RedMax EXtreme EX-LRT Guía para resolver problemas Pagina 34
- Pagina / 142
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Oracle SBC Security Guide
The following IKEv1 functionality is supported:
IKE pre-shared secret support
IKE/ISAKMP Main Mode support
IKE/ISAKMP Aggressive Mode support
Phase 2 Quick Mode support
In addition, with IKEv1 enabled, the SBC can support IPsec between itself and an endpoint behind a NAT
device.
Configuration is detailed in Section 15 “Security” of the ACLI Configuration Guide.
Call Admission Control (CAC)
Call Admission Controls are used to limit the number of allowed resources such as bandwidth or sessions
to abide by customer Service Level Agreements (SLA) and to avoid abuse. It is recommended that
wherever possible these features be enabled:
Bandwidth (codec) based – for bandwidth CAC settings see “Media Profiles”
SIP Per-User CAC
Session Capacity
Session Rate (sustained and burst)
Bandwidth CAC
Bandwidth based CAC can be implemented though a media profile on the realm level. Media profiles
specify or limit the range of the codecs, bandwidth, and packet rate used. Configuration is detailed in
Section 4 “Realms and Nested Realms” of the ACLI Configuration Guide.
SIP Per-User CAC
When SIP per-user CAC is enabled the SBC changes its default behavior so that it will only allow the
configured number of calls or total bandwidth to and from each individual user in a particular realm. CAC
can be applied to an individual Address of Record (AoR) or IP address. Tracking based on IP address can
cause complications if a NAT is involved, so the use of a nat-trust-threshold may be required to set the
maximum number of untrusted endpoints behind NAT devices. This also enables the ability of the SBC to
track endpoints based on both IP and the TCP or UDP port in use.
Configuration is detailed in Section 5 “SIP Signaling Services” of the ACLI Configuration Guide.
Session Capacity and Session Rate using Constraints
Constraints are a CAC method that limits messaging based on session count and rate. Constraints can be
applied to SIP interfaces or realms. It is recommended that constraints are used on all external interfaces
and core session-agents.
A session-agent can be configured for max-outbound-sessions, max-sessions, max-burst-rate and max-
sustain-rate.
Max-outbound-sessions and max-sessions give the max number of allowed concurrent sessions. These
should be set to match what should be sent to an upstream session-agent (for example a service provider)
or accepted into a core session-agent.
- SECURITY GUIDE 1
- Contents 3
- Related Documentation 7
- Part 1: Overview 8
- Figure 1: Net-SAFE Framework 9
- General Security Principles 10
- Monitor System Activity 11
- Session Border Controller 13
- Unified Session Manager 14
- Core Session Manager 15
- Session Router 16
- Realm Design Considerations 16
- Management Interfaces 17
- Passwords 18
- Boot Flags 18
- System ACLs 19
- Telnet/SSH 19
- FTP/SFTP 19
- GUI Management 19
- Resiliency 20
- Physical Link Redundancy 21
- Part 3: Security Features 22
- Security Specific Licenses 24
- Features 26
- Configuring AAA Integration 27
- SIP Interface Security 28
- Service ACLs 29
- TLS for SIP 31
- IPsec for SIP 33
- Call Admission Control (CAC) 34
- Media Policing 35
- DoS/DDoS Prevention 35
- Attack Tool Prevention 36
- Lawful Interception 36
- Part 4: Appendices 37
- Appendix B: Port Matrix 38
- Configuration Models: 40
- Supported platforms 40
- Configuration Parameters 40
- Realm Configuration 41
- SIP Interface 41
- Observations/Limitations 49
- Overview 61
- Deployment Archetypes 61
- Scanner Mitigation 63
- Peering Environments 68
- IDS License Details 70
- Dependencies 70
- Statistics 71
- SNMP MIB OIDS 71
- SNMP Traps 72
- Constraints Limiting 75
- Session-Constraints 75
- Rate constraints 76
- Message Rejections 78
- SNMP support 79
- Log Action 79
- Blacklist Table Maintentance 86
- SNMP OIDs 88
- System Management Statistics 88
- Realm Statistics 89
- Environmental Statistics 90
- Enterprise SNMP Traps 90
- SNMP Traps in HA environment 93
- Appendix I: Syslog 94
- Call Detail Records (CDR) 102
- Oracle SBC Security Guide 103
- System Statistics 106
- Application Statistics 106
- Introduction 108
- SRTP Topologies 108
- Requirements 110
- Design Aspects 111
- Secured/Unsecured Network 114
- Troubleshooting 122
- References 142
Relacionado con productos y manuales para Cortadoras De Césped RedMax EXtreme EX-LRT
Cortadoras De Césped RedMax GZ25N Especificaciones
(32 paginas)
(32 paginas)
Cortadoras De Césped RedMax CHT2301 Especificaciones
(36 paginas)
(36 paginas)
Cortadoras De Césped RedMax BC250 Especificaciones
(52 paginas)
(52 paginas)
Cortadoras De Césped RedMax HE2601 Especificaciones
(26 paginas)
(26 paginas)
Cortadoras De Césped RedMax CHT2200 Especificaciones
(32 paginas)
(32 paginas)
Cortadoras De Césped RedMax LRT2300 Especificaciones
(26 paginas)
(26 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.060 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales