Adder Technology CATxIP 1000 manual Ports, Security issues with ports

Page 83

Ports

If you accept the analogy of IP addresses being rather like telephone numbers, then think of ports as extension numbers. In a company of any size, you generally wouldn’t expect the accounts department to share the same telephone with the technical department. Although their calls may all be related to the same company, they concern very different aspects of that company.

It is the same with IP network connections. Although you have only one network link into your computer and only one IP address (phone number), you are probably performing many different tasks through that one link, often at the same time. Thus, when you browse the web your outgoing requests and the incoming information are all channelled through port 80. When you send an email, it travels through port 25 and when you transfer files you are, without knowing it, using port 20.

At the “border crossing” between the wider Internet and every local network attached to it, there is a router that is usually combined with a firewall. One of its main tasks is to direct incoming traffic to the correct place within its local network. A key piece of information to help it do this is the port number:

User accesses the company

Internet

User with VNC viewer accesses

IP address: 129.7.1.10 (this

website at: 129.7.1.10 (this

 

 

automatically uses port 5900).

automatically uses port 80).

 

 

 

Router/firewall address: 129.7.1.10 Router is programmed to send port 5900 VNC traffic to local address 192.168.0.3 and port 80 web traffic to local address 192.168.0.42

 

Web server

AdderView CATxIP 1000

Web server has the local

has the local IP address:

IP address: 192.168.0.42

192.168.0.3

 

Security issues with ports

The settings of port numbers become important when the AdderView CATxIP 1000 is situated behind a network firewall. In order for a remote VNC viewer or web browser to make contact with your AdderView CATxIP 1000, it is necessary for the firewall to allow communication through a particular numbered port to occur.

One specific function of firewalls is to restrict access to ports in order to prevent malicious attackers using them as a route into your network. Every new port that is opened offers a new possibility for hackers and so the number of accessible ports is purposefully kept to a minimum. In such cases, it may be advantageous to change one or both AdderView CATxIP 1000 ports to use the same number. The other alternative is to place the AdderView CATxIP 1000 unit outside the firewall and take full advantage of its secure operation features – see Networking issues for details.

IMPORTANT: The correct configuration of routers and firewalls requires advanced networking skills and intimate knowledge of the particular network. Adder Technology cannot provide specific advice on how to configure your network devices and strongly recommend that such tasks are carried out by a

   



82

Page 82 Page 84
Image 83
Page 82 Page 84
Contents AdderView CATxIP Contents Further information Index CAM formats Global usersMany computers AdderView CATxIP 1000 features front and rear What you may additionally need What’s in the boxDouble unit rack brackets MountingSingle unit rack brackets Connections CAM Computer Power System SwitchTo connect the local user port Local userCategory 5, 5e or 6 cable from Adder X100/X200 module Global user IP network portTo connect the Global user IP network port AdderView CATxIP Front panelTo connect a computer system Computer system via CAMOutput lead from Power adapter Power in connectionTo connect the power supply Switch Power control portTo connect and address the switch boxes Cascade tree Cascading multiple unitsSee also To connect units in cascade Connecting units in cascadeTips for successful cascading Addressing computers in a cascade Using cascaded computersUSB-type and that it is plugged Multiple video head connectionsIt is recommended that Second CAM in each pair is a Cable from serial Control device Remote switching controlHost computer port/channel Video off Overall initial configuration ConfigurationInitial configuration Security Main menuMenu layout HotkeysRegistering users and host computers General security and configuration stepsTo enable general security To set an Admin passwordTo clear a password and restore factory default settings What to do if the Admin password has been forgottenTo clear IP access control Clearing IP access controlWhat is IP access control? To configure the unit from a global user location Full configuration by global userViewer encryption settings Encryption settingsAdderView CATxIP 1000 encryption settings Positioning AdderView CATxIP 1000 in the network Networking issuesFirewall/router address Port settingsPlacing AdderView CATxIP 1000 behind a router or firewall AddressingDNS addressing To discover a DHCP-allocated IP addressPorts Placing AdderView CATxIP 1000 alongside the firewallEnsuring sufficient security To control two or more ports simultaneously Power switching configurationPower control sequences To configure the power sequences for each host computerUpgrading AdderView CATxIP 1000 models Recovering from a failed upgradeTo upgrade AdderView CATxIP 1000 models To invoke backup/recovery modeFront panel indicators Accessing the AdderView CATxIPSelecting a computer Local user accessSelect Host menu here you can select computers by name To select a computer using the Select Host menuStandard hotkeys To log To select a computer using mouse buttonsTo select a computer using mouse buttons Advanced method Logging in and outReminder banner To enable/disable the confirmation boxTo change banner colours or disable the banner Confirmation boxUser preferences and functions Blue dot indicators in the Select Host menuGlobal User Global user accessOptions button Global user access via VNC viewerTo access via the VNC viewer To download the VNC viewerTo access via your web browser Global user access via web browserMenu bar Using the viewer windowWhen using the viewer window To select a host ConfigureMouse pointers Host selectionRe-synchronise mouse Access mode shared/privatePower switching Auto calibrateControls Enter When entering codesVideo Settings Keyboard ControlAccordingly Using automatic configurationsIncreased by 50% when a slow link is detected Setting the Threshold manuallyOverlap Capture Advanced SettingsCustom Video Modes Supported web browsers Viewer encryption settingsIf you need to enter a port number US +1 888 275 TroubleshootingWhen logging on using VNC viewer, I cannot enter a username Getting assistanceTo access the local setup menus Appendix 1 Local setup menusFunctions Power ControlRestore Standard Mouse Restore IntellimouseScreen Saver User PreferencesReminder Banner Reminder ColourOSD Dwell Time Mouse SwitchingUser Timeout Global PreferencesAuto Logout Setup OptionsIP address, net mask, VNC port, etc ConfigurationIP admin password, encryption settings, etc Completely resets the AdderView CATxIP 1000 unitUnit Configuration Network Configuration Options Port Serial ConfigurationSettings Power Control, Sync Units Settings 1200, 2400, 4800, 9600, 19200, 38400, 57600To reset the AdderView CATxIP 1000 configuration Reset ConfigurationMain configuration Logged on users Appendix 2 Configuration pages via viewerTo access the remote configuration pages User accounts Unit configuration Advanced unit configuration Time & date configuration IP Gateway Network configurationIP Access Control IP Network MaskTo edit/remove access control entries Setting IP access controlTo define a new IP access control entry To reorder access control entriesBaud Rate Serial port configurationOptions Port Use To create a new host entry Host configurationErase Host Configuration Add entry for unrecognised hostFor further details To get here Logging and statusTo copy and paste the log Syslog Server IP AddressLdap configuration Preferred encoding Appendix 3 VNC viewer connection optionsColour/Encoding Auto selectCustomise Enable all inputsDisable all inputs view-only mode InputsMisc Custom Size ScalingNo Scaling Scale to Window SizeLoad / Save Defaults ReloadDefaults Save IdentitiesAppendix 4 VNC viewer window options Security Appendix 5 Browser viewer optionsEncoding and colour level Net masks Appendix 6 Addresses, masks and portsIP addresses Binary octet after Net masks the binary explanationOperation with net mask Binary equivalentAddress ranges Calculating the mask for IP access controlSingle locations All locationsPorts Security issues with portsPower switch to power switch daisy chain cable Appendix 7 Cable and connector specificationsAdderView CATxIP 1000 to power switch cable Creating macro sequences Appendix 8 Hotkey sequence codesPermissible key presses Appendix 9 Supported video modes General Public License Linux WarrantySafety information End user licence agreement Canadian Department of Communications RFI statement Radio Frequency EnergyEuropean EMC directive 89/336/EEC FCC Compliance Statement United StatesHoe Huat Industrial Building Index 
Top Page Image Contents