| Where Can I Use This? | What Do I Need? |
|---|
|
|
One of the following subscriptions:
Device Security subscription for an advanced
Device Security product (Enterprise,
OT, or Medical)
Device Security X subscription
|
In some instances, you may need to update or delete network segments for
Device Security to properly learn about
devices with overlapping IP addresses.
For example, if you redeploy firewalls or add firewalls to a new site, update your
network segments to ensure that the traffic maps to the correct devices.
Whenever you change the firewalls assigned to a network segment, or change the
network segment's site assignment, reset the network segment. If you don't reset the
network segment, device attributes and behaviors learned from new traffic may be
associated with different devices previously learned through the network segment.
When you no longer need a network segment, delete the network segment to ensure that
attributes and behaviors get associated with the correct devices.
When you reset or delete a network segment, all devices and attributes learned
through the network segment assignment are deleted from the assets inventory.
Devices and attributes must be relearned from traffic through the updated
network segments.
Strata Cloud Manager
Manage network segments in Device Security in Strata Cloud Manager to properly learn
devices and attributes that use overlapping IP addresses.
Follow these procedures to manage network segments:
Update the Assigned Firewalls
Update the Assigned Firewalls
Navigate to .
Click on the name of the network segment that you want to update to bring up
the Edit Network Segment dialog.
In the
Firewall field, add or remove firewalls.
You can search by a firewall's serial number and name, or use the
drop-down selector. The drop-down selector shows if firewalls are
assigned to a network segment or not, including the network segment
you're editing. If you select a firewall that is assigned to a different
network segment, it's removed from its existing network segment after
saving the configuration. There must be at least one firewall assigned
to the network segment.
Select
Edit to save your changes and close the dialog
box.
Select the check box next to the updated network segment and
Reset the network segment.
Optional If you moved a firewall from one network segment to
another, select the network segment that the firewall was removed from and
Reset that network segment.
Update the Site Assignment from Network Segments
Update the Site Assignment from Network Segments
Navigate to .
Click on the name of the network segment that you want to update to bring up
the Edit Network Segment dialog.
In the
Assigned to Site (optional) field, select or
create the new site that you want to assign the network segment to.
Select or creating a new site replaces the existing site assignment in
the Assigned to Site (optional) field. A network
segment can only be assigned to one site.
Select
Edit to save your changes and close the dialog
box.
Select the check box next to the updated network segment and
Reset the network segment.
Update the Site Assignment from Sites
Update the Site Assignment from Sites
Navigate to .
Edit the site.
In the Sites table, find the site that the network segment belongs
to.
Click the three vertical dots at the far right of the row and select
Edit Site to bring up the Edit Site dialog
box.
In the
Network Segment (Optional) field, add
or remove network segments assigned to the site.
If you remove a network segment from the site, the network
segment is reassigned to the default site after saving the
configuration.
If you add a network segment, it is removed from its existing
site after saving the configuration.
Save the site configuration.
Navigate to .
Select the check boxes next to the network segments that were removed from a
site or added to a new site and Reset the network
segments.
Delete or Reset Network Segments
Delete or Reset Network Segments
Navigate to .
Select the check box next to the network segments that you want to delete or reset.
You need to select at least one network segment to see the
Delete and Reset options.
Delete or Reset the network
segments.
(Legacy) IoT Security
Manage network segments in Device Security to properly learn devices and attributes
that use overlapping IP addresses.
Follow these procedures to manage network segments:
Update the Assigned Firewalls
Update the Assigned Firewalls
Navigate to .
Click on the name of the network segment that you want to update to bring up
the Edit Network Segment dialog.
In the
Firewall field, add or remove firewalls.
You can search by a firewall's serial number and name, or use the
drop-down selector. The drop-down selector shows if firewalls are
assigned to a network segment or not, including the network segment
you're editing. If you select a firewall that is assigned to a different
network segment, it's removed from its existing network segment after
saving the configuration. There must be at least one firewall assigned
to the network segment.
Select
Edit to save your changes and close the dialog
box.
Select the check box next to the updated network segment and
Reset the network segment.
Optional If you moved a firewall from one network segment to
another, select the network segment that the firewall was removed from and
Reset that network segment.
Update the Site Assignment from Network Segments Configuration
Update the Site Assignment from Network Segments Configuration
Navigate to .
Click on the name of the network segment that you want to update to bring up
the Edit Network Segment dialog.
In the
Assigned to Site (optional) field, select or
create the new site that you want to assign the network segment to.
Select or creating a new site replaces the existing site assignment in
the Assigned to Site (optional) field. A network
segment can only be assigned to one site.
Select
Edit to save your changes and close the dialog
box.
Select the check box next to the updated network segment and
Reset the network segment.
Update the Site Assignment from Sites
Update the Site Assignment from Sites
Navigate to .
Edit the site.
In the Sites table, find the site that the network segment belongs
to.
Click the three vertical dots at the far right of the row and select
Edit Site to bring up the Edit Site dialog
box.
In the
Network Segment (Optional) field, add
or remove network segments assigned to the site.
If you remove a network segment from the site, the network
segment is reassigned to the default site after saving the
configuration.
If you add a network segment, it is removed from its existing
site after saving the configuration.
Save the site configuration.
Navigate to .
Select the check boxes next to the network segments that were removed from a
site or added to a new site and Reset the network
segments.
Delete or Reset Network Segments
Delete or Reset Network Segments
Navigate to .
Select the check box next to the network segments that you want to delete or reset.
You need to select at least one network segment to see the
Delete and Reset options.
Delete or Reset the network
segments.
