Black Box kv1161a, servswitch cx uno ip, kv1081a manual Ports, Security issues with ports

Page 83

Ports

If you accept the analogy of IP addresses being rather like telephone numbers, then think of ports as extension numbers. In a company of any size, you generally wouldn’t expect the accounts department to share the same telephone with the technical department. Although their calls may all be related to the same company, they concern very different aspects of that company.

It is the same with IP network connections. Although you have only one network link into your computer and only one IP address (phone number), you are probably performing many different tasks through that one link, often at the same time. Thus, when you browse the web your outgoing requests and the incoming information are all channelled through port 80. When you send an email, it travels through port 25 and when you transfer files you are, without knowing it, using port 20.

At the “border crossing” between the wider Internet and every local network attached to it, there is a router that is usually combined with a firewall. One of its main tasks is to direct incoming traffic to the correct place within its local network. A key piece of information to help it do this is the port number:

User accesses the company

Internet

User with VNC viewer accesses

IP address: 129.7.1.10 (this

website at: 129.7.1.10 (this

 

 

automatically uses port 5900).

automatically uses port 80).

 

 

 

Router/firewall address: 129.7.1.10 Router is programmed to send port 5900 VNC traffic to local address 192.168.0.3 and port 80 web traffic to local address 192.168.0.42

BLACK BOX

LOC REM VNC 100 LNK PWR

CX Uno IP

Web server

 

724-746-5500

 

 

ServSwitch CX Uno IP

Web server has the local

has the local IP address:

IP address: 192.168.0.42

192.168.0.3

 

 

Security issues with ports

The settings of port numbers become important when the ServSwitch CX Uno IP is situated behind a network firewall. In order for a remote VNC viewer or web browser to make contact with your ServSwitch CX Uno IP, it is necessary for the firewall to allow communication through a particular numbered port to occur.

One specific function of firewalls is to restrict access to ports in order to prevent malicious attackers using them as a route into your network. Every new port that is opened offers a new possibility for hackers and so the number of accessible ports is purposefully kept to a minimum. In such cases, it may be advantageous to change one or both ServSwitch CX Uno IP ports to use the same number. The other alternative is to place the ServSwitch CX Uno IP unit outside the firewall and take full advantage of its secure operation features – see Networking issues for details.

IMPORTANT: The correct configuration of routers and firewalls requires advanced networking skills and intimate knowledge of the particular network. Black Box cannot provide specific advice on how to configure your network devices and strongly recommend that such tasks are carried out by a qualified professional.

®

   



82

Page 82 Page 84
Image 83
Page 82 Page 84
Contents
ServSwitch CX Uno IP Contents Further information Index SAM formats Global usersMany computers ServSwitch CX Uno IP features front and rear What you may additionally need What’s in the boxDouble unit rack brackets MountingSingle unit rack brackets SAM ConnectionsFrom video monitor From USB keyboard and mouse Local userTo connect the local user port IP network link ServSwitch CX Uno IP Front panelGlobal user IP network port To connect the Global user IP network portTo connect a computer system Computer system via SAMExceeds 40 degrees Centigrade Power in connectionTo connect the power supply Output lead from Power adapterTo connect and address the switch boxes Power control portCascade tree Cascading multiple unitsSee also To connect units in cascade Connecting units in cascadeTips for successful cascading Addressing computers in a cascade Using cascaded computersUSB-type and that it is plugged Multiple video head connectionsIt is recommended that Second SAM in each pair is a Cable from serial Control device Rear panel Remote switching controlHost computer port/channel Video off Overall initial configuration ConfigurationInitial configuration Security To access the main menu HotkeysMain menu Menu layoutRegistering users and host computers General security and configuration stepsTo enable general security To set an Admin passwordTo clear a password and restore factory default settings What to do if the Admin password has been forgottenTo clear IP access control Clearing IP access controlWhat is IP access control? To configure the unit from a global user location Full configuration by global userViewer encryption settings Encryption settingsServSwitch CX Uno IP encryption settings Positioning ServSwitch CX Uno IP in the network Networking issuesFirewall/router address Placing ServSwitch CX Uno IP behind a router or firewallPort settings AddressingDNS addressing To discover a DHCP-allocated IP addressPorts Placing ServSwitch CX Uno IP alongside the firewallEnsuring sufficient security To control two or more ports simultaneously Power switching configurationPower control sequences To configure the power sequences for each host computerTo invoke backup/recovery mode Upgrading ServSwitch CX Uno IP modelsRecovering from a failed upgrade To upgrade ServSwitch CX Uno IP modelsFront panel indicators Accessing the ServSwitch CX Uno IPSelecting a computer Local user accessSelect Host menu here you can select computers by name To select a computer using the Select Host menuWhen choosing Standard hotkeysTo log To select a computer using mouse buttonsTo select a computer using mouse buttons Advanced method Logging in and outReminder banner To enable/disable the confirmation boxTo change banner colors or disable the banner Confirmation boxUser preferences and functions Orange dot indicators in the Select Host menuGlobal User Global user accessTo download the VNC viewer Global user access via VNC viewerTo access via the VNC viewer Enter the ServSwitch CX Uno IP address here and click OKTo access via your web browser Global user access via web browserMenu bar Using the viewer windowWhen using the viewer window To select a host ConfigureMouse pointers Host selectionRe-synchronize mouse Access mode shared/privatePower switching Auto calibrateControls Keyboard Control Enable Sun TranslationWhen entering codes Video SettingsSetting the Threshold manually Using automatic configurationsIncreased by 50% when a slow link is detected Overlap Capture Advanced SettingsCustom Video Modes Supported web browsers Viewer encryption settingsIf you need to enter a port number Techhelp@blackbox.co.uk TroubleshootingWhen logging on using VNC viewer, I cannot enter a username Getting assistanceTo access the local setup menus Appendix 1 Local setup menusFunctions Power ControlRestore Standard Mouse Restore IntellimouseScreen Saver User PreferencesReminder Banner Reminder ColorSettings 1, 2, 5, 10, 30 Seconds, 1, 5, 10 Minutes Mouse SwitchingSettings Disabled 2, 5, 10,15 or 20 Minutes User TimeoutSettings Disabled, Enabled Setup OptionsIP address, net mask, VNC port, etc ConfigurationIP admin password, encryption settings, etc Completely resets the ServSwitch CX Uno IP unitUnit Configuration Network Configuration Options Port Serial ConfigurationSettings Power Control, Sync Units Settings 1200, 2400, 4800, 9600, 19200, 38400, 57600To reset the ServSwitch CX Uno IP configuration Reset ConfigurationMain configuration Logged on users Appendix 2 Configuration pages via viewerTo access the remote configuration pages User accounts Unit configuration Advanced unit configuration Time & date configuration IP Gateway Network configurationIP Access Control IP Network MaskTo edit/remove access control entries Setting IP access controlTo define a new IP access control entry To reorder access control entriesBaud Rate Serial port configurationOptions Port Use To create a new host entry Host configurationErase Host Configuration Add entry for unrecognized hostFor further details To get here Logging and statusTo copy and paste the log Syslog Server IP AddressLdap configuration Preferred encoding Appendix 3 VNC viewer connection optionsColor/Encoding Auto selectCustomize Enable all inputsDisable all inputs view-only mode InputsMisc Custom Size ScalingNo Scaling Scale to Window SizeLoad / Save Defaults ReloadDefaults Save IdentitiesAppendix 4 VNC viewer window options Security Appendix 5 Browser viewer options Encoding and color level Net masks Appendix 6 Addresses, masks and portsIP addresses Binary octet after Net masks the binary explanationOperation with net mask Binary equivalentAddress ranges Calculating the mask for IP access controlSingle locations All locationsPorts Security issues with portsSLAVE2 end 9pin D-type female Appendix 7 Cable and connector specificationsPower switch to power switch daisy chain cable 9pin D-type female 4pin RJ9Creating macro sequences Appendix 8 Hotkey sequence codesPermissible key presses Appendix 9 Supported video modes General Public License Linux Safety informationEnd user licence agreement Canadian Department of Communications RFI statement Radio Frequency EnergyEuropean EMC directive 89/336/EEC FCC Compliance Statement United StatesCertification notice for equipment used in Canada Instrucciones de seguridad Normas Oficiales Mexicanas NOM electrical safety statement Index Server Access Module connection Country Web Site/Email Phone Fax BlackBox subsidiary contact details
Top Page Image Contents