RedMax EXtreme EX-LRT Guía para resolver problemas Pagina 26
- Pagina / 142
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Oracle SBC Security Guide
sftpForHDR - allows HDR to be accessed.
sftpForAll - allows all logs to be accessed.
Furthermore, a new RADIUS authorization class is added for Acme-User-Class called SystemAdmin. It
shares the same permissions as admin except it cannot access security related information and issue
“show security” commands. The login prompt for this user is ACMEPACKET$.
The Security Admin license enables audit logs which provide data on all user driven system events such
as changes to configuration and public keys. It is recommended to configure push servers to SFTP audit
logs periodically to remote servers.
Configuration is detailed in the Administrative Essentials.
FIPS License
The Net-Net SBC provides cryptographic capabilities and algorithms that conform to Federal Information
Processing Standards (FIPS). Specific standards implemented include those described in Security
Requirements For Cryptographic Modules (FIPS PUB 140-2), and others described in NIST Special
Publication 800-90, Recommendation for Random Number Generation Using Deterministic Random Bit
Generators (Revised), March 2007.
This additional license may be required for deployments in military or civilian government environments.
Features added include power-on self-tests of encryption modules and software integrity, as well as use of
FIPS compliant cryptographic modules and random number generators.
Configuration of FIPS license support is detailed in Section 15 “Security” of the ACLI Configuration
Guide.
Configuring Monitoring and Performance Management
Features
SNMP
Simple Network Management Protocol (SNMP) is supported on the SBC Wancom0 management
interface for polling and traps. To secure your SNMP interface, it is recommended to use a community
name other than the standard “public”. Sufficiently obscure community names should adhere to the
customer’s corporate naming policies. Further, the list of configured SNMP polling servers and trap
receivers must be restricted to only those authorized (via SBC configuration) to manage the SBC. All
management stations used for SNMP access should have a permit ACL configured.
Further detail on SNMP traps and MIBS that should be examined can be found in Appendix H:
Configuration is detailed in Section 3 “System Configuration” of the ACLI Configuration Guide.
RADIUS Accounting
The SBC Wancom0 management interface uses RADIUS requests to send accounting and monitoring
data to remote RADIUS servers. For reliability, the SBC supports the configuration of multiple RADIUS
servers deployed in a number of HA schemes: hunt, failover, round robin, fastest round trip time (RTT)
and fewest pending.
The most appropriate scheme according to customer’s corporate policies should be chosen. It is
recommended that at least two RADIUS servers be deployed. The secret shared between the SBC and the
RADIUS server should be configured to be suitably obscure according to the customer’s corporate
- SECURITY GUIDE 1
- Contents 3
- Related Documentation 7
- Part 1: Overview 8
- Figure 1: Net-SAFE Framework 9
- General Security Principles 10
- Monitor System Activity 11
- Session Border Controller 13
- Unified Session Manager 14
- Core Session Manager 15
- Session Router 16
- Realm Design Considerations 16
- Management Interfaces 17
- Passwords 18
- Boot Flags 18
- System ACLs 19
- Telnet/SSH 19
- FTP/SFTP 19
- GUI Management 19
- Resiliency 20
- Physical Link Redundancy 21
- Part 3: Security Features 22
- Security Specific Licenses 24
- Features 26
- Configuring AAA Integration 27
- SIP Interface Security 28
- Service ACLs 29
- TLS for SIP 31
- IPsec for SIP 33
- Call Admission Control (CAC) 34
- Media Policing 35
- DoS/DDoS Prevention 35
- Attack Tool Prevention 36
- Lawful Interception 36
- Part 4: Appendices 37
- Appendix B: Port Matrix 38
- Configuration Models: 40
- Supported platforms 40
- Configuration Parameters 40
- Realm Configuration 41
- SIP Interface 41
- Observations/Limitations 49
- Overview 61
- Deployment Archetypes 61
- Scanner Mitigation 63
- Peering Environments 68
- IDS License Details 70
- Dependencies 70
- Statistics 71
- SNMP MIB OIDS 71
- SNMP Traps 72
- Constraints Limiting 75
- Session-Constraints 75
- Rate constraints 76
- Message Rejections 78
- SNMP support 79
- Log Action 79
- Blacklist Table Maintentance 86
- SNMP OIDs 88
- System Management Statistics 88
- Realm Statistics 89
- Environmental Statistics 90
- Enterprise SNMP Traps 90
- SNMP Traps in HA environment 93
- Appendix I: Syslog 94
- Call Detail Records (CDR) 102
- Oracle SBC Security Guide 103
- System Statistics 106
- Application Statistics 106
- Introduction 108
- SRTP Topologies 108
- Requirements 110
- Design Aspects 111
- Secured/Unsecured Network 114
- Troubleshooting 122
- References 142
Relacionado con productos y manuales para Cortadoras De Césped RedMax EXtreme EX-LRT
Cortadoras De Césped RedMax GZ25N Especificaciones
(32 paginas)
(32 paginas)
Cortadoras De Césped RedMax CHT2301 Especificaciones
(36 paginas)
(36 paginas)
Cortadoras De Césped RedMax BC250 Especificaciones
(52 paginas)
(52 paginas)
Cortadoras De Césped RedMax HE2601 Especificaciones
(26 paginas)
(26 paginas)
Cortadoras De Césped RedMax CHT2200 Especificaciones
(32 paginas)
(32 paginas)
Cortadoras De Césped RedMax LRT2300 Especificaciones
(26 paginas)
(26 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.115 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales