Adding And Deleting Network Sensors

As your network changes, you may add or delete VLANs in your current network configuration. You can add Sensors to manage these newly created VLANs by adding additional interfaces in the Network Sensor CLI. If you add additional remote locations you can add Network Sensor Appliances to the sites to have these locations managed through Genian NAC.

 

To Add Network Sensor Hardware At New Remote Site

If you have added a new remote location, here are the steps to adding an additional Network Sensor hardware to your Policy Server.

  1. Installing Network Sensor (*During the Installation of Network Sensor a question will be presented to point to a node-server host)
  2. For node-server host enter IP Address (On-Premise) or use FQDN (Cloud) (*e.g. node-server host 192.168.50.50 or node-server host somename.domain.net)
  3. Deploy Network Sensor onto Network
  4. Should see Network Sensor in UI under System > Sensor and Management > Node

To Add Additional Network Sensors (VLANs)

(*Network Sensors cannot be added through UI, they must be configured through CLI by adding sub-interfaces to the existing eth0 or eth1 interface.)

  1. Connect through SSH client to Policy Server/Network Sensor
    Connecting To Command Line Interface
  2. Enter global configuration mode by typing configure terminal
  3. Enter the following commands below for each Network Sensor to be added:
    • interface eth0 vlan 1,10,15,20 (*Adding VLAN 20 for network 10.1.20.5)
    • interface eth0.20 address 10.1.20.5 255.255.255.0
  4. exit

(*Commands are instantly written so there is no need to do “write” or “copy run start” commands)

To Delete A Network Sensor System

(*This deletes a Network Sensor System and all VLANs(Up to 128) with Nodes and Node information for all associated networks)

  1. Disconnect Network Sensor from the network and power down
  2. Access Policy Server UI to delete Network Sensor
  3. Go to System in the top panel
  4. Go to System > System in the System Management panel
  5. Find and click on the Checkbox of desired Network Sensor
  6. Go to Tasks > Delete System
  7. click OK to confirm

To Delete A Specific VLAN Network Sensor

(*This deletes a single VLAN Network Sensor and all Nodes and Node information)

  1. Connect through SSH client to Policy Server/Network Sensor
    Connecting To Command Line Interface
  2. Enter global configuration mode by typing configure terminal
  3. Enter the following commands below for each Network Sensor (VLAN) to be removed:
    • interface eth0 vlan 1,10,15 (*Removing VLAN 20 for network 10.1.20.5)
    • no interface eth0.20 address 10.1.20.5 255.255.255.0
  4. Exit from CLI
  5. Go to System in the top panel
  6. Go to System > Sensor in the System Management panel
  7. Find and click on the IP Address of desired Network Sensor
  8. Find and click Delete in General tab
  9. click OK to confirm
2018-05-22T23:15:37+00:00 May 16th, 2018|