Arctic Wolf Appliances


AWN301 10G Sensor - Internal Tap Deployment

Updated Mar 27, 2024

Deploy an AWN301 10G Sensor with internal tap

Note: Arctic Wolf supports this sensor, but new deployments are no longer available.

You can deploy your sensor with internal tap.

For more information about the network configuration of internal tap deployment, see Arctic Wolf Sensor internal tap deployment.

Before you begin

Steps

  1. Set up a customer-configured appliance.
  2. Install the hardware.
  3. Connect the sensor for internal tap deployment.

Step 1: Set up a customer-configured appliance

Note: This step only applies if you selected customer-configured appliance on your onboarding form.

See Set up a customer-configured appliance for more information.

Step 2: Install the hardware

  1. Install the sensor in the applicable rack location.

    If needed, use the provided rails.

  2. Using a CAT6 RJ45 Ethernet cable, connect the management port on the sensor to the outbound connection on your network switch.

  3. Using the two AC30 US power cords, connect the power connectors on the sensor to a power source.

    Note: Arctic Wolf recommends that you use an uninterruptible power supply (UPS) to prevent interruptions from power surges.

  4. Turn on the sensor power.

    The system health and ID indicator is blue when the sensor power is on.

  5. Ping the management IP address that you provided to Arctic Wolf to verify network connectivity.

  6. Wait 15 minutes, and then make sure the status LED is green. This shows that the sensor is connected to the Arctic Wolf monitoring service.

  7. If you cannot successfully complete these steps, contact your CST at security@arcticwolf.com.

Step 3: Connect the sensor for internal tap deployment

  1. Create a 10G internal tap bridge with WAN0 and LAN0:

    1. Using an LC-LC short range multi-mode fiber cable, connect WAN0 on the sensor to the inside interface of your firewall.
    2. Using an LC-LC short range multi-mode fiber cable, connect LAN0 on the sensor to your network switch.
  2. (Optional) If you need to bridge an additional internal interface to your firewall, create an additional 10G internal tap bridge. Repeat the previous step with WAN1 and LAN1.

  3. (Optional) Configure a 1G mirror port connection:

    1. Configure a mirror port on your network switch.

      For more information, see the configuration instructions provided by your network switch manufacturer:

    2. Using a CAT6 RJ45 Ethernet cable, connect LAN2, LAN3, LAN4, LAN5, or LAN6 on the sensor to the mirror port on your network switch.

  4. Wait one minute, and then make sure network connectivity for network devices is not affected.

    Note: If network connectivity is affected, disconnect the sensor from the network, and then contact your CST at security@arcticwolf.com to schedule a troubleshooting session.

  5. Contact your CST at security@arcticwolf.com to make sure that Arctic Wolf can see your network traffic.

AWN301 10G Sensor components

Use these diagrams to identify your sensor components:

Tip: Orange callouts show mandatory connections. Dotted lines show internal tap bridges.

Front of sensor

Front of sensor

Back of sensor

Back of sensor

Callout Sensor component Port configuration Cable used Connected to
A System health and ID indicator - - -
B Lock - - -
C LCD display and navigation buttons - - -
D Power button - - -
E USB port - - -
F iDRAC direct Micro USB port - - -
G Console port - - -
H Management port - CAT6 RJ45 Ethernet cable Network switch
I LAN6 1G mirror CAT6 RJ45 Ethernet cable* (Optional) Network switch
J LAN2 1G mirror CAT6 RJ45 Ethernet cable* (Optional) Network switch
K LAN3 1G mirror CAT6 RJ45 Ethernet cable* (Optional) Network switch
L LAN4 1G mirror CAT6 RJ45 Ethernet cable* (Optional) Network switch
M LAN5 1G mirror CAT6 RJ45 Ethernet cable* (Optional) Network switch
N Power connector - AC30 US power cord Power source
O Power connector - AC30 US power cord Power source
P DB-15 VGA port - - -
Q iDRAC9 dedicated network port - - -
R USB 3.0 port - - -
S USB 3.0 port - - -
T System identification connector - - -
U System identification button - - -
V LAN1 10G internal tap LC-LC short range multi-mode fiber cable* (Optional) Network switch
W WAN1 10G internal tap LC-LC short range multi-mode fiber cable* (Optional) Firewall
X LAN0 10G internal tap LC-LC short range multi-mode fiber cable Network switch
Y WAN0 10G internal tap LC-LC short range multi-mode fiber cable Firewall

*This cable is not provided by Arctic Wolf.