Numeric protocol options, TCP protocol options | Avocent ACS 5000

8Cyclades® ACS 5000 Installation/Administration/User Guide

Flag any of the above elements with Inverted to perform target action on packets not matching any criteria specified in that line. For example, if you select DROP as the target action, specify Inverted for a source IP address and do not specify any other criteria in the rule, any packets arriving from any other source IP address than the one specified are dropped.

Numeric protocol options

If you select Numeric as the protocol when specifying a rule, you need to specify the desired number.

TCP protocol options

If you select TCP as the protocol when specifying a rule, you can define the following options.

Table 1.4: TCP Protocol Option Definitions

Field/Menu option

Definition

Source or Destination Port

Specify a source or destination port number for filtering. Specify a range to filter TCP packets for any port number within the range.

TCP Flags

Specify any of the flags: SYN (synchronize), ACK (acknowledge), FIN (finish), RST (reset), URG (urgent), PSH (push) and one of the Any, Set, or Unset conditions to filter TCP packets for the specified flag and selected condition.

UDP protocol options

Select UDP options by selecting UDP as the protocol when selecting a rule. Choose either the Source or Destination Port from the field, as defined above.

ICMP protocol options

When you select ICMP as a protocol when specifying a rule, you can select the ICMP options available on the display.

Target actions

The Target is the action to be performed on an IP packet that matches all the criteria specified in a rule.

NOTE: If the LOG and REJECT targets are selected, additional options are available.

For detailed information on LOG target options, see LOG target on page 83.

For detailed information on REJECT target options, see REJECT target on page 84.

Image 16

Avocent ACS 5000 manual Numeric protocol options, TCP protocol options, UDP protocol options, Icmp protocol options

Contents

Cyclades ACS FCC Warning Statement Canadian DOC Notice Cyclades ACS Symbols Used B L E of C on T E N T S Configuring the Console Server in Wizard Mode Vii Network Menu and Forms Appendix a Technical Specifications 143 Connectors on the Console Server Overview Accessing the Console Server and Connected Devices ACS 5000 Console Server Connectors Number Description Prerequisites for Using the Web Manager Web Manager Types of Users AuthenticationSecurity Authentication Methods Supported Authentication Type Definition Services not supporting IPv6 IPv6Packet Filtering Structure of IP filtering Add rule and edit rule options ChainRule Add Rule and Edit Rule Option Definitions Filter Options Numeric protocol options TCP protocol optionsUDP protocol options Icmp protocol options Notifications, Alarms and Data Buffering Example of using facility numbersSyslog servers Prerequisites for logging to syslog servers Console Server and Power Management Configuring access to connected devicesCommon Administrator Tasks for Configuring Software Managing Users of Connected Devices Additional requirements for Server Technology IPDUs Conventions used to identify outlets Configuring power management Configuring ports for power management by authorized users Power management through the web manager Options for managing powerHostname Discovery Cyclades ACS 5000 Installation/Administration/User Guide Basic Installation Procedures Important Pre-installation RequirementsMounting the console server To rack mount the console server Making an Ethernet connectionTo connect devices to serial ports To connect to the console port Console server serial port pin-out information To use the wiz command to configure network parameters Turning on the console server and the connected devicesTo turn on the console server To turn on connected devices To configure for IPv4 protocol To configure for IPv6 protocol Selecting a security profile using the web manager Other Methods of Accessing the Web Manager Adding users and configuring ports using the web managerTo use a dynamic IP address to access the web manager Selecting a security profile To use the default IP address to access the web manager Connecting PDUsConnecting third-party IPDUs To daisy-chain PDUs to the console server Features of Regular User Forms Using the Web ManagerTo log into the web manager Form area Port access requirements ConnectConnect to the console server Connect to serial ports Connection protocols for serial ports Ipdu Power Management Outlets Manager Outlets Group Ctrl View Ipdu infoBulb Padlock PDU Power Factor Form Heading Description Example To change your password Common Features of Administrator Forms Administrator Web Manager Buttons Button name Use Try changes Click the try changes button Wizard mode Overview of Administrative ModesLogging Into the Web Manager Expert mode Example of Web Manager Form in Wizard Mode Example of Web Manager Form in Expert Mode Cyclades ACS 5000 Installation/Administration/User Guide Default security profile Security ProfilePre-defined security profiles Custom security profile Http Serial port settings and security profiles To select or configure a security profile To configure the network settings Network SettingsPort Profile Port Profile Setup Options Parameter Options To set parameters for all serial ports AccessParameter Options To add a user Data Buffering To change a passwordTo delete a user Wizard Data Buffering Field Names and Definitions Field name To configure data buffering System Log To add a syslog server To delete a syslog server Cyclades ACS 5000 Installation/Administration/User Guide Configuring the Console Server in Expert Mode Overview of menus and forms Expert Mode Screen Elements Number Description Connecting to the console server Connecting to devices connected to the serial portsApplications Menu and Forms Connect Applications Ipdu Power Mgmt Outlets Manager Ipdu Power ManagementTo connect to a device through a serial port Expert Outlets Manager Icons Description ButtonPurpose OFF Avocent PM PDU information displayed To view status, lock, unlock, rename or cycle power outletsThird-party Ipdu information displayed Applications Ipdu Power Mgmt. View IPDUs Info Applications Ipdu Power Mgmt. Outlets Group CtrlExpert Ouatlet Groups Ctrl Information Form Heading PM20i/30A Applications Ipdu Power Mgmt. Configuration To view and reset Ipdu information Ipdu Power Mgmt Configuration Description Shown Element Type Applications Ipdu Power Mgmt. Software Upgrade To upgrade software on a Cyclades PM Ipdu ExpertTo upgrade software on non-Cyclades IPDUs To download Cyclades Ipdu software Expert Applications PMD Configuration Applications PMD Configuration- GeneralApplications PMD Configuration- Outlet Groups To upgrade software on a Avocent PM PDU Applications PMD Configuration Users Management To configure an outlet groupTo authorize a user for Ipdu power management To delete an outlet group Outlet entry conventions Prefix Group Expert Applications Terminal Profile Menu To create a menu for a local server terminal Click apply changes Host Settings Expert Network Menu Descriptions Menu Selection General host settings DNS ServiceDisabling and enabling IPv4 or IPv6 protocols Disabling IPv4 IPv4 settings Disabling/Enabling IPv6 IPv6 settings IPv6 Ethernet interfaces IPv6 serial interfacesIPv6 PPP interfaces Other interfaces To configure host settings Expert from the General form To configure IPv4 protocol To configure IPv6 protocol Syslog VPN Connections MYCOMPANYDOMAIN-VPN To configure VPN Click on apply changes Description To configure Snmp Example, 193.168.44.0/24 Firewall Configuration Edit button Delete buttonAdd button Edit Rules button Inverted checkboxes Target pull-down menu optionsSource or destination IP and mask Protocol Numeric protocol fields TCP protocol fieldsUDP protocol fields Expert TCP Options Fields Field/Menu Option Input interface, output interface and fragments Icmp protocol fieldsLOG target Firewall configuration procedures Reject targetTo add a chain To edit a chain To add a rule To edit a rule Static Routes Host TableTo define the console server’s IP address and hostname To configure static routes Expert Field or Menu Name Definition Cyclades ACS 5000 Installation/Administration/User Guide Security Menu and Forms Users and Groups Adding a User Adding a GroupTo delete a user or group Expert Add User Dialog Field Names and Definitions To change a user’s password Active Ports SessionsTo add a group To modify a group To view, kill or refresh active user sessions TTY Configuring authentication for console server logins To configure the console servers login authentication method Group authorization on Radius To configure a Radius authentication serverTo configure a TACACS+ authentication server Group authorization on TACACS+ To configure an Ldap authentication server Group Authorization on Ldap To configure Ldap authenticationTo configure a Kerberos authentication server Go to Security Authentication Kerberos in Expert mode To configure a NIS authentication server Security Profiles Custom security profile Serial port settings and security profiles Security certificates Certificate for Http security User configured digital certificate Certificate on ssh To enable or disable serial ports Physical Ports103 To select one or more serial ports General form Console Access Server CAS profile connection protocolsConnection profiles Ports Menu and Forms Terminal Server TS profile connection protocols Bidirectional Telnet protocol Modem and power management connection protocols Connection Protocols for Modems or IPDUs Protocol Name Cyclades ACS 5000 Installation/Administration/User Guide Click apply changes To configure a power management protocol for an Ipdu To associate an alias to a serial port To configure user access to serial ports AccessAccess Form Menu and Fields FieldDescription Authentication methods and fallback mechanism To configure a serial port login authentication method Data Buffering Mode Local Destination Data Buffering Form Fields Field Name Definition To configure data buffering for serial ports Field Name Definition Multi User Expert Multi User Form Fields Field Name Definition Power Management Expert Power Management Form Fields Field Name To configure a serial port for Ipdu power management To configure a serial port for Ipmi power management Other 10 Other Form Fields Field Name Definition TCP Port To configure terminal server connection options Virtual Ports 11 New/Modify Port Dialog Box Fields Field Name Definition To cluster console servers or modify cluster configuration To assign names to slave ports in the cluster Ports Status Ports Statistics Expert Ports Hostname Discovery 14 Expert Ports Hostname Discovery Fields Cyclades ACS 5000 Installation/Administration/User Guide 129 System InformationSystem Information Form InformationParameters To view system information NotificationsInformation Parameters Notifications Form Fields Field Name Definition Email Notifications EntryEmail Notifications Dialog Box Fields Field Name Definition Pager notifications entry Snmp trap notifications entry Untitled dropdown field Cold Start Serial ports alarm notification To configure a trigger for serial port alarm notificationTime/Date To set the time and date manually To configure time and date using an NTP server Setting up a customized timezone configurationTo create a custom timezone selection To use the custom option to set daylight savings time Boot Configuration Boot Configuration Form Fields Field Name Definition To configure the console server boot Select Flash or Network from the Unit boot from menu Backup Configuration Go to Administration Backup Config in Expert mode Upgrade Firmware To upgrade the console server firmware To reboot the console server RebootOnline Help To configure the local online help path 143 Appendix a Technical SpecificationsEnvironmental Hardware Temperature Elevated operating ambient temperatureTemperatur Erhöhte Umgebungstemperatur im betrieb Safety precautions for operating the console server Mechanical loadingSicherer mechanischer Aufbau Circuit overloading Appendices Electrostatic Discharge ESD Precautions Working inside the console server Replacing the battery Austausch der Batterie Remplacement de la batterieArbeiten am Cyclades ACS Vorsichtsmassnahmen gegen Elektrostatische Entladung ESD FCC warning statement BaterìaCanadian DOC notice To resolve an issue Appendix C Technical Support Cyclades ACS 5000 Installation/Administration/User Guide For Technical Support