Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Configuring the DTLS Communications Protocol

SUMMARY To prevent eavesdropping and tampering, you can set up Datagram Transport Layer Security (DTLS) on a Network Insights managed host. This encrypts the IPFIX connection between the Network Insights managed host and the Flow Processor that receives the traffic.

Configuring DTLS is optional, and is not required for Network Insights to work.

Ensure that your Network Insights appliance is attached as a managed host. For more information, see Adding the Network Insights Appliance as a Managed Host.

You can have more than one Network Insights appliance that points to a single DTLS port, but configuring multiple DTLS ports is not supported.

After you configure the DTLS communications protocol, if you change the Flow Processor or flow source of any JSA Network Insights managed hosts in your deployment, you must deploy the changes.

  1. On the Admin tab, in the System Configuration section, click System and License Management.
  2. Select the managed host, and on the Deployment Actions menu, click Edit Host Connection.
  3. On the Modify Network Insights Connection page, select the Flow Processor and flow source.
  4. Click Save.
  5. Specify whether to configure the Network Insights appliance as a stand-alone or stacked appliance.
  6. Click Next, and then click Save.
  7. Close the System and License Management page.
  8. On the Admin tab menu bar, click the Deploy Changes icon.