Configuring Security and Authentication

f

Chapter 7 C o n f i g u r i n g S e c u r i t y a n d A u t h e n t i c a t i o n

Introduction

The Digi CM provides several ways to control access to the network and the devices on the network. One method is through IP filtering, which allows or prevents users with specific IP addresses from accessing devices or serial ports on the network. IP filtering can be permitted or restricted for all ports globally or on a per port basis. Another access control method involves restricting or permitting specific users. Users can be easily added or removed from either a restricted or permitted users list. Sniff session access, which allows multiple users to access a single port, is also discussed.

The Digi CM provides for various authentication methods. They are: Local, RADIUS, TACACS+, LDAP, and Kerberos. Authentication may be configured where a secondary method is attempted if the primary method fails.

Configuring Network IP Filtering

The Digi CM offers built-in firewall functionality to limit TCP/IP traffic to and from certain networks, TCP ports and interfaces. The functionality implemented is based on the Linux tool IPtables.

Filter IP: 192.168.1.0

Filter Mask: 255.255.255.0

192.168.1.108

192.168.5.10

serial

192.168.5.10

192.168.1.108

Chapter 7

61

Page 60 Page 62
Page 61
Image 61
Digi Digi CM manual Introduction, Configuring Network IP Filtering
Page 60 Page 62
Top Page Image Contents