Skip to main content
Matrix42 Self-Service Help Center

Edge Device

  1. Last updated
  2. Save as PDF
How to install and configure a FireScope Edge Device in the on-premise environment.

Overview

The Edge Device resides at each business location, performs Discovery and data collection, and pushes the resulting data up to the central FireScope SPM cloud. All Edge Device configuration is performed through the central FireScope SPM interface, enabling new business locations to be easily integrated into Dashboards by starting up a new Edge Device and pushing down configuration. Edge devices can be physical or virtual appliances, depending on the size of the environment they reside in and volume of data collected.

Communication with the central cloud can be over standard HTTP or HTTPS, is configurable per edge device, and leverages message queuing to ensure accurate delivery of data. Additionally, if an edge device loses connectivity to its cloud, data will be locally cached until connectivity is restored, at which time a secondary history queue is used to push cached attribute data without disrupting real-time data.

clipboard_efa12f81798061c2b2bd82e717f4c934c.png

Deploy Edge Device

  1. Download the Edge OVA from Marketplace.
  2. Once the file is downloaded successfully, connect to ESX Server via vSphere client. 
    clipboard_e2224c1ff091f8c8e58bdbc684cb4980c.png
clipboard_ed0c049f03b76c606213eefa7105814be.png
  1. Log into the Vmware. Deploy OVF template page will be displayed.
     
  2. Click on File > Deploy OVF Template. Deploy OVF Template wizard will be displayed.
    clipboard_eec90be53e8bf6c1b47347a2fa331ea88.png
  3. Click on Browse and  select the SEDGE.ova that was downloaded (Step 1) and click Next.
    clipboard_eb9163a10f2cd5a0a8f279df1444e1352.png

     
  4. Specify a Name of the VM (As per company standards)and click Next.
  5. Select DataStore and click Next.
  6. Select Thin provision and click Next.
  7. Check the box Power on Deployment and Click Finish.
  8. After successful deployment, node will be starting. Once the node is started follow below steps for Network and Hostname assignments.
  • Enter 1 for Configure Network Settings.
    clipboard_effabaf870149e47c5264997bb2819434.png
  • Select No
    clipboard_e691bfff7da8cfde2ade8c7325cb76920.png
  • Enter Hostname
    clipboard_edd1d09858479fb4fd94f0262c4b0958d.png
  • Enter IP Address
    clipboard_e9a7c248e42c19c33eb564f990c63e026.png
  • Enter Subnet Mask
    clipboard_e898259480da2fab63f5f03d4c0cf7026.png
  • Enter Gateway
    clipboard_ebdd9e0ed04a07dbc66a20e5f2504d0d8.png
  • Enter PRIMARY DNS Server
    clipboard_ee941ccef63fa553f9f8ee29a012daaf5.png
  • Enter SECONDARY DNS Server
    clipboard_eb72c0ee1ffbbd0e7aec1fdabbc0abc0c.png
  • Enter NTP Server
    clipboard_edaaac08e9f397b8ccdc38387d48ef6ce.png

Note: Once you enter all above details, SEDGE Node will be installing required modules / updates and Creates Database and tables etc.

Create Edge-CMI Account

clipboard_e67719c03b6515aa4e30cf9230990141d.png
  1. Log into CMI Account.
  2. Click on Administration > Device Management > Edge Device, Manage Edge devices page will be displayed.
  3. Click on Create. Create Edge Device form will be displayed.  
    clipboard_e895ce3b75fd846a8687fc2d660b300dd.png
  4. Complete the form.
  5. Click on the Save button.   
  6. Click on Download Key button.
  7. Select Save file option.

Note: Registration key is necessary for Edge Registration.  

Create Edge – Non CMI Account

SAAS customers do not have access to the CMI Account, so to create an Edge device the user has to log in with Account Admin User Access level.

To create an Edge device

  1. Log in to FireScope Cloud Advisor with Firescope or Account Administration privileges.
  2. Click on Configuration > Edge Device, Manage Edge devices page will be displayed.
    clipboard_e239bd959989578d4bdd184807b1fc238.png
  3. To create a new Edge Device click on the Create button or to set the network traffic collection rules for all edge devices click on Global Network Traffic Settings (upper right hand corner) button.

Create New Edge Device

  1. Create Edge Device form.
    clipboard_e115f9893468d47bd7dc8aefd2abf5969.png
  2. Select the Edge Device Status from the drop down list.
  3. In Edge Device Details section, 
    • Enter a name for the new Edge Device
    • Enter Description for the new Edge Device
    • TimeZone – You can click on the Change button to select a different Country and its Timezone from the drop down list.
      clipboard_edc638094224497b5cc89c220c66b0026.png

       
  4. Proxy: Click on the Use Proxy check box if you want to use a proxy for this Edge device. Proxy section will be expanded with the connection information fields. Enter the necessary information to connect to a proxy.
    clipboard_e703fb2134146f16cebdf28d22cce546d.png
  5. Select the application server IP from the Application Server Connection Settings drop down list.
  6. Network Traffic Collector – This section sets the rules for Network Traffic Collection. These rules are applied to this particular Edge Device only.
    Note: If Global Network Traffic Setting is created as well, then these two rules are combined for data collection.
    clipboard_e47cc78be13bab737b0cf785b79952c43.png
    • Collect Traffic: You can select enable or disable from the drop down list to turn on or turn off data flow.
    • Options: To select the type of data flows select the check boxes in front of the following options,
      • Collect NetFlow:  NetFlow is a network protocol developed by Cisco for collecting IP traffic information and monitoring network traffic. By analyzing flow data, a picture of network traffic flow and volume can be built. Supported versions: V1/V5/V7/V8/V9/V10.
      • Collect SFlow:  sFlow is a general purpose network traffic measurement system technology. sFlow is designed to be embedded in any network device and to provide continuous statistics on any protocol (L2, L3, L4, and up to L7), so that all traffic throughout a network can be accurately characterized and monitored. Supported version: V2/V4/V5.
      • Promiscuous Mode: In a network, promiscuous mode allows a network device to intercept and read each network packet that arrives in its entirety. This mode of operation is sometimes given to a network snoop server that captures and saves all packets for analysis (for example, for monitoring network usage).
        • Promiscuous Mode Network Interface: Specify network interface for capturing promiscuous network traffic.
          • Lowercase, alphanumeric characters only.
          • Leave blank to default to OS selected network interface.
    • Exclusion:Enter a comma-separated list of IPs and/or Ports to be excluded from the Network Traffic Data Collection.
      • IP Exclusion:  The list you enter, uses normal IP range syntax, so it can include hostnames, CIDR netblocks, octet ranges, etc.
      • Port Exclusion List: The list can be individual ports (8024,8025) or a range of port (8024-8034).
    • Inclusion: Enter a comma-separated list of IPs and/or Ports to be included in the Network Traffic Data Collection.
      • IP Inclusion List:  The list you pass uses normal IP range syntax, so it can include hostnames, CIDR netblocks, octet ranges, etc.
      • Port Inclusion List: The list can be individual ports (8024,8025) or a range of port (8024-8034).

 Click on the Save button. The Edge Device page will be displayed.

clipboard_e424e8c5e327f69da27625f2863479998.png

Click on the Download Key button. Option to Save or Open the Edge device key is displayed.

Select the Save option.

Register Edge

  1.  Open your browser and type http://<ip or dns of your newly deployed Edge Device>:8004. Login page will be displayed.
clipboard_e3e495b6b4c391c0b3ec612b0f476f9e4.png
  1. Enter  Username and Password. Click on Login.
  2. FireScope SPM EMI menu page will be displayed.
clipboard_e43ab812685bf0752625ad22b90f31b41.png
  1. Click on Administration > Edge Registration. Edge Registration Key page will be displayed.
clipboard_ee64c12b0e6daf2c106e9b626527057fa.png
  1. Drag & Drop EDGE Registration Key or Browse and upload Key.
  2. Click on the Validate Registration Key. Validation page will be displayed.            
clipboard_e4619a83861c2a2467b83d27d645fb182.png
  1. Click on Submit the Registration Key. Edge Registration Complete page will be displayed.
clipboard_ef6a4699e5358311da3eee2c01ab69ef5.png
  1. Click on Edge Registration Complete.
  2. Refresh the Manage Edge Device page in CMI account. You will see the registered Edge Device IP address.
clipboard_ed3faa6977f96b92e6fc1096724cd1cdc.png

Update Edge Device -CMI Account

  1. Login into CMI Account
  2. Click on Administrator > Device Management > Edge Devices. Manage Edge Devices page will be displayed.
  3. Select the Edge Device Account (Click in the check box).
  4. Click on Update Edge Devices.      

Update Edge Device – Non-CMI Account

  1. Login into Firescope SPM with Administrator privileges.
  2. Click on Administrator > Utilities > Edge Devices. Manage Edge Devices page will be displayed.
clipboard_ef49c6a4c2f927b5df965bbefcfb1eddc.png
  1. Select the Edge Device Account (Click in the check box).
  2. Click on Update Edge Devices.

Global Network Traffic Settings -Non-CMI Account

You can set the network traffic collection rules for all edge devices here. # Log in to FireScope SPM with Firescope or Account Administration privileges.

  1. Click on Configuration > Edge Device, Manage Edge devices page will be displayed.
clipboard_e301046b96e25b1c7c70ba5803f0dd5c0.png
  1. To create a new Edge Device click on the Create button or to set the network traffic collection rules for all edge devices click on Global Network Traffic Settings (upper right hand corner) button.

Set Global Network Traffic Settings

  1. Global Network Traffic Settings form.
clipboard_eb829cd19df5a7475f27b83f310260a8a.png
  1. Traffic Sampling Frequency: Select the sampling frequency time from the drop down, this defines the amount of time in which network packets for the same (source_ip, target_ip, port) are aggregated into the same flow. Setting a larger sampling frequency is advantageous in that less flows are created in the system and increases processing time. Note: Flows will take a longer amount of time to be available for processing.
  2. Application Messaging IP/DNS: RabbitMQ messaging for intra-application communication requires access from your edge devices to your cloud FireScope web server (typically the 2nd configured webserver). If your webserver location is different than the default setup (a different DNS or virtual IP), you can enter it here.
  3. Global IP Exclusion List: Specifies a comma-separated list of IPs to be excluded. The list you pass in uses normal IP range syntax, so it can include hostnames, CIDR netblocks, octet ranges, etc.
  4. Global Port Exclusion: Specifies a comma-separated list of ports you want to exclude. The list can be individual ports (8024,8025) or a range of port (8024-8034)
  5. Global IP Inclusion List: Specifies a comma-separated list of IPs to be the ONLY ones included in network traffic data collection. The list you pass enter uses normal IP range syntax, so it can include hostnames, CIDR netblocks, octet ranges, etc.
  6. Global Port Inclusion List: Specifies a comma-separated list of ports to be the ONLY ones included in network traffic data collection. The list can be individual ports (8024,8025) or a range of port (8024-8034).

Service Rule Settings – Non CMI Account

Here you can schedule Data Analysis, assign discovered CIs to Edge Devices based upon IP ranges and if there are CIs which do not match the IP filters and ranges you can assign them to a default Edge device.

Note: Saving the Service Rules Settings page will restart the job.

To accomplish the above,# Log in to FireScope SPM with Firescope or Account Administration privileges.

  1. Click on Administration > Application Settings > Service Rules Settings, Edge Assignment Rules page will be displayed.
clipboard_e50d18b68087135cac8e641b06a16b00d.png
  1. Status: You can enable or disable the Edge assignment Rule by selecting Active or Disable from the drop down list.
  2. Dependency Analysis Schedule:  Select the interval of frequency from the drop down list. to determine often you want the job to run.
    • Last Check: Displays the date and time the job starts processing
    • Finished: Displays the date and time the job was completed .
    • Results: This displays the status (success/fail) and number of Service Groups processed
  3. Edge Device Assignments for Network Traffic: Network Traffic which is selected by Business Service Rules will be assigned to the selected Edge Devices based on matching IP ranges. You can also select the default Edge Device assignment for all other CIs not matching the specified IP ranges. 
    • Click on Add Rule button to add IP addresses or IP range. IP Range section will be displayed
clipboard_e6bc9b5d7df8d495492356202eaab6d9f.png
  • IP range: Enter Network IP address(s) you want to assign to a particular Edge Device. You can enter a single IP, multiple IP’s or a Range of addresses.Examples:Multiple IP’s:192.168.0.1,192.168.0.2,192.168.0.3 IP Ranges:192.168.0.1-254 (means 192.168.0.1 to 192.168.0.254)192.168.0-14.1-254 (means 192.168.0.1 to 192.168.14.254)192.0-1.1-4.1-254 (means 192.0.1.1 to 192.1.4.254)191-192.0-1.1-.1-254 (means 191.0.1.1 to 192.1.4.254)Also supports CIDR notation (192.168.0.0/24) See http://www.subnet-calculator.com/cidr.php
  • Edge Device: Select an Edge Device from the drop down list, to which the network traffic will be assigned to. Note: You can add multiple rules by clicking on the Add Rule button or remove a rule by clicking on the Remove button.
  • Select an Edge device from the drop down list to which all the other CIs that do not match the IP filter and ranges will be assigned to.
clipboard_edd439c24cefca20e8219dd7d30ab49b0.png
  1. Click on the Save button.
  2. To see the results of the Cloud Migration: Risk Analysis Thresholds settings click on Analysis  > Cloud Migration > Risk Analysis. In the example below you can see that
    • 0 to 20 is Red
    • 21 to 25 is yellow
    • 26 to 100 is Green
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    How-To
    Target Group
    Customer
  2. Tags
    1. Admin
    2. Edge Device
    3. SPM