500 users and below
- P4 2 GHz
- GB RAM
- 40 GB harddisk and above
- 2 NIC
- win 2000/2003 server
- MSDE or SQL
1000 users
- P4 2.6 GHz
- 2 GB RAM
- 40-80 GB harddisk and above
- 2 NIC
- win 2000/2003 server
- MSDE or SQL
up to 3000 users
- DUAL CPU Xeon 2.6 GHz
- 2 GB RAM
- 80 GB harddisk and above
- 2 NIC
- win 2000/2003 server
- MSDE or SQL
3000 to 5000 users
- DUAL CPU dual core Xeon 3 GHz and above
- 2-3 GB RAM
- 160 GB harddisk and above
- 2 NIC
- win 2000/2003 server
- MSDE or SQL
5000 to 10k users (2 Servers)
- DUAL CPU dual core Xeon 3 GHz and above
- 160 GB harddisk and above (RAID 0 or 5)
- 2 NIC
- win 2000/2003 server
- SQL
Prerequisites and Installation Check list
- MUST set FIXED IP and HOSTNAME
- Install MSDE or SQL2000/2005
- Test access to internet from WS server - MUST have HTTP and DNS access (do nslookup)
- If using STANDALONE MODE, test if port mirroring/hub/network tap is functioning properly. - Use Ethereal or Wireshark to do sniffing and check if you can see all internal IPs appearing.
- Install Websense :Filtering components/Logging and reporting components
- During installation select all relevant Websense components to be installed. DON'T insert license key during installation. Do it after installation.
MSDE
- Must set sa account/password
- Inside setup location locate and configure SETUP.ini file
- Type in: [Options] SAPWD=sa
- Set authentication mode to MIXED MODE
- After installation, go to START--> RUN--> regedit
- Then do a search for 'loginmode'
- Once found, double click login mode, and change entry from 1 to 2
- Inside setup location locate and configure SETUP.ini file
- Type in: [Options] SAPWD=sa
- Set authentication mode to MIXED MODE
- After installation, go to START--> RUN--> regedit
- Then do a search for 'loginmode'
- Once found, double click login mode, and change entry from 1 to 2
- 0 - native mode
- 1 - windows mode
- 2 - mixed mode
- REBOOT SERVER after installing MSDE!
SQL
-Must set sa password and choose Mixed Mode during installation.
AFTER installing Websense Filtering components
-Insert license key inside WS Manager
- It will automatically start the download for MASTER DB (MDB)
- Once it starts to download, CANCEL the download.
- STOP Filtering Service.
- copy the pre-DOWNLOADED Master Database file (1.1GB) to Program Files--> Websense--> bin directory.
AFTER installing Websense Filtering components
-Insert license key inside WS Manager
- It will automatically start the download for MASTER DB (MDB)
- Once it starts to download, CANCEL the download.
- STOP Filtering Service.
- copy the pre-DOWNLOADED Master Database file (1.1GB) to Program Files--> Websense--> bin directory.
- the pre-dowloaded MDB file should be NO OLDER then 7 days old
- File is called Websense (no extension)
- Start Filtering Service.
- Go to WS Manager, click Server-->Database download. It should say LOADING DATABASE.
- Once loaded, all website categories and protocol categories should APPEAR.
- IF USING STANDALONE MODE, Go to WS Manager, Server--> Settings-->Network Agent
- Go to WS Manager, click Server-->Database download. It should say LOADING DATABASE.
- Once loaded, all website categories and protocol categories should APPEAR.
- IF USING STANDALONE MODE, Go to WS Manager, Server--> Settings-->Network Agent
- Configure relevant NIC settings (NIC1, NIC2 etc)
- If using SPAN port, there should be 2 NICs, 1 for MONITORING and 1 for Sending BLOCK Packets (reset packets).
- If using HUB, only need ONE NIC. Same NIC configured for MONITORING and BLOCK packets.
- Run installer again
- Select Add components
- Select all three boxes in reporting components
Priority for users/groups/workstations/network ranges when setting POLICIES
- USER
- WORKSTATION
- RANGE
- GROUP
- GLOBAL POLICY
- WORKSTATION
- RANGE
- GROUP
- GLOBAL POLICY
No comments:
Post a Comment