Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Sidewinder

 

JSA Risk Manager supports McAfee Enterprise Firewall (Sidewinder) appliances that run SecureOS.

The following features are available with the Sidewinder adapter:

  • Static NAT

  • Static routing

  • Telnet and SSH connection protocols

The Sidewinder adapter interacts with the CLI-based McAfee operating system (SecureOS) over Telnet or SSH.

Sidewinder adapter has the following limitations:

  • Only Layer 3 firewall policies are supported because the Layer 7 policies that use Sidewinder application defenses are unsupported.

  • Identity-based, geography-based, and IPv6 policies are dropped, because these policies are unsupported by JSA Risk Manager.

The integration requirements for the Sidewinder adapter are described in the following table:

Table 1: Sidewinder Adapter

Integration Requirement

Description

Supported versions

8.3.2

Minimum user access level

admin

The admin user access level is required to retrieve predefined services information from the database by using the cf appdb list verbose=on command.

SNMP discovery

No

Required credential parameters

Username

Password

Supported connection protocols

Use any one of the following supported connection protocols:

SSH

Telnet

Commands that the adapter requires to log in and collect data

hostname

uname -r

uptime

cf license q

cf route status

cf ipaddr q

cf iprange q

cf subnet q

cf domain q

Use "dig $address +noall +answer"

for each domain output from: cf domain q

cf host q

cf netmap q

cf netgroup q

cf appdb list verbose=on

cf application q

cf appgroup q

cf policy q

cf interface q

cf zone q