Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Gateway Set Up
How do I set up a group for IDPS gateways?
Under Maintain, navigate to Organization > Groups on the HPE Aruba Networking Central app to set up a group for gateways.
Is there any difference in provisioning the gateways for IDPS?
No, there is no difference in provisioning the gateways.
What is the ideal way to group gateways?
The ideal way to group gateways is to assign all IDPS Intrusion Detection and Prevention System (IDPS) monitors, detects, and prevents threats in the inbound and outbound traffic. Aruba IDPS provides an extra layer of protection that actively analyzes the network and takes actions on the traffic flows based on the defined rules. It inspects data packets, and if any threat is identified, acts real-time to prevent it. gateways to one group and other gateways to separate groups.
Does 9xxx secure gateway scan IPSec/ESP encrypted traffic?
No, by default, IPSec/ESP Encapsulating Security Payload. The ESP protocol provides data confidentiality (encryption) and authentication (data integrity, data origin authentication, and replay protection). encrypted traffic is not inspected. However, the pre-encryption and post-decrypted sessions are scanned for threats.
Can I upgrade the 90xx IDPS secure gateway running IDPS engine 4.x to 6.x?
Yes, you must install AOS-10.4.0.0 firmware version to upgrade.
What new protocols are supported with IDPS 6.x engine version?
Protocols like SNMP Simple Network Management Protocol. SNMP is a TCP/IP standard protocol for managing devices on IP networks. Devices that typically support SNMP include routers, switches, servers, workstations, printers, modem racks, and more. It is used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention. , SIP Session Initiation Protocol. SIP is used for signaling and controlling multimedia communication session such as voice and video calls. , RFB, MQTT, RDP, and HTTP2 are newly supported with the IDPS 6.x engine version.