Home
Remote Collector
Installation Guide
Information and resources on how to install a Remote Collector, and the different options and settings available.
Additional settings
Management-interface packet-rate protection
A description of internal packet-rate protection, which is enabled by default.

Remote Collector
- Introduction
  An overview of the Remote Collector.
- Installation Guide
  Information and resources on how to install a Remote Collector, and the different options and settings available.
  - Introduction
  - Physical installation
  - Virtual installation
  - Container installation
  - Basic configuration
  - Additional settings
    - Network requirements
    - Install an SSL certificate
      You need to install a secure sockets layer (SSL) certificate to securely encrypt traffic between client computers and the Nozomi Networks Operating System (N2OS) sensor over hypertext transfer protocol secure (HTTPS).
    - Install a CA certificate
      If an issuing certificate authority (CA) for the hypertext transfer protocol secure (HTTPS) certificate is not immediately trusted, you will need to install a certificate authority (CA) certificate to the Nozomi Networks Operating System (N2OS) sensor.
    - Enable SNMP
      To monitor the health of the Nozomi Networks Operating System (N2OS) sensor, you need to enable the simple network management protocol (SNMP) daemon.
    - Internal firewall configuration
      It is possible to configure the settings of an internal firewall to restrict access to specific items.
    - Configure an internal firewall
      Do this procedure to configure the internal firewall to restrict access to components such as: the management interface, the secure shell (SSH) terminal, the simple network management protocol (SNMP) service, and internet control message protocol (ICMP) of the full stack edition.
    - Management-interface packet-rate protection
      A description of internal packet-rate protection, which is enabled by default.
    - Disable internal packet-rate protection of the management interface
      If necessary, do this procedure to disable internal packet-rate protection in the management interface.
    - Configure IPv6
      You can configure IPv6 to access physical and virtual sensors. This is not possible for container installations.
    - Enable 802.1x on the management interface
      This topic describes how to enable 802.1x support for the management interface. Configuration of the RADIUS server and the creation of possible certificates are not discussed
    - USB port disablement
      The Nozomi Networks Operating System (N2OS) does not support universal service bus (USB) ports.
  - Deployment
  - Compatibility Reference
  - Federal Information Processing Standards
- Troubleshooting
  Troubleshooting procedures to help you solve problems that might occur with the Remote Collector.
- Print format documentation
  A list of all the print-format documentation that is available for the Remote Collector.

Management-interface packet-rate protection

A description of internal packet-rate protection, which is enabled by default.

The management interface of the physical and virtual sensors have internal packet rate protection enabled by default.

Malicious hosts are banned for five minutes if they try to send more than 1024 packets within five seconds.

To show a list of blocked internet protocol (IP) addresses, you can use the n2os-firewall-show-block command.

To unblock a single IP address, you can use the n2os-firewall-unblock <ip_address_to_unblock> command.