2.2.3. Overview of Management (gcp1) and Tunnel (gcp0) interfaces
Important
Concept of role is introduced in the release 2.5.4.0.
These interfaces perform the following role:
Role 1: called
tunnel, is the secure communication between the probe and GCenter through an IPSEC tunnel in order to:Escalate information such as files, alerts, metadata, and so on, derived from analysing the monitored flows
Report information on the health of the probe to GCenter
Control the probe - analysis rules, signatures, and so on
Role 2: called
management, is the remote administration through the SSH protocol with access:To the probe's command line interface (CLI)
To the graphical setup/configuration menu (deprecated)
2.2.3.1. CLI commands
Managing the network interfaces is done using the CLI commands listed in the Manage the network table.
2.2.3.2. View or configure
To view or configure the network interfaces, refer to the Procedure for managing the network settings for Management and Tunnel interface.
2.2.3.2.1. Single interface configuration.
In single-interface configuration, role 1 and role 2 is assigned to one network interface.
To toggle from dual-interface to single-interface configuration, refer to the Procedure for switching to single-interface configuration.
2.2.3.2.2. Dual-interface configuration
The Management and Tunnel roles are allocated over two network interfaces.
Important
This dual-interface configuration is mandatory if using the MPL mode on the GCenter.
The aim of this situation is to ensure that the management flow and the interconnection flow between the GCap and GCenter are separated from each other.
Note
To toggle from single-interface to dual-interface configuration, refer to the Procedure for switching to dual-interface configuration.