Manuals / Black Box / Kitchen Appliance / Appliance Trim Kit

Black Box EncrypTight Non IP Traffic Handling, CLI Inactivity Timer, Password Strength Policy

Models: EncrypTight ET0100A ET0010A ET1000A

1 352
Download 352 pages 21.02 Kb
Page 326
Image 326

Advanced Configuration

“Reassembly Mode” on page 310

“Features Configuration” on page 330

Non IP Traffic Handling

The non IP traffic handling setting is available when the ETEP is configured for use in Layer 3 encryption policies. This setting provides options for how to handle Layer 2 packets that are not IP at Layer 3. Non-IP packets can be discarded or passed in the clear. When discarding non-IP traffic, you have the option of passing ARP packets in the clear or discarding them as well. All packets that are IP at Layer 3 are handled according the policies that are loaded on the appliance.

When the non-IP discard feature is enabled, the appliance looks at the packet’s Layer 3 protocol flag. If the protocol flag is IP, then the appliance processes the packet normally. If the protocol flag is non-IP, then the appliance discards the packet. This processing applies to both inbound and outbound packets.

The appliance’s default setting is clear, where non-IP packets are passed in the clear and IP packets are processed according to the policies loaded on the appliance.

Table 101 Non IP traffic handling configuration

Setting

Description

clear

All packets that are non-IP at Layer 3 are passed in the clear.

discard

All packets that are non-IP at Layer 3 are discarded. ARP packets are

 

excluded from the discard action.

discardIncludingARP

All packets that are non-IP at Layer 3 are discarded, including ARP

 

packets.

 

 

Related topic:

“Features Configuration” on page 330

CLI Inactivity Timer

The CLI session is terminated if no activity is detected on the CLI in a specified amount of time. The inactivity timer is set to 10 minutes by default. The timer applies to a CLI session initiated through the serial port or through SSH.

The inactivity timer is specified in minutes, with valid values ranging from 0–1440 minutes (24 hours). When the CLI inactivity timer is set to zero the session does not time out.

Setting the inactivity timer does not affect the current CLI session. The change is effective on all subsequent CLI sessions.

Password Strength Policy

The password strength policy affects the following items:

Password conventions

Password history exclusion, which limits the reuse of passwords

Password expirations, warnings, and grace periods

EncrypTight User Guide

327

Page 325 Page 327
Page 326
Image 326
Black Box EncrypTight, ET1000A, ET0010A, ET0100A Non IP Traffic Handling, CLI Inactivity Timer, Password Strength Policy
Page 325 Page 327