RedMax EXtreme EX-LRT Guía para resolver problemas Pagina 111
- Pagina / 142
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Oracle SBC Security Guide
Software Requirements
S-CX6.2.0 software image or higher is required to support SRTP termination on the SD. It is always
recommended to use the latest S-CX6.2.0 image available on the Oracle customer support portal
(http://www.oracle.com/us/corporate/acquisitions/acmepacket/support/index.html).
Licenses Requirements
No additional licenses are required.
Bootloader requirements
Due to the implementation of a more efficient compression mechanism for software files, S-C(X)6.2.0
and later images compress files using the XZ format (*.xz file extension), as opposed to the previous
practice of GZ compression (*.gz file extension). To recognize image files compressed in the new *.xz
format, a new bootloader was required for the Acme Packet 4250, Acme Packet 4500, and Acme Packet
3800 platforms. The minimum bootloader needed is dated “08/11/2009”, and began shipping with all new
Acme Packet 4500 and Acme Packet 3800 systems as of Sept 22nd, 2009.
810-0086-00 - 09-22-09 - Image C62 Requires Bootloader Upgrade
Design Aspects
Due to the flexibility in the configuration for different SRTP modes, it is needed to consider different
aspects of the desired design for proper configuration.
Configuration Elements
Here is a brief explanation on the elements needed for SRTP configuration. This is just a basic reference,
the configuration of each element will depend on the desired design and will be described in the following
sections.
Security media-security sdes-profile/mikey-profile
This is the first element to configure, where the algorithm and the cryptos to be used are
configured.
For sdes-profile, it is required to define the crypto-suites accepted, and also whether or not
authentication and/or encryption are used for SRTP and if encryption is used for SRTCP. The
“use-ingress-session-params” attribute is used to override previous parameters, specifying that the
SBC will accept encryption/no-encryption, authentication/no-authentication in SRTP/SRTCP,
using in the egress SDP the same session parameter that was received in the ingress SDP.
Finally “egress-offer-format” is used to instruct the SBC on how to build the egress SDP in the
case of both RTP and SRTP are supported at the same time. This is further explained in the next
section.
# show running-config sdes-profile
sdes-profile
name sdes1
crypto-list AES_CM_128_HMAC_SHA1_80
AES_CM_128_HMAC_SHA1_32
srtp-auth enabled
- SECURITY GUIDE 1
- Contents 3
- Related Documentation 7
- Part 1: Overview 8
- Figure 1: Net-SAFE Framework 9
- General Security Principles 10
- Monitor System Activity 11
- Session Border Controller 13
- Unified Session Manager 14
- Core Session Manager 15
- Session Router 16
- Realm Design Considerations 16
- Management Interfaces 17
- Passwords 18
- Boot Flags 18
- System ACLs 19
- Telnet/SSH 19
- FTP/SFTP 19
- GUI Management 19
- Resiliency 20
- Physical Link Redundancy 21
- Part 3: Security Features 22
- Security Specific Licenses 24
- Features 26
- Configuring AAA Integration 27
- SIP Interface Security 28
- Service ACLs 29
- TLS for SIP 31
- IPsec for SIP 33
- Call Admission Control (CAC) 34
- Media Policing 35
- DoS/DDoS Prevention 35
- Attack Tool Prevention 36
- Lawful Interception 36
- Part 4: Appendices 37
- Appendix B: Port Matrix 38
- Configuration Models: 40
- Supported platforms 40
- Configuration Parameters 40
- Realm Configuration 41
- SIP Interface 41
- Observations/Limitations 49
- Overview 61
- Deployment Archetypes 61
- Scanner Mitigation 63
- Peering Environments 68
- IDS License Details 70
- Dependencies 70
- Statistics 71
- SNMP MIB OIDS 71
- SNMP Traps 72
- Constraints Limiting 75
- Session-Constraints 75
- Rate constraints 76
- Message Rejections 78
- SNMP support 79
- Log Action 79
- Blacklist Table Maintentance 86
- SNMP OIDs 88
- System Management Statistics 88
- Realm Statistics 89
- Environmental Statistics 90
- Enterprise SNMP Traps 90
- SNMP Traps in HA environment 93
- Appendix I: Syslog 94
- Call Detail Records (CDR) 102
- Oracle SBC Security Guide 103
- System Statistics 106
- Application Statistics 106
- Introduction 108
- SRTP Topologies 108
- Requirements 110
- Design Aspects 111
- Secured/Unsecured Network 114
- Troubleshooting 122
- References 142
Relacionado con productos y manuales para Cortadoras De Césped RedMax EXtreme EX-LRT
Cortadoras De Césped RedMax GZ25N Especificaciones
(32 paginas)
(32 paginas)
Cortadoras De Césped RedMax CHT2301 Especificaciones
(36 paginas)
(36 paginas)
Cortadoras De Césped RedMax BC250 Especificaciones
(52 paginas)
(52 paginas)
Cortadoras De Césped RedMax HE2601 Especificaciones
(26 paginas)
(26 paginas)
Cortadoras De Césped RedMax CHT2200 Especificaciones
(32 paginas)
(32 paginas)
Cortadoras De Césped RedMax LRT2300 Especificaciones
(26 paginas)
(26 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.039 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales