Cisco Systems 15600 manual DLP-E191 Provision a Firewall Tunnel, 17-73

Page 73

Chapter 17 DLPs E100 to E199

DLP- E191 Provision a Firewall Tunnel

Step 5 Continue with your originating procedure (NTP).

DLP-E191 Provision a Firewall Tunnel

Purpose

This task provisions destinations that will not be blocked by the firewall.

 

Firewall tunnels are only necessary when the proxy server is enabled and a

 

foreign DCC termination exists, or if static routes exist so that the DCC

 

network is used to access remote networks or devices. You can provision a

 

maximum of 12 firewall tunnels.

Tools/Equipment

None

Prerequisite Procedures

DLP-E26 Log into CTC, page 16-33

 

DLP-E114 Provision Section DCC Terminations, page 17-14

Required/As Needed

As needed

Onsite/Remote

Onsite or remote

Security Level

Superuser

Note If the proxy server is configured as proxy-only or is disabled, you cannot set up a firewall tunnel.

Step 1 Click the Provisioning > Network > Firewall subtabs.

Step 2 Click Create.

Step 3 In the Create Tunnel dialog box, complete the following:

Source Address—Type the IP address of the source node (32 bit length) or source subnet (any other length).

Length—Choose the length of the source subnet mask.

Destination Address—Type the IP address of the destination node (32 bit length) or destination subnet (any other length).

Length—Choose the length of the destination subnet mask.

Step 4 Click OK.

Step 5 Continue with your originating procedure (NTP).

Cisco ONS 15600 Procedure Guide, R8.0

17-73

Image 73
Contents 17-1 17-2 DLP-E101 Apply a Lock On in a 1+1 Group17-3 DLP-E102 Apply a Lockout in a 1+1 Group17-4 Network view, click the Provisioning Overhead Circuits tabs DLP-E105 Create a DCC Tunnel17-5 17-6 DLP-E106 Clean Fiber Connectors17-7 DLP-E107 Clean the Fiber Adapters17-8 DLP-E108 Verify that a 1+1 Working Port is Active17-9 Bolt Hole Pattern 17-1017-11 DLP-E110 Assign a Name to a Port17-12 17-13 17-14 DLP-E114 Provision Section DCC Terminations17-15 Click the Provisioning Line tabs DLP-E115 Change the Service State for a Port17-16 DLP-E119 Set Auto-Refresh Interval for Displayed PM Counts DLP-E116 Remap the K3 Byte17-17 17-18 DLP-E120 Remove the Narrow CRMs17-19 17-20 DLP-E122 Manual Switch the Node Timing Reference17-21 DLP-E123 Clear a Manual Switch on a Node Timing ReferenceDLP-E125 Provision the Iiop Listener Port on the ONS DLP-E124 Set the Optical Power Received Nominal ValueClick the Provisioning Sonet Thresholds tabs 17-2217-23 17-24 DLP-E127 Edit Path Protection Circuit Path Selectors17-25 DLP-E130 Change Security Policy on a Single Node DLP-E129 Enable Dialog Box Do-Not-Display Option17-26 17-27 DLP-E131 Change Security Policy on Multiple Nodes17-28 17-29 DLP-E135 Log Out a User on a Single Node Click the Provisioning Security Active Logins tabsDLP-E136 Log Out a User on Multiple Nodes 17-3017-31 DLP-E137 Check the Network for Alarms and Conditions17-32 17-33 DLP-E142 Install the Narrow CRMs17-34 DLP-E143 Install the Wide CRMsCRM Screw Holes Front 17-3517-36 17-37 DLP-E145 Connect the PDU Ground Cables to the PDU17-38 Power Terminal Block Right Side Shown17-39 DLP-E146 Install Isolated Logic GroundClick the Provisioning Blsr tabs DLP-E150 Clear a Blsr Force Ring Switch17-40 17-41 DLP-E152 Install Public-Key Security CertificateCTC Preferences Dialog Box 17-4217-43 DLP-E154 Delete Alarm Severity Profiles17-44 DLP-E155 Enable Alarm FilteringConditions Window Filter Dialog Box 17-4517-46 DLP-E156 Modify Alarm and Condition Filtering ParametersDLP-E158 Manually Lock or Unlock a User on a Single Node DLP-E157 Disable Alarm Filtering17-47 Click the Provisioning Security Users tabs DLP-E159 Manually Lock or Unlock a User on Multiple Nodes17-48 DLP-E160 Verify Blsr Extension Byte Mapping DLP-E161 Single Shelf Control Card Switch TestClick the Provisioning Line tab 17-4917-50 17-51 DLP-E163 Delete CircuitsDLP-E165 Change an OC-N Card Click the Maintenance Protection tabs17-52 17-53 Lockout of Protection DLP-E169 Initiate a Lockout on a Path Protection Path17-54 Click the Circuits Circuits tabs DLP-E171 Verify Fan Operation17-55 ONS 15600 Shelf with One Fan Tray and Air Filter Removed 17-5617-57 17-58 DLP-E178 Delete Overhead Circuits DLP-E177 Change Tunnel TypeClick the Provisioning Overhead Circuits tabs 17-5917-60 DLP-E179 Repair an IP Tunnel17-61 J1 Function CardsSelecting the Edit Path Trace Option 17-6217-63 Click Circuits DLP-E181 Provision Path Trace on OC-N Ports17-64 Click the Login Node Group tab DLP-E182 Create Login Node GroupsClick Create Group 17-6517-66 Tools17-67 DLP-E185 Change the JRE Version17-68 DLP-E186 Remove Pass-through ConnectionsDLP-E188 Change a Circuit Service State DLP-E187 Delete a Node from a Specified Login Node Group17-69 17-70 DLP-E189 Provision Line DCC Terminations17-71 Node view, click the Provisioning Comm Channels Ldcc tabsClick the Provisioning Network Proxy subtabs DLP-E190 Provision a Proxy Tunnel17-72 Click the Provisioning Network Firewall subtabs DLP-E191 Provision a Firewall Tunnel17-73 DLP-E193 Delete a Firewall Tunnel DLP-E192 Delete a Proxy Tunnel17-74 DLP-E197 Change a Line DCC Termination DLP-E196 Change a Section DCC TerminationClick the Provisioning Comm Channels Sdcc tabs 17-75DLP-E199 Delete a Line DCC Termination DLP-E198 Delete a Section DCC TerminationClick the Provisioning Comm Channel Sdcc tabs 17-7617-77 17-78

15600 specifications

Cisco Systems 15600 is a powerful network router designed to meet the growing demands of enterprise and service provider networks. Equipped with advanced features and cutting-edge technology, the 15600 caters to a range of applications, from data centers to branch offices, supporting the evolving landscape of cloud computing and Internet of Things (IoT).

One of the standout features of the Cisco 15600 is its scalability. The router is built to handle increasing bandwidth requirements, making it ideal for environments where traffic is expected to grow. It supports a range of interface modules, allowing organizations to tailor their network connectivity according to their specific needs. This modular design not only ensures flexibility but also future-proofs the investment, as additional capacity can be added as network demands increase.

Cisco’s 15600 also incorporates advanced security features, such as built-in firewalls and support for secure VPN connections. This is crucial for businesses that prioritize data protection and need to safeguard their information against cyber threats. The router also supports multiple encryption protocols, allowing organizations to implement robust security measures without sacrificing performance.

With regard to performance, the 15600 offers high throughput rates, which are essential for handling large volumes of traffic efficiently. This enhanced performance is further supported by Cisco's innovative technologies, such as Application-Specific Integrated Circuits (ASICs) that optimize data processing. Additionally, the router utilizes Cisco’s Intelligent WAN (iWAN) capabilities, which enhance the overall performance and efficiency of WAN connections.

Another key characteristic of the 15600 is its support for software-defined networking (SDN). This enables organizations to automate network management, reduce operational costs, and improve agility in deploying applications. Using Cisco's software solutions, network administrators can manage the router through a centralized interface, simplifying operations and enhancing visibility into network performance.

Furthermore, the Cisco 15600 is designed with energy efficiency in mind. Its architecture minimizes power consumption while maintaining high performance levels, contributing to sustainability goals and reducing operational costs over time.

Overall, the Cisco Systems 15600 router stands out as a robust networking solution, offering unmatched scalability, security, performance, and operational efficiency. As organizations increasingly turn to cloud-based solutions and IoT devices, the capabilities of the 15600 position it as a critical component in modern network infrastructures.