Hewlett-Packard ProCurve NAC 800 Users Manual
Download Operation & user’s manual of HP ProCurve NAC 800 Gateway for Free or View it Online on All-Guides.com.
Brand: HP
Category: Gateway
Type: Operation & user’s manual for HP ProCurve NAC 800
Pages: 591 (8.37 Mb)
Remote Device Activity Capture
Creating a DAC Host
12-15
b. When the command completes, copy the DAC_keystore file (from /
tmp or wherever you specified) to C:\Program Files\Hewlett-
Packard\DAC\lib\ .
c. After copying the DAC_keystore file from the MS, delete the file
from its temporary location on the MS.
NOTE: Note that for each remote DAC host, this step must be repeated as each host
should have its own unique key.
2. Add a firewall rule to the ES or ESs to which the DAC host will be sending
packets. On each ES:
a. Enter the following command to dump the Lokkit iptables chain:
iptables -nvL RH-Lokkit-0-50-INPUT --line-numbers
b. Add a rule AFTER the RELATED, ESTABLISHED rule. The rule
numbers are listed in the first column of the output from the previous
statement. For example, if the RELATED, ESTABLISHED rule is rule
5, the INSERT command would look like the following:
iptables -I RH-Lokkit-0-50-INPUT 6 -p tcp --dport
8999 -s <DAC host IP> -m state --state NEW -j ACCEPT
If you want this addition to survive a reboot, you must use the
iptables-save command and dump the iptables ruleset to /etc/
sysconfig/iptables with the following command:
/sbin/iptables-save > /etc/sysconfig/iptables
Adding Additional ESs
For this release, if you want to add additional ESs, you must install them
manually. A future release will expand the options in the installer to include
multiple ESs. To add additional interfaces to the DAC host:
Windows server
1. Open the DAC/conf/wrapper.conf file with a text editor.
a. Locate the Application Parameters section in the wrapper.conf file.
You will see a list of entries like the following: