Web

This section provides the steps required to configure the GigaVUE HC Series node’s web server used for GigaVUE-FM access to the node. GigaVUE-FM is Gigamon Web-based GUI for the GigaVUE HC Series node, providing graphical user interface configuration.

To access the Web page of the node:

  1. On the left navigation pane, click under Physical select Nodes. This displays the list of Devices/Cluster Nodes managed by this instance of GigaVUE‑FM.
  2. Click the Cluster ID of any node to open the node.
  3. Once you are in the node, click Settings > Global Settings > Web.
  4. Select or enter the following details:

Field

Description

Setting

 

Web Server SSL Minimum Version (optional)

The SSL minimum version for the web server:

TLS v1.0:
TLS v1.1:
TLS v1.2:

 

HTTP Port

HTTP port.

HTTPS

Use the toggle option to enable and disable HTTPS.

HTTPS Port

HTTPS port number.

Auto Logout Timeout

The maximum duration of user inactivity before a Web session is logged out automatically.

Web Session Renewal

 Specifies the length of time before a session expires that the Web server will issue a new cookie and renew the session. This should be set at least as long as the auto-logout setting so that sessions do not expire before they have a chance to be renewed.

Session Timeout

 

Web Proxy Settings

 
Web Proxy Address Web proxy address. This can be either IPv4 or IPv6 address.
Web Proxy Port Web proxy port. If you do not specify a port, the default is 1080.
Authentication Type Can be either basic or none.
Basic Auth Username Basic authentication username.
Basic Auth Password Basic authentication password.

Click Apply to save the configuration.

Enabled TLS Cipher Suites

GigaVUE‑OS supports the commonly-supported TLS 1.2 ciphers. The following ciphers are supported in TLS 1.2:

Classic mode

Supported TLS 1.2 Ciphers

Cipher Name

 Key Exchange (Kx) Authentication(Au)

Encryption (Enc)

MAC

ECDHE_RSA_WITH_AES_256_GCM_SHA384

 ECDHE RSA

AES_256_GCM_SHA384

SHA384

ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

 ECDHE RSA

CHACHA20_POLY1305_SHA256

SHA256

ECDHE_RSA_WITH_ARIA_256_GCM_SHA384

 ECDHE RSA

ARIA_256_GCM_SHA384

SHA384

ECDHE_RSA_WITH_AES_128_GCM_SHA256

 ECDHE RSA

AES_128_GCM_SHA256

SHA256

ECDHE_RSA_WITH_ARIA_128_GCM_SHA256 ECDHE RSA ARIA_128_GCM_SHA256 SHA256
ECDHE_RSA_WITH_AES_256_CBC_SHA384 ECDHE RSA AES_256_CBC_SHA384 SHA384
ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 ECDHE RSA CAMELLIA_256_CBC_SHA384 SHA384
ECDHE_RSA_WITH_AES_128_CBC_SHA256 ECDHE RSA AES_128_CBC_SHA256 SHA256
ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 ECDHE RSA CAMELLIA_128_CBC_SHA256 SHA256
DHE_RSA_WITH_AES_256_GCM_SHA384 DHE RSA AES_256_GCM_SHA384 SHA384
DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 DHE RSA CHACHA20_POLY1305_SHA256 SHA256
DHE_RSA_WITH_AES_256_CCM DHE RSA AES_256_CCM 256
DHE_RSA_WITH_ARIA_256_GCM_SHA384 DHE RSA ARIA_256_GCM_SHA384 SHA384
DHE_RSA_WITH_AES_128_GCM_SHA256 DHE RSA AES_128_GCM_SHA256 SHA256
DHE_RSA_WITH_AES_128_CCM DHE RSA AES_128_CCM 128
DHE_RSA_WITH_ARIA_128_GCM_SHA256 DHE RSA ARIA_128_GCM_SHA256 SHA256
DHE_RSA_WITH_AES_256_CBC_SHA256 DHE RSA AES_256_CBC_SHA256 SHA256
DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 DHE RSA CAMELLIA_256_CBC_SHA256 SHA256
DHE_RSA_WITH_AES_128_CBC_SHA256 DHE RSA AES_128_CBC_SHA256 SHA256
DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 DHE RSA

CAMELLIA_128_CBC_SHA256

 SHA256

Secure (Crypto/FIPS) mode

The following Secure (Crypto/FIPS) mode ciphers are supported in TLS 1.2:

Supported Secure (Crypto/FIPS) mode TLS 1.2 Ciphers

Cipher Name

 Key Exchange (Kx) Authentication(Au)

Encryption (Enc)

MAC
ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ECDHE ECDSA AES_256_GCM_SHA384

SHA384

ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ECDHE ECDSA AES_128_GCM_SHA256

SHA256

ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ECDHE ECDSA AES_256_CBC_SHA384

SHA384

ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ECDHE ECDSA AES_128_CBC_SHA256

SHA256