Faʻamatalaina o Taulaga Mataʻituina Faaopoopo (Flow Sensors) .
l Isi Meafaigaluega Uma: Toe fai uma faiga i totonu o lenei vaega 3. Fa'apipi'i le Mea Fa'atekonolosi e fa'aoga ai se isi masini masini.
17. Afai ua uma ona e faʻapipiʻi uma masini komepiuta i totonu o lau masini, alu i le 4. Faʻatonuina o lau Secure Network Analytics System.

– 63 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
4. Fa'amalamalamaina o Taulaga Fa'aopoopo e Mata'ituina (Na'o Va'aiga Fa'asolo)
O lenei faiga e mana'omia pe afai o le Flow Sensor Virtual Edition o le a mata'ituina le sili atu ma le tasi ki fa'aoga i totonu ole si'osi'omaga VMware pe sili atu ma le tasi VDS ile fuifui.
Afai e le o le fa'atulagaina lea o le mata'ituina o lau Flow Sensor, e te le mana'omia le fa'amae'aina o lenei faiga. Ina ia fa'aopoopo ports mata'ituina Flow Sensor Virtual Edition, fa'auma laasaga nei: 1. I le la'au Inventory, kiliki-matau le Flow Sensor Virtual Edition. Filifili Fa'atonu Fa'atonu.

2. Fa'aoga le pusa fa'atalanoaga Fa'atonu Fa'atonu e fa'atulaga ai fa'atonuga fa'apitoa nei. 3. Kiliki Add New Device. Filifili Network Adapter.

– 64 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
4. Su'e le feso'ota'iga feso'otaiga fou. Kiliki le aū e faalautele ai le lisi, ma fetuutuuna'i mea nei: l Feso'otaiga Fou: Filifili se vaega uafu faitaaga e le'i tofiaina. l Adapter Type: Filifili VMXNET 3. l Tulaga: Siaki le Feso'ota'i ile Power On siaki pusa.

– 65 –

3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO)
5. Ina ua uma le toeviewi le faatulagaga, kiliki le OK. 6. Toe fai lenei faiga e fa'aopoopo ai se isi fa'aoga Ethernet pe a mana'omia. 7. Laasaga e sosoo ai:
l Flow Sensors: Ina ia faʻapipiʻi se isi Flow Sensor, alu i le 2. Faʻatonuina le Flow Sensor e Mataʻituina le Taʻavale.
l Isi Meafaigaluega Uma: Toe fai uma faiga i totonu o lenei vaega 3. Fa'apipi'i le Mea Fa'atekonolosi e fa'aoga ai se isi masini masini.
l Afai ua mae'a ona fa'apipi'i uma masini fa'akomepiuta i totonu o lau masini, alu i le 4. Fa'atulagaina o Lau Faiga Fa'amautuga o Feso'otaiga Saogalemu.

– 66 –

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)
3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)
Ua umaview
Fa'aaogā fa'atonuga nei e fa'apipi'i ai au mea fa'atekonolosi e fa'aoga ai se si'osi'omaga VMware fa'atasi ai ma le ESXi Stand-alone server.
Secure Network Analytics v7.4.2 e fetaui ma VMware v7.0 poʻo 8.0. Matou te le lagolagoina VMware v6.0, v6.5, poʻo v6.7 faʻatasi ma Secure Network Analytics v7.4.x. Mo nisi fa'amatalaga, va'ai ile VMware fa'amaumauga mo vSphere 6.0, 6.5, ma le 6.7 End of General Support.
Ina ia faʻaaoga se isi auala, faʻafesoʻotaʻi mea nei:
l VMware vCenter: Fa'aaoga le 3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO) .
l KVM: Fa'aaoga le 3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO).
Ae e te le'i Amata
Ae e te leʻi amataina le faʻapipiʻiina, faʻamaeʻa faiga nei sauniuniga:
1. Fesootaiga: Review le fetaui talafeagai i le Fesoʻotaʻi. 2. Punaoa Manaomia: Review le vaega o Punaoa Manaomia i
fuafua le vaevaega mana'omia mo le meafaigaluega. E mafai ona e fa'aogaina se puna puna po'o se isi auala e fa'asoa ai punaoa. 3. Pa puipui: Fa'atulaga lau pa puipui mo feso'ota'iga. Va'ai ile 1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga. 4. Files: La'u mai le masini ISO files. Va'ai ile 2. Si'itia le Fa'apipi'iina o Lomiga Fa'anatura Files mo faatonuga. 5. Taimi: Faʻamaonia le taimi seti i luga o le hypervisor host i lau siosiomaga VMware (lea o le ae faʻapipiʻiina ai le masini komepiuta) faʻaalia le taimi saʻo. A leai, atonu o le a le mafai ona fa'aa'e i luga masini masini.
Aua ne'i fa'apipi'i se masini fa'aletino po'o se masini fa'atauva'a i luga o le fuifui/faiga fa'aletino e pei o au mea faigaluega Fa'asa'o Network Analytics.

– 67 –

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)
Aua ne'i fa'apipi'i VMware Tools i luga o se mea fa'atekonolosi fa'atekonolosi a le Network Analytics aua o le a fa'aogaina ai le fa'asologa masani ua uma ona fa'apipi'iina. O le faia o lea mea o le a le mafai ai ona fa'aogaina le masini mamana ma mana'omia le toe fa'apipi'i.
Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'atasi Server (ISO)
Fa'aaogā fa'atonuga nei e fa'apipi'i ai au mea fa'atekonolosi e fa'aoga ai se si'osi'omaga VMware fa'atasi ai ma le ESXi Stand-alone server.
Fa'agasologa Fa'aumaview
O le fa'apipi'iina o se masini komepiuta e aofia ai le fa'amae'aina o ta'iala nei, o lo'o aofia i lenei mataupu:
1. Ulufale i le VMware Web Tagata fa'atau
2. Fa'aosoina mai le ISO
Nodes Fa'amatalaga
Afai o loʻo e faʻaogaina Nodes Faʻamatalaga, mulimuli i faʻatonuga i le vaega muamua 1. Faʻatulagaina o se LAN Tuʻufua mo Fesoʻotaʻiga Node i le va o Faʻamatalaga ae e te leʻi faʻamaeʻaina taualumaga i lenei vaega.
1. Ulufale i le VMware Web Tagata fa'atau
O nisi o menus ma ata e mafai ona eseese mai faʻamatalaga o loʻo faʻaalia iinei. Fa'amolemole va'ai lau ta'iala VMware mo fa'amatalaga e feso'ota'i ma le polokalame.
1. Ulufale i le VMware Web Tagata fa'atau. 2. Kiliki Fausia/Resitala se masini masini. 3. Fa'aoga le New Virtual Machine dialog box e fa'atulaga ai le masini e pei ona fa'ailoa mai i totonu
laasaga nei. 4. Filifili Ituaiga Foafoaga: Filifili Fausia se Masini Masini Fou.

– 68 –

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)

5. Filifili se Igoa ma le OS Ta'ita'i: Ulufale pe filifili mea nei: l Igoa: Tu'u se igoa mo le masini ina ia faigofie ona e iloaina. L Fesootaiga: Filifili le lomiga o loʻo e faʻaogaina (v7.0 poʻo le 8.0). l Aiga OS fa'afeiloa'i: Linux. l Fa'atonu OS: Filifili Debian GNU/Linux 11 64-bit.
6. Filifili Teuina: Filifili se faleteuoloa e mafai ona maua. Review Punaoa Manaomia e faʻamaonia ai e lava lau avanoa.

– 69 –

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)
Review Punaoa Manaomia e faasoasoa ai ia lava punaoa. O lenei laasaga e taua tele mo le faʻatinoina o le polokalama.
Afai e te filifili e faʻapipiʻi mea faigaluega Cisco Secure Network Analytics e aunoa ma le manaʻomia o punaoa, e te tauaveina le matafaioi e mataʻituina lelei le faʻaogaina o lau meafaigaluega ma faʻateleina punaoa pe a manaʻomia e faʻamautinoa ai le soifua maloloina lelei ma le gaioiga o le faʻaogaina.
7. Fa'asinomaga Fa'atonu: Ulufale pe filifili au mea e mana'omia (silasila i Punaoa Manaomia mo fa'amatalaga).
Ia mautinoa e te filifilia mea nei:
l SCSI Pule: LSI Logic SAS l Feso'ota'iga Feso'ota'iga: Fa'amaonia le tuatusi fa'atonu mo le masini. l Hard Disk: Mafiafia Tulaga Paie Zeroed
Afai o le masini ose Flow Sensor, e mafai ona e kiliki Add Network Adapter e fa'aopoopo ai se isi pulega po'o se feso'ota'iga lagona. Afai o le masini o se Flow Sensor, ma o loʻo e faʻatulagaina le 10 Gbps throughput mo le NIC, kiliki le PPU e faʻalautele ai le faʻatulagaina o filifiliga. Fa'atulaga uma PPU i le tasi socket. Afai o le meafaigaluega o se Node Fa'amatalaga, fa'aopoopo se isi feso'ota'iga feso'ota'iga e fa'ataga ai feso'ota'iga interData Node. Kiliki Add Network Adapter.
l Mo le feso'ota'iga feso'ota'iga muamua, filifili se ki e mafai ai e le Data Node Virtual Edition ona feso'ota'i i luga o se feso'ota'iga lautele ma isi masini.
l Mo le feso'ota'iga lona lua o feso'ota'iga, filifili le ki na e faia i le 1. Fa'atulagaina o se LAN Tu'ufua mo Feso'ota'iga Node i le va o Fa'amaumauga e mafai ai ona feso'ota'i le Node Fa'amatalaga Virtual i luga o se feso'otaiga tuma'oti ma isi Nodes Fa'amatalaga.

– 70 –

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)

8. Kiliki le aū i tafatafa o Network Adapter. 9. Mo le Ituaiga Adapter, filifili VMXnet3.
Aʻo lagolagoina e Cisco le faʻaogaina o le E1000 (1G dvSwitch), 1G PCI-passthrough, ma VMXNET 3 fesoʻotaʻiga, e fautuaina malosi e Cisco e te faʻaogaina le VMXNET3 faʻaoga e pei ona faʻamaonia e tuʻuina atu le faʻaogaina o fesoʻotaʻiga sili ona lelei mo Cisco masini komepiuta.
10. Review au fa'atulagaina ma fa'amaonia e sa'o.
11. Kiliki Fa'auma. Ua faia se koneteina masini masini.
2. Fa'aosoina mai le ISO
1. Tatala le VMware console. 2. Faʻafesoʻotaʻi le ISO i le masini komepiuta fou. Va'ai ile VMware ta'iala mo fa'amatalaga. 3. Fa'afou le masini masini mai le ISO. E fa'agasolo le fa'apipi'i ma toe fa'a otometi. 4. A maeʻa le faʻapipiʻiina ma toe faʻafouina, o le a e vaʻai i le faʻauluina o le saini.

– 71 –

3b. Fa'apipi'iina o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO)

5. Aveese le ISO mai le masini komepiuta. 6. Toe fai uma faiga i le 3b. Fa'apipi'i se Mea Fa'apitoa i luga ole ESXi
Tu'u Tu'atasi Server (ISO) mo le isi masini fa'atekonolosi. 7. Flow Sensors: Afai o le masini o se Flow Sensor, fa'auma le seti i le fa'aoga muamua
vaega o lenei tusi lesona:
l 2. Fa'atulagaina o le Fa'asologa Va'ai e Mata'ituina Ta'avale (fa'aoga le Mata'ituina o se vSwitch ma se Ta'ita'i Ta'ita'i)
l Afai o le Flow Sensor o le a mataʻituina le sili atu ma le tasi le kilia mataʻutia i le siosiomaga VMware, poʻo le sili atu ma le tasi VDS i se fuifui, alu i le 4. Faʻamatalaina o Taulaga Mataʻituina Faʻaopoopo (Flow Sensors).
8. Afai ua mae'a ona e fa'apipi'iina uma masini fa'atekonolosi i lau masini, alu i le 4. Fa'atulagaina o Lau Fa'atonuga Fa'amatalaga Fa'atonuga.

– 72 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
Ua umaview
Fa'aoga fa'atonuga nei e fa'apipi'i ai au mea fa'aoga virtual e fa'aaoga ai le KVM ma le Virtual Machine Manager. Ina ia faʻaaoga se isi auala, faʻafesoʻotaʻi mea nei:
l VMware vCenter: Fa'aaoga le 3a. Fa'apipi'iina o se Mea Fa'apitoa e fa'aaoga ai le VMware vCenter (ISO) .
l VMware ESXi Tu'u Tu'atasi Server: Fa'aaoga le 3b. Fa'apipi'i o se Mea Fa'apitoa i luga ole ESXi Tu'u Tu'atasi Server (ISO).
Linux KVM ua faʻataʻitaʻiina ma faʻamaonia i luga o le tele o faʻasalalauga KVM talimalo. Va'ai i le KVM mo se lisi au'ili'ili o vaega KVM na matou fa'ata'ita'iina ma fa'amaonia mo Secure Network Analytics versions 7.3.1 ma luga.
Ae e te le'i Amata
Ae e te leʻi amataina le faʻapipiʻiina, ia mautinoa ua e faʻamaeʻaina faiga nei:
1. Fesootaiga: Review le fetaui talafeagai i le Fesoʻotaʻi. 2. Punaoa Manaomia: Review le vaega o Punaoa Manaomia i
fuafua le vaevaega mana'omia mo le meafaigaluega. E mafai ona e fa'aogaina se puna puna po'o se isi auala e fa'asoa ai punaoa. 3. Pa puipui: Fa'atulaga lau pa puipui mo feso'ota'iga. Va'ai ile 1. Fa'atulagaina o Lau Pa puipui mo Feso'ota'iga. 4. Files: La'u mai le masini ISO files ma kopi i latou i se pusa i luga o le KVM talimalo. Matou te faʻaogaina le faila lea i le example saunia i lenei vaega: var/lib/libvirt/image. Va'ai ile 2. Si'itia le Fa'apipi'iina o Lomiga Fa'anatura Files mo faatonuga. 5. Taimi: Faʻamaonia le taimi seti i luga o le hypervisor host i lau siosiomaga VMware (lea o le ae faʻapipiʻiina ai le masini komepiuta) faʻaalia le taimi saʻo. A leai, atonu o le a le mafai ona fa'aa'e i luga masini masini.
Aua ne'i fa'apipi'i se masini fa'aletino po'o se masini fa'atauva'a i luga o le fuifui/faiga fa'aletino e pei o au mea faigaluega Fa'asa'o Network Analytics.

– 73 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
Afai e iai sau KVM talimalo, faʻaaoga faatonuga nei e faʻapipiʻi ai se masini komepiuta e faʻaaoga ai le ISO.
Fa'agasologa Fa'aumaview
O le fa'apipi'iina o se masini komepiuta e aofia ai le fa'amae'aina o ta'iala nei, o lo'o aofia i lenei mataupu:
Fa'atulagaina o se LAN Tu'ufua mo Nodes Fa'amaumauga
1. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host
2. Fa'aopoopoina o le NIC (Node Fa'amatalaga, Fa'amatalaga Fa'asolo) ma le Mata'ituina o Taulaga Fa'akomepiuta i luga ole vSwitch Tatala (Na'o Fa'asu'esu'e)
Fa'atulagaina o se LAN Tu'ufua mo Nodes Fa'amaumauga
Afai o loʻo e faʻapipiʻi Faʻamatalaga Faʻamatalaga Virtual Edition i lau fesoʻotaʻiga, faʻapipiʻi se LAN tuʻufua ma se ki faʻaoga ina ia mafai ai e le Nodes Faʻamatalaga ona fesoʻotaʻi le tasi ma le isi i luga ole eth1 mo fesoʻotaʻiga vaʻavaʻa-Data Node. Va'ai lau fa'amaumauga a lau kilia mo nisi fa'amatalaga i le fa'atupuina o se LAN tu'ufua.
1. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host
E tele auala e faʻapipiʻi ai se masini komepiuta i luga o se KVM talimalo e faʻaaoga ai se ISO file. O laasaga nei e tu'uina atu ai le tasi example mo le faʻapipiʻiina o se Pule faʻapitoa e ala i se meafaigaluega GUI e taʻua o le Virtual Machine Manager o loʻo taʻavale i luga o se pusa Ubuntu. E mafai ona e faʻaogaina soʻo se faʻasalalauga Linux talafeagai. Mo fa'amatalaga feso'ota'iga, va'ai ile Feso'ota'i.
Mata'ituina Ta'avale
O le Flow Sensor Virtual Edition o loʻo i ai le malosi e tuʻuina atu ai le vaʻaia i totonu ole siosiomaga KVM, faʻatupuina faʻamatalaga tafe mo vaega e le mafai ona tafe. I le avea ai o se masini faʻapipiʻi faʻapipiʻi i totonu o KVM talimalo taʻitasi, o le Flow Sensor Virtual Edition e puʻeina faʻamauina faʻavaa Ethernet mai fefaʻatauaiga o loʻo matauina ma fatuina faʻamaumauga tafe o loʻo i ai faʻamaumauga taua o vasega e faʻatatau i paga talatalanoaga, fua faʻatatau, ma fua faʻatatau.
Fa'atonu Manaoga
O lenei fa'atulagaga e iai mana'oga nei:
l Faiga Fa'atauva'a: Fa'aaga. l Promiscuous Port: Fa'atonu i se vSwitch tatala.

– 74 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
Matou te fautua atu e te faʻaogaina le virt-manager 2.2.1 e faʻapipiʻi ai se masini komepiuta i luga o se KVM talimalo.
Fa'apipi'iina o se Mea Fa'apitoa ile KVM Host
Ina ia faʻapipiʻi se masini komepiuta, ma faʻatagaina le Flow Sensor Virtual Edition e mataʻituina felauaiga, faʻamaeʻa laasaga nei:
1. Fa'aaoga le Virtual Machine Manager e fa'afeso'ota'i i le KVM Host ma fa'apipi'i le masini e pei ona fa'ailoa mai i laasaga nei.
2. Kiliki File > Masini Va'aiga Fou.
3. Filifili QEMU/KVM mo lau feso'ota'iga, ona filifili lea o Fa'asalalauga fa'apipi'i i le lotoifale (ata ISO po'o le CDROM). Kiliki i luma.

4. Kiliki Su'esu'e e filifili ai le ata o meafaigaluega.
© 2023 Cisco Systems, Inc. ma/po'o ana paaga. Ua taofia aia tatau uma.

– 75 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
5. Filifili le ISO file. Kiliki Filifili Volume. Faʻamaonia le ISO file e mafai ona maua e le KVM Host.
6. Fa'amama le fa'ailoga "Otometi ona iloa mai le fa'apipi'i fa'asalalauga / puna'oa". I lalo Filifili se ituaiga faʻaogaina ma faʻamatalaga, amata ona taina "Debian" ma filifili le Debian 11 (debian 11) filifiliga e aliali mai. Kiliki i luma.

– 76 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
7. Faʻateleina le Manatu (RAM) ma PPU i le aofaʻi o loʻo faʻaalia i le vaega o Manaoga Punaoa. Review Punaoa Manaomia e faasoasoa ai ia lava punaoa. O lenei laasaga e taua tele mo le faʻatinoina o le polokalama. Afai e te filifili e faʻapipiʻi masini Cisco Secure Network Analytics e aunoa ma ni punaoa manaʻomia, e te tauaveina le matafaioi e mataʻituina lelei le faʻaogaina o lau meafaigaluega ma faʻateleina punaoa pe a manaʻomia e faʻamautinoa ai le soifua maloloina lelei ma le gaioiga o le faʻaogaina.

– 77 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
8. Filifili Fausia se ata tisiki mo le masini komepiuta. 9. Ulufale le aofa'i o fa'amaumauga o lo'o fa'aalia mo le masini i le Punaoa
Vaega o Manaoga. Kiliki i luma.

Review Punaoa Manaomia e faasoasoa ai ia lava punaoa. O lenei laasaga e taua tele mo le faʻatinoina o le polokalama.
Afai e te filifili e faʻapipiʻi mea faigaluega Cisco Secure Network Analytics e aunoa ma le manaʻomia o punaoa, e te tauaveina le matafaioi e mataʻituina lelei le faʻaogaina o lau meafaigaluega ma faʻateleina punaoa pe a manaʻomia e faʻamautinoa ai le soifua maloloina lelei ma le gaioiga o le faʻaogaina.
10. Tofi se Igoa mo le masini komepiuta. Ole igoa lea ole fa'aaliga, fa'aaoga la se igoa ole a fesoasoani e te su'eina mulimuli ane.
11. Siaki le Customize configuration aʻo leʻi faʻapipiʻi pusa siaki. 12. I le Network selection drop-down box, filifili le feso'ota'iga talafeagai ma le taulaga
vaega mo le faʻapipiʻiina.
Nodes Fa'amaumauga: Afai o le Node Fa'amatalaga lea, filifili se feso'ota'iga ma fa'alapotopotoga uafu e fa'ataga ai le Node Fa'amatalaga e feso'ota'i i luga o feso'ota'iga lautele ma isi masini.

– 78 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
13. Kiliki Fa'auma. E tatala le lisi o fa'atonuga.

– 79 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
14. I le navigation pane, filifili NIC. 15. I lalo ole Virtual Network Interface, filifili le e1000 i le masini fa'ata'ita'iga pusa pa'ū.
Kiliki Apply.

16. Kiliki VirtIO Disk 1. 17. I le Advanced Options drop-down list, filifili SCSI i le Disk bus drop-down
pusa. Kiliki Apply. 18. E te mana'omia le fa'aopoopoina o le NICS mo le mata'ituina o ports ile Flow Sensor Virtual
Lomiga, po'o le fa'aagaaga o feso'ota'iga va'ava'ai i le Node Fa'amatalaga VE?
l Afai e ioe, alu i le 2. Fa'aopoopoina o le NIC (Node Fa'amatalaga, Fa'amatalaga Fa'asolo) ma le Mata'ituina o Taulaga Fa'akomepiuta i luga o se vSwitch Tatala (Na'o Fa'asolo Va'aiga).
l Afai e leai, alu i le isi laasaga.
19. Kiliki Amata Fa'apipi'i. 20. Alu i le 4. Fa'atulagaina o Lau Faiga Fa'amautuga o Network Analytics System.

– 80 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
2. Fa'aopoopoina o le NIC (Node Fa'amatalaga, Fa'amatalaga Fa'asolo) ma le Mata'ituina o Taulaga Fa'akomepiuta i luga ole vSwitch Tatala (Na'o Fa'asu'esu'e)
Ina ia fa'aopoopo nisi NIC mo le Flow Sensor Virtual Edition ports mata'ituina po'o le Data Node Virtual Edition ma fa'amae'a le fa'apipi'iina, fa'auma laasaga nei:
1. I le Configuration Menu, kiliki Add Hardware. O le Add New Virtual Hardware dialog box fa'aalia.

2. I le itu agavale navigation pane, kiliki Network.
Afai o se Node Fa'amatalaga lea, filifili se feso'ota'iga ma vaega o le taulaga e mafai ai e le Node Fa'amatalaga ona feso'ota'i i luga o se feso'otaiga lautele ma isi masini.

– 81 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
3. Flow Sensors: Afai o se Flow Sensor lea, kiliki i le Portgroup drop-down list e filifili ai se vaega uafu fa'atauva'a e le'i tofiaina e te mana'o e mata'ituina. Kiliki le Fa'ata'ita'iga Fa'ata'ita'iga lisi pa'u i lalo e filifili e1000. Nodes Fa'amaumauga: Afai o se Node Fa'amatalaga, filifili se puna feso'ota'iga e mafai ai ona feso'ota'i interData Node i luga o se LAN tu'ufua, fa'aaoga le fa'atulagaga na e faia i le Fa'atulagaina o se LAN Tu'ufua mo Nodes Fa'amatalaga.

– 82 –

3c. Fa'apipi'iina o se Mea Fa'apitoa i luga ole KVM Host (ISO)
4. Kiliki Fa'auma. 5. Afai e te manaʻomia le faʻaopoopoina o se isi taulaga mataʻituina, toe fai nei faatonuga. 6. A uma ona e faʻaopoopoina ports mataʻituina uma, kiliki Amata Faʻapipiʻi.

– 83 –

4. Fa'atulagaina o Lau Faiga Fa'atekonolosi Saogalemu

4. Fa'atulagaina o Lau Faiga Fa'atekonolosi Saogalemu
Afai ua mae'a ona fa'apipi'i au mea fa'aoga Virtual Edition ma/po'o mea faigaluega, ua e sauni e fa'atulaga le Secure Network Analytics i totonu o se faiga fa'afoe.
Ina ia fetuutuunai Secure Network Analytics, mulimuli i faatonuga i le Secure Network Analytics System Configuration Guide v7.4.2. O lenei laasaga e taua tele mo le faʻatulagaina lelei ma fesoʻotaʻiga o lau polokalama.
Ia mautinoa e te fetuutuunai au meafaigaluega i le faasologa o loʻo faʻamaonia i le System Configuration Guide.
System Configuration Manaoga
Ia mautinoa e te maua le avanoa i le masini faʻamafanafanaga e ala i le hypervisor host (virtual machine host). Fa'aoga le laulau o lo'o i lalo e saunia ai fa'amatalaga mana'omia mo masini ta'itasi.

Fa'atonuga Manaomia

Fa'amatalaga

Meafaigaluega

tuatusi IP

Tofia se tuatusi IP e mafai ona fa'aogaina i le eth0 pulega port.

Netmask

faitotoa

Igoa Talimalo

E mana'omia se igoa talimalo tulaga ese mo masini taitasi. E le mafai ona matou fa'atulagaina se masini e tutusa le igoa talimalo e pei o se isi masini. E le gata i lea, ia mautinoa o igoa taʻitasi o mea faigaluega e fetaui ma tulaga manaʻomia o le Initaneti mo 'au faʻainitaneti.

Igoa ole igoa

E mana'omia se igoa fa'apitoa atoatoa mo masini ta'itasi. E le mafai ona matou fa'apipi'i se masini e iai se vaega avanoa.

– 84 –

4. Fa'atulagaina o Lau Faiga Fa'atekonolosi Saogalemu

DNS Servers

DNS server i totonu mo fofo igoa

NTP Servers

Taimi Totonu server mo le fa'amaopoopo i le va o 'au'aunaga. Le itiiti ifo ma le 1 NTP server e manaʻomia mo masini taʻitasi.
Aveese le 130.126.24.53 NTP server pe afai o loʻo i totonu o lau lisi o 'auʻaunaga. O lenei 'auʻaunaga ua iloa e faʻafitauli ma e le o toe lagolagoina i la matou lisi faʻaletonu o NTP servers.

Meli Relay Server

SMTP Meli server e lafo fa'aaliga ma fa'amatalaga

Auala e auina atu i fafo le Taulaga Aoina mai

E mana'omia mo na'o Fa'aputuga. NetFlow Default: 2055

Tulaga IP e le mafai ona fa'aogaina i totonu o se LAN tumaoti po'o le VLAN (mo feso'ota'iga va'ava'ai-Data Node)

Manaomia mo na'o Nodes Fa'amatalaga.
l Meafaigaluega eth2 poʻo le fusi o le eth2 ma le eth3. Fausia se LACP eth2/eth3 feso'ota'iga uafu alalaupapa e o'o atu i le 20G throughput e mafai ai ona vave feso'ota'iga i le va ma le va o Fa'amatalaga Fa'amatalaga, ma fa'avaveina Fa'amatalaga Node fa'aopoopo po'o le suia i le Faleoloa Fa'amaumauga. Manatua o le LACP port bonding e na'o le pau lea o le filifiliga fa'apipi'i o lo'o avanoa mo Nodes Fa'amatalaga meafaigaluega.
l Eth1
IP Address: E mafai ona e faʻaogaina le tuatusi IP ua tuʻuina atu pe faʻapipiʻi se tau e fetaui ma manaʻoga nei mo fesoʻotaʻiga vaʻavaʻa-Data Node.
l tuatusi IP e le mafai ona fa'aogaina mai le poloka 169.254.42.0/24 CIDR,

– 85 –

4. Fa'atulagaina o Lau Faiga Fa'atekonolosi Saogalemu

i le va o le 169.254.42.2 ma le 169.254.42.254.
l Oketi Muamua e Tolu: 169.254.42
l Subnet: /24
l Fa'asologa: Mo le faigofie o le tausiga, filifili fa'asologa o tuatusi IP (pei o le 169.254.42.10, 169.254.42.11, ma le 169.254.42.12).

eth0 Taulaga Feso'ota'iga Meafaigaluega

Netmask: O le Netmask e faigata ona faʻailoga i le 255.255.255.0 ma e le mafai ona suia.
Manaomia mo Su'esu'ega Puipuiga o Feso'otaiga ma na'o mea faigaluega a le Faleoloa Fa'amatalaga:
l Pule l Fa'aputuga Fa'aola l Nodes Fa'amatalaga
eth0 Filifiliga Tau Feso'ota'iga Meafaigaluega:
l SFP+:

– 86 –

SNA Feso'ota'i Lagolago
SNA Feso'ota'i Lagolago
Afai e te mana'omia le lagolago fa'apitoa, fa'amolemole fai se tasi o mea nei: l Fa'afeso'ota'i lau Paaga Cisco i lou lotoifale Fa'afeso'ota'i Cisco Lagolago l E tatala se mataupu e ala i web: http://www.cisco.com/c/en/us/support/index.html l Ina ia tatala se mataupu ile imeli: tac@cisco.com l Mo le lagolago telefoni: 1-800-553-2447 (US) l Mo numera lagolago i le lalolagi atoa: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html

– 87 –

Fa'amatalaga Puletaofia
Cisco ma le Cisco logo o fa'ailoga fa'ailoga po'o fa'ailoga fa'amaufa'ailoga a Cisco ma/po'o ona so'otaga i le US ma isi atunu'u. I view se lisi o faailoga tau Cisco, alu i lenei URL: https://www.cisco.com/go/trademarks. O fa'ailoga tau fefa'ataua'iga lona tolu o lo'o ta'ua o meatotino a latou tagata e ona. O le faʻaaogaina o le upu paaga e le faʻaalia ai se mafutaga faʻapaʻaga i le va o Cisco ma soʻo se isi kamupani. (1721R)
© 2023 Cisco Systems, Inc. ma/po'o ana paaga. Ua taofia aia tatau uma.

Suiga Tala'aga

Fa'amatalaga Fa'amaumauga

Aso Fa'asalalau

Fa'amatalaga

1_0

Fepuari 27, 2023

Faʻamatalaga muamua.

1_1

Mati 27, 2023

Fa'afou le laulau Feso'ota'iga Taulaga ma Protocols.

1_2

Mati 27, 2023

Fa'asa'o se mea sese.

Faʻaleleia faʻamatalaga o le VMware lagolago. Ave'esea

1_3

Aperila 20, 2023

"Suported Metrics Metrics" laulau aua o se ta'iala fa'apitoa lea. Faʻaleleia faʻamatalaga o le KVM host version

lagolago.

1_4

Aokuso 15, 2023

Suia fa'amatalaga punaoa manatua mai le GB i le GiB.

1_5

Aperila 27, 2023

Faʻaopoopo le lagolago mo VMware 8.0. Fautuaga Fa'atonu Fa'atonu.

Pepa / Punaoa

CISCO 742 Su'esu'ega Feso'otaiga Saogalemu [pdf] Fa'atonu Taiala
742 Saogalemu Fa'amatalaga Fa'afeso'ota'i, 742, Saogalemu Su'esu'ega Feso'ota'iga, Su'esu'ega Fa'afeso'ota'i, Su'esu'ega

Fa'asinomaga

Tusi Taiala

742 Saogalemu Fa'amaumauga o Feso'otaiga

Fa'amatalaga o oloa

Fa'amatalaga

Folasaga

Fa'atonuga o le Fa'aaogaina o Mea

Auala Fa'apipi'i

Fegalegaleaiga

La'uina o polokalame

Fa'atonu Manaoga

Fa'apipi'i le Mea Fa'apitoa

FAQ

Q: O a mea e manaʻomia mo le faʻaogaina o le Cisco
Secure Network Analytics Virtual Edition Mea faigaluega?

Q: E mafai faapefea ona ou sii maia le faʻapipiʻi files mo le Virtual
Lomiga Meafaigaluega?

F: O a feso'ota'iga feso'otaiga e mana'omia mo le inter-Data Node
fesootaiga?

Pepa / Punaoa

Fa'asinomaga

Tuu se faamatalaga

Fa'aleaogaina le tali

742 Saogalemu Fa'amaumauga o Feso'otaiga

Fa'amatalaga o oloa

Fa'amatalaga

Folasaga

Fa'atonuga o le Fa'aaogaina o Mea

Auala Fa'apipi'i

Fegalegaleaiga

La'uina o polokalame

Fa'atonu Manaoga

Fa'apipi'i le Mea Fa'apitoa

FAQ

Q: O a mea e manaʻomia mo le faʻaogaina o le Cisco Secure Network Analytics Virtual Edition Mea faigaluega?

Q: E mafai faapefea ona ou sii maia le faʻapipiʻi files mo le Virtual Lomiga Meafaigaluega?

F: O a feso'ota'iga feso'otaiga e mana'omia mo le inter-Data Node fesootaiga?

Pepa / Punaoa

Fa'asinomaga

Fa'amatalaga Fa'atatau

Tuu se faamatalaga

Fa'aleaogaina le tali

Q: O a mea e manaʻomia mo le faʻaogaina o le Cisco
Secure Network Analytics Virtual Edition Mea faigaluega?

Q: E mafai faapefea ona ou sii maia le faʻapipiʻi files mo le Virtual
Lomiga Meafaigaluega?

F: O a feso'ota'iga feso'otaiga e mana'omia mo le inter-Data Node
fesootaiga?