Enable IPv4

Configure your Guardium® deployment to use IPv4 addresses exclusively.

Before you begin

IPv4 is the default IP mode for new Guardium installations and most existing deployments. Follow this procedure to configure IPv4 on systems that have been previously set to IPv6 or dual mode.
Warning: If you set the IP mode to IPv4, Guardium cannot communicate with systems running on other network protocols and any previous network settings are wiped out.
Ensure that you meet these prerequisites:
  • All devices in your environment use IPv4 addresses. For example, the Guardium system and all Guardium agents, such as S-TAPs, are assigned IPv4 addresses.
  • The Domain Name System (DNS) of your network is configured for IPv4.

Procedure

  1. On the central manager, set the IP mode to IPv4 by running the CLI command store system ipmode ipv4.
    Important: Do not restart the network until you complete step 2.
  2. Set up IPv4 by running the following CLI commands.
    1. store system hostname <hostname>
      Where <hostname> can be resolved by the DNS for IPv4 addresses.
    2. store system domain <domain name>
      Where <domain> is the domain name of your network.
    3. store network interface ip <IP address>
      Where <IP address> is the primary IPv4 address of your Guardium system in Classless Inter-Domain Routing (CIDR) notation. For example, store network interface ip 9.70.145.77/24.
    4. store network routes defaultroute <IP address>
      Where <IP address> is the IPv4 address of the default router.
    5. store network resolvers <IP address>
      Where IP address is one or more IPv4 addresses for your DNS servers.
  3. Restart the network configuration by running the CLI command restart network.
  4. Verify that you can ping your Guardium system's IPv4 address.
  5. Repeat steps 1 - 4 on each managed unit.
  6. Register managed units to the central manager using the CLI command register management <central manager IP> <port> from each managed unit.
    Where <central manager IP> is the IPv4 address of the central manager and <port> is the port number. For example, register management 9.70.145.07 8443. Repeat this step for each managed unit.
    Important: To avoid connectivity issues during registration, use the IP address and not the hostname. To unregister a managed unit from a central manager, use the same IP mode and IP address that was used during registration.
  7. After the central manager and managed units are configured, the environment is ready to register databases, devices, and other agents to the Guardium system using IPv4 addresses.