Manuals / Casio / Computer Equipment / Personal Computer

Casio ACS V6000 manual Protocol options, To add a chain, Select Network - Firewall

Models: ACS V6000

1 58

Download 58 pages 32.52 Kb

Page 29

Protocol options

24 ACS v6000 Installation/Administration/User Guide

If LOG is selected from the Target pull-down menu, the administrator can configure a Log Level, a Log Prefix and whether the TCP sequence, TCP options and IP options are logged in the Log Options Section.

If REJECT is selected from the Target pull-down menu, the administrator can select an option from the Reject with pull-down menu; the packet is dropped and a reply packet of the selected type is sent.

Protocol options

Different fields are activated for each option in the Protocol pull-down menu.

If Numeric is selected from the Protocol menu, enter a Protocol Number in the text field.

If TCP is selected from the Protocol menu, a TCP Options Section is activated for entering source and destination ports and TCP flags.

If UDP is selected from the Protocol menu, the UDP section is activated for entering source and destination ports.

Table 3.3: Firewall Configuration - TCP and UDP Options Fields

Field/Menu Option

Definition

Source Port - or -

Destination Port

A single IP address or a range of IP addresses.

[TCP only] SYN (synchronize), ACK (acknowledge), FIN (finish), RST (reset),

TCP FlagsURG (urgent) and PSH (push). The conditions in the pull-down menu for each flag are: Any, Set or Unset.

If ICMP is selected from the Protocol menu, the ICMP Type pull-down menu is activated.

If an administrator enters the Ethernet interface (eth0) in the input or output interface fields and selects an option (2nd and further packets, All packets and fragments or Unfragmented packets and 1st packets) from the Fragments pull-down menu, the target action is performed on packets from or to the specified interface if they meet the criteria in the selected Fragments menu option.

To add a chain:

1.Select Network - Firewall.

2.Select either IPv4 Filter Table or IPv6 Filter Table as needed.

3.Click Add.

4.Enter the name of the chain to be added.

5.Click Save.

Image 29

Casio ACS V6000 manual Protocol options, To add a chain, Select Network - Firewall

Contents

Installation/Administration/User Guide Page 2010 Avocent Corporation. 590-1034-501B Installation/Administration/User GuideAccess options Features and BenefitsAuthentication Data logging, notifications, alarms and data bufferingSNMP Configuration SettingsAppliance authentication Authentication serversIntroduction Features and BenefitsAccess options Flexible users and groups Web ManagerIPv4 and IPv6 support Security AuthenticationVPN based on IPSec with NAT traversal Packet filteringAuto discovery Data logging, notifications, alarms and data bufferingACS v6000 virtual console server requirements InstallationTo create the virtual machine using the vSphere client To install the virtual console server onto the virtual machine Using Telnet or SSH # telnet IPPortAlias login username # telnet hostname IPaddress TCPPortAlias login usernameTo use Telnet to connect to a device through a serial port # telnet hostname IPaddressssh -l usernameTCPPortAlias hostname IPaddress To close an SSH sessionssh -l username IPPortAlias 10 ACS v6000 Installation/Administration/User Guide To log into the web manager Accessing a Virtual Console Server 3 via the Web ManagerWeb Manager Overview for Administrators 12 ACS v6000 Installation/Administration/User Guide Wizard ModeFigure 3.1 Administrator Web Manager Screen Table 3.1 Web Manager Screen Areas Number DescriptionTo configure security parameters and select a Security Profile To configure Ports To configure network parametersTo configure licenses To configure users and change the default user passwords AccessTo view and connect to devices using the web manager Expert ModeSecurity profiles System ToolsSystem To configure DSView 3 software security settings To configure the Security Profile1. Select System - Security - Security Profile 1. Select System - Security - DSView2. Select Enable network time protocol To set the time and date using NTPTo set the time zone using a predefined time zone To define custom time zone settingsInformation VM SettingsUsage Online helpvCenter To configure a vCenterTo add an association by Datacenter License To power control targets using the web managerNetwork To configure a network device SettingsSelect IPv4 address unconfigured to disable IPv4 Select IPv6 address unconfigured to disable IPv6Hosts Configuring the firewallFirewall To add a hostTo add a chain Protocol options1. Select Network - Firewall 2. Select either IPv4 Filter Table or IPv6 Filter Table as neededIPSecVPN To change the policy for a default chainTo add a rule To edit a rule26 ACS v6000 Installation/Administration/User Guide 1. Click Network - SNMP SNMP ConfigurationTo configure SNMP To configure or edit one or more serial ports with the CAS Profile To enable or disable one or more serial portsPorts Serial portsTable 3.5 CAS Profile Parameters ParameterDescription CAS ParameterDescription 30 ACS v6000 Installation/Administration/User GuideCtrl-X Enabled - stores data at all times. Disabled - stores data when a CAS Enables the suppression of the LF character after the CR characterParameter DescriptionTo reset one or more serial ports to their factory configuration To copy/clone the configuration of one port to other portsCAS Profile Auto discoveryTo configure the input/output strings used by auto answer To configure the strings for probe/match used by auto discoverya. Select Probe Strings or Match Strings 1. Select Ports - CAS Profile - Auto Answer1. Click Ports - Pool of CAS Ports To configure a pool of CAS portsPool of CAS ports Table 3.6 Pool of CAS Ports Parameters Parameter Description AuthenticationAuthentication servers Appliance authenticationTo set authentication for the console server 1. Click Authentication - Appliance Authentication1. Select Authentication - Authentication Servers - TACACS+ To configure a TACACS+ authentication serverTo configure an LDAPSAD authentication server 1. Select Authentication - Authentication Servers - LDAPSAD1. Select Authentication - Authentication Servers - Kerberos To configure a Kerberos authentication serverTo configure an NIS authentication server 1. Select Authentication - Authentication Servers - NISTo add new users Local accounts1. Click Users - Local Accounts - Password Rules To configure password rulesadmin group User groupsTo view admin Appliance Access Rights shell-login-profile appliance-admin group1. Click Users - Authorization - Groups user group3. Check the Enable Log-In Profile box To configure a login profile for a user groupTo remove members from a user group 1. Click Users - Authorization - GroupsTo assign appliance access rights for custom user groups To add access to serial ports for a user group1. Click Users - Authorization - Groups 1. Click Users - Authorization - GroupsTo configure a group in a RADIUS authentication server To configure a group in a TACACS+ authentication serverraccess = groupname=TACACS1 FramedFilterID as groupname=adminTo configure Events To configure group an LDAP authentication serverTo configure Event Destinations Event Notifications1. Select Events and Logs - Data Buffering To configure Data BufferingData Buffering 1. Click Enable appliance session data logging To configure Appliance Logging2. Click Enable appliance session data logging alerts Active SessionsTo change your own password Change Password1. Select Change Password Web Manager Overview for Regular UsersFigure 3.3 Web Manager Regular User Screen 50 ACS v6000 Installation/Administration/User GuideTable 3.9 Web Manager Regular Users Screen Functional Areas Number DescriptionA P P E N D I C E S Appendix A BootP Configuration RetrievalConfiguration Appendix B Technical Support To resolve an issue590-1034-501B For Technical Support