Once the DD1000i hardware is installed (Setup) and the required settings are set (Local Admin), the DD Engine @ DD1000i can be administered via the two DD Managers. There is one DD Manager setup on each side of the Data Diode.
A DD Engine @ DD1000i is managed using the DD Manager, making sure data is sent correctly and unidirectionally from the source network to the destination network. This is achieved by configuring services to transmit and receive data on the respective networks. The services must be configured from both the source and destination network to ensure correct data transmission. Instructions on DD Manager actions and activities follow below.
To be able to access the DD Manager web interface securely, a client certificate and CA certificate must be imported to the web browser. For more information about the certificates, see Certificates.
To connect to the DD Manager using HTTPS, perform the following steps:
Follow The Steps Below
Step 1Step 2
Step 1
Import a client and CA certificate to the web browser, see Certificates.
Step 2
Enter https://admin_ip in the web browser to connect to the DD Manager web interface. The admin ip address can be configured from Local Admin.
Default Upstream admin IP: 192.168.0.100
Default Downstream admin IP: 192.168.0.101
tip
"https" must often be explicitly entered in the address bar.
info
The local web browser should be updated to the latest available version.
The system overview is presented on the Home page, available in the navigation bar. This is where configured service channels are visible, can be started and stopped, and the system information can be viewed.
A device must be configured in order to apply the necessary services enabling data transfer from the source to the destination network. The device must be configured from both the source and destination network. Below the process is explained for the source side which configures DDE Upstream. Remember to repeat the process on the destination side, configuring DDE Downstream.
info
It is only when services on both Upstream and Downstream match and have been started, that data will be properly transmitted and received.
Perform the following steps to configure the Device:
Follow The Steps Below
Step 1Step 2Step 3Step 4Step 5Step 6Step 7Step 8
Navigate to Configuration in the navigation bar.
The Device configuration page is now visible and the configuration can be given Metadata and Features. Metadata consists of name and description, DD Engine features consists of features that the device supports, e.g. SNMP and remote logging. More information about the Features and their configuration can be found in Features.
In the sidebar, click Service channel 1. The Service channel configuration page is now displayed. The Service Channel Id's must correlate on the two Data Diode sides. An id is automatically generated but it can be edited by clicking the .
Select an Upstream service from the leftmost Choose service... dropdown menu.
The dropdown menu will show all available services.
The latest version of the service will be selected automatically. If an older version is required, select it in the Version dropdown menu.
It is optional to configure the Downstream service, if configured it will be saved to the DD Manager but not applied to the Downstream side. To apply the service on DDE Downstream, the configuration must be applied from the Downstream DD Manager. To configure Downstream, on the Downstream DD Manager select a Downstream service from the rightmost Choose service... dropdown menu.
The dropdown menu will show all available services compatible with the selected Upstream service.
The latest version of the service will be selected automatically. If an older version is required, select it in the Version dropdown menu.
Configure the service according to the input forms. Displayed parameters will vary depending on service. More information about the services can be found in Services.
(Optional) Add additional Service channels, click + Add in the left menu. Repeat steps 3-6 for each added Service channel.
When the correct parameters have been provided to all forms, click Submit to save the configuration and apply it to the selected device side.
info
When a device is configured, all its services enter state stopped. Services must be manually started which is described in Start & Stop Services.
The DD Engine @ DD1000i enables export and import of configuration files via the download and upload buttons in the DD Manager web interface. The configuration file can be downloaded and uploaded as complete or partial configurations.
In order to make services available for configuration they must be uploaded to the DD Manager. Services can be both added and deleted from the DD Manager.
When a new version of DD Engine @ DD1000i has been released, the new firmware can be retrieved by following the instructions in Downloads. Once the new firmware version has been downloaded, the upgrade can be triggered from the DD Manager. To avoid issues, DDE Upstream and DDE Downstream should run the same firmware version.
Perform the following steps to upgrade the firmware
Follow The Steps Below
Step 1Step 2Step 3Step 4Step 5
Select from the navigation bar.
Click Upgrade in the System information card.
Click Browse and select the firmware .raucb file.
Click Submit and wait for the firmware to be upgraded. This is expected to take some time (~5 min) and the connection to the server will be lost during the upgrade.
Once the upload has finished, the new firmware version will be visible in the System information card.
info
If the new firmware fails to start for any reason, it will rollback to the old firmware. When this happens it will be indicated in the System information card, refer to the device logs to determine what the problem was.