{"id":4181,"date":"2024-06-17T11:47:10","date_gmt":"2024-06-17T03:47:10","guid":{"rendered":"https:\/\/www.aqwu.net\/wp\/?p=4181"},"modified":"2024-06-17T17:58:54","modified_gmt":"2024-06-17T09:58:54","slug":"fireeyetrellix%e6%90%ad%e5%bb%bamvx%e7%8e%af%e5%a2%83","status":"publish","type":"post","link":"https:\/\/www.aqwu.net\/wp\/?p=4181","title":{"rendered":"FireEye(Trellix)\u642d\u5efaMVX\u73af\u5883"},"content":{"rendered":"\n

\u672c\u6587\u89e3\u91ca\u5982\u4f55\u4f7f\u7528CM, FX\u548cVX\u642d\u5efa\u4e00\u4e2aMVX\u73af\u5883<\/p>\n\n\n\n

\u5177\u4f53\u8bbe\u8ba1\u7684\u578b\u53f7\u5982\u4e0b\uff1a<\/p>\n\n\n\n

CM: CENTRAL MANAGEMENT, FireEyeCM2500v(\u865a\u62df\u673a\u7248\u672c\uff09<\/p>\n\n\n\n

FX: FireEyeFX4500V(\u865a\u62df\u673a\u7248\u672c\uff09<\/p>\n\n\n\n

VX: VX nodes, FireEyeVX8500(\u786c\u4ef6\u7248\u672c)<\/p>\n\n\n\n

\u9996\u5148\u628aFX \u548c VX \u90fd\u901a\u8fc7 CM\u8fdb\u884c\u7ba1\u7406<\/p>\n\n\n\n

1. \u4f7f\u7528\u547d\u4ee4\u884c\u521b\u5efa cluster<\/strong><\/h2>\n\n\n\n

\u5047\u8bbe \u8981\u521b\u5efa\u7684 cluster \u540d\u5b57\u662f test_cluster, <\/p>\n\n\n\n

vx \u8282\u70b9\u7684\u540d\u79f0\u662f fireeye-30303f\uff0c<\/p>\n\n\n\n

\u767b\u5f55\u5230\u4e2d\u592e\u7ba1\u7406 CLI\u3002
\u8fdb\u5165 CLI \u914d\u7f6e\u6a21\u5f0f\uff1a<\/p>\n\n\n\n

cm-hostname > enable\ncm-hostname # configure terminal\ncm-hostname (config) # cmc mvx cluster test_cluster node fireeye-30303f<\/pre><\/div>\n\n\n\n
2. \u542f\u7528 broker\uff1a<\/strong><\/h2>\n\n\n\n
cm-hostname (config) # cmc mvx cluster test_cluster broker fireeye-30303f enable\n<\/pre><\/div>\n\n\n\n
3. \u9a8c\u8bc1\u5e76\u4fdd\u5b58\u60a8\u7684\u66f4\u6539<\/strong><\/h2>\n\n\n\n
cm-hostname (config) # show cmc mvx cluster detail\n\nMVX Cluster: test_cluster\n\n   Version             : 10.0.1\n   Utilization         : 0 %\n   Status              : ready\n   Total Nodes         : 1\n\n   Member Status:\n      Brokers:\n         fireeye-30303f          : 192.168.88.16 - ready\n\ncm-hostname (config) #\n\ncm-hostname (config) # write memory<\/pre><\/div>\n\n\n\n
4. \u767b\u5f55 FX \u9a8c\u8bc1<\/strong><\/h2>\n\n\n\n
fx-hostname (config) # show mvx cluster enrollment status\n\nMVX Cluster Enrollment Status\n\n  Enrollment Client :\n    Status ok               : yes\n    Status description      : enrolled\n    Last checked at         : 2024\/06\/17 04:09:26\n\n  Enrollment Service :\n    Auto enabled            : yes\n    Service address         : CMS (fev-60mf9wlx39ga3@192.168.88.8 : singleport)\n    Preferred cluster       : any (less loaded)\n    Cloud enabled           : yes\n    Cloud License enabled   : no\n    Connect on demand       : no\n\n  Broker Info :\n    Cluster Name            : test_cluster\n    Broker Name             : fireeye-30303f\n    Broker ID               : 000C2930303F\n    Broker Address          : 192.168.88.16\n    Broker State            : Connected\n    Failure Reason          : None\n    Last Connection Attempt : 2024\/06\/17 04:06:02\n    Connection Last Formed  : 2024\/06\/17 04:06:03\n    Connection Last Broken  :\n<\/pre><\/div>\n","protected":false},"excerpt":{"rendered":"
\u672c\u6587\u89e3\u91ca\u5982\u4f55\u4f7f\u7528CM, FX\u548cVX\u642d\u5efa\u4e00\u4e2aMVX\u73af\u5883 \u5177\u4f53\u8bbe\u8ba1\u7684\u578b\u53f7\u5982\u4e0b\uff1a CM: CENTRAL MANAG […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[6,5],"tags":[14,156],"class_list":["post-4181","post","type-post","status-publish","format-standard","hentry","category-fireeye","category-infosec","tag-fireeye","tag-trellix"],"views":2318,"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4181"}],"version-history":[{"count":10,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4181\/revisions"}],"predecessor-version":[{"id":4194,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4181\/revisions\/4194"}],"wp:attachment":[{"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.aqwu.net\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}