Managing Data Exchange Layer brokers
The Data Exchange Layer (DXL) includes a client and at least one broker that allows bidirectional
communication between endpoints on a network.
Data Exchange Layer components
The Data Exchange Layer framework has these components.
Brokers — Installed on managed systems and communicate messages between Threat Intelligence
Exchange modules. The network of brokers tracks active consumers (such as the Threat Intelligence
Exchange module for VirusScan Enterprise) and dynamically adjusts the message routing as needed.
Brokers can be organized into hubs.
Hubs — Contain one or two brokers that are associated with a specific location. Hubs provide failover
protection in a multi-broker environment. If a hub has two brokers, both act simultaneously; if one is
unavailable, the other continues to function. You can create as many hubs as needed, but a broker can
be assigned to only one hub.
Service zones — A service zone is associated with brokers and hubs and is used to route Threat
Intelligence Exchange requests. When the module for VirusScan Enterprise sends a reputation
request, it goes to the local service zone first. If the request can't be serviced there, it then goes to
the next service zone in the hierarchy.
Data Exchange Layer client software — Manages brokers, hubs, and service zones.
As Threat Intelligence Exchange runs in your environment, you might want to add new Data Exchange
Layer brokers or reorganize existing brokers into new hubs and service zones. You can also install
brokers in a demilitarized zone (DMZ) so that remote workers can access the latest threat information.
Add or update brokers
As Threat Intelligence Exchange runs in your environment, you can fine-tune your broker hierarchy to
accommodate changes to your environment.
You might want to install more Threat Intelligence Exchange servers and brokers throughout your
environment as you add new endpoints and systems.
Task
For option definitions, click ? in the interface.
1
Click Menu | Configuration | Server Settings | DXL Topology.
2
On the DXL Topology page, click Edit to create hubs and assign brokers. Brokers not assigned to a
hub are listed below the hubs.
3
Select an item from the Actions menu to create or delete a hub, or to detach a broker from its
current hub.
Add brokers to a DMZ
You can install Data Exchange Layer brokers in a demilitarized zone (DMZ) where publicly accessible
servers are not allowed.
Installing a broker in the DMZ allows remote users to access information from products that use the
Data Exchange Layer, such as Threat Intelligence Exchange.
You must have an Agent Handler in the DMZ and your network must be configured to support this.
McAfee ePO communicates with the Data Exchange Layer broker to share configuration, policy, and
performance information via the Agent on the broker.
Using Threat Intelligence Exchange
Managing Data Exchange Layer brokers
2
McAfee Threat Intelligence Exchange 1.0.0 Product Guide
23
(15 paginas)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales