7600 Card Management 14-7

Security

SNMP security is provided through community strings. A community string is included in each SNMP protocol message sent between external management applications and the 7600 Card.

The default community strings are:

Access Unit agent -

Qread : ‘public AU’

Qwrite : ‘private AU’

Proxy to bridge agents -

Qread : ‘public’

Qwrite : ‘private’

The SNMP agent authorizes requests from the SNMP manager by comparing the community name in the received packet with the community string in the 7600 Card.

Local management security is provided through passwords. Three user access levels exist: read, write, admin.

Virtual Terminal A virtual terminal protocol is a software program, such as Rlogin or Protocols Telnet, that allows establishment of a management session from a PC or

a workstation. Since rlogin and Telnet run over TCP/IP, at least one IP address must be configured on the 7600 Card to access it with a virtual terminal protocol.

Terminal emulation differs from a virtual terminal protocol in that it connects a terminal directly to the serial line (out-of-band).

Figure 14-5 shows a 7600 Card being accessed by a workstation through a virtual terminal protocol and through a terminal.

Page 183
Image 183
3Com 7600 manual Security