Manuals / Brands / Computer Equipment / Network Card / Lantronix / Computer Equipment / Network Card

Lantronix EDS16PR, EDS32PR, EDS4100, EDS8PR C: Networking and Security

1 175

Download 175 pages, 4 Mb

EDS Device Servers User Guide 15

8

C: Networking and Security

This chapter describes the following networking and security concepts as they relate to

the EDS:

 SSH ⎯ described below.

 SSL ⎯ see page 159

 Serial tunneling ⎯ see page 161

This chapter concludes with a description of modem emulation (page 164).

SSH

Like SSL, Secure Shell (SSH) is a protocol that provides secure encrypted

communications over unsecured TCP/IP networks such as the Internet. SSH allows for

secure access to remote systems, eliminating potential security breaches such as

spoofing and eavesdropping or hijacking of sessions. However, SSH differs significantly

from SSL and, in fact, cannot communicate with SSL. The two are different protocols,

though they have some overlap in how they accomplish similar goals.

How Does SSH Authenticate?

SSH authenticates using one or more of the following:

 Password (the /etc/passwd or /etc/shadow in UNIX)

 User public key (RSA or DSA, depending on the release)

 Host-based (.rhosts or /etc/hosts.equiv in SSH1 or public key in SSH2)

What Does SSH Protect Against?

SSH provides strong authentication and secure communications over insecure channels.

It also provides secure connections that protect a network from attacks such as:

 IP spoofing, where a remote host sends packets that pretend to originate from

another, trusted host. SSH even protects against a spoofer on the local network

that is pretending to be a router to the outside.

 IP source routing, where a host pretends that an IP packet comes from another,

trusted host.

 DNS spoofing, where an attacker forges name server records.

 Interception of cleartext passwords and other data by intermediate hosts.

 Manipulation of data by people in control of intermediate hosts.

 Attacks based on listening to authentication data and spoofed connections to the

server.

Contents

Main EDS Device Servers/Terminal Servers User Guide Copyright & Trademark Contacts Disclaimer & Revisions Contents Page Page Page Page Figures Page Page EDS Device Servers User Guide 11 1: Preface Purpose and Audience Summary of Chapters The remaining chapters in this guide include: Chapter Description Additional Documentation 2: Introduction EDS4100 Overview Features EDS8PR, EDS16PR, and EDS32PR Overview Features Evolution OS Web-Based Configuration and Troubleshooting Command-Line Interface (CLI) SNMP Management XML-Based Architecture and Device Control Really Simple Syndication (RSS) Troubleshooting Capabilities Applications Building Automation/Security Industrial Automation Medical/Healthcare Retail Automation/Point-of-Sale Terminal Server/Console Management Traffic Management 3: Installation: EDS4100 Package Contents User-Supplied Items Identifying Hardware Components Serial Ports Ethernet Port Terminal Block Connector LEDs Reset Button Physically Installing the EDS4100 Finding a Suitable Location Connecting the EDS4100 Page 4: Installation: EDS8PR, EDS16PR and EDS32PR Package Contents User-Supplied Items Identifying Hardware Components Serial Ports Ethernet Port LEDs Reset Button Physically Installing the EDS8/16/32PR Finding a Suitable Location Connecting the EDS8/16/32PR Page 5: Getting Started Using DeviceInstaller Starting DeviceInstaller Viewing EDS Properties 5: Getting Started EDS Device Servers User Guide 33 Property Description Configuration Methods Configuring from the Web Manager Interface Configuring via an SSH/Telnet Session or Serial Port Using the CLI Configuring from the XML Interface 6: Configuration Using the Web Manager Accessing the Web Manager through a Web Browser Page Navigating Through the Web Manager 6: Configuration Using the Web Manager EDS Device Servers User Guide 39 Page Description See Page Page Page Page Page Page Page Page Device Status Page 7: Network, Line, Tunnel, and Terminal Settings Network Configuration Page Page Page Line Settings Pages Line Statistics Page Page 7: Network, Line, Tunnel, and Terminal Settings EDS Device Servers User Guide 54 Line Configuration Page Settings Description Line Command Mode Page Tunnel Pages Tunnel Statistics Page Tunnel Serial Settings Page Page Tunnel Start/Stop Characters Page Page Tunnel Accept Mode Page 7: Network, Line, Tunnel, and Terminal Settings EDS Device Servers User Guide 62 Tunnel Accept Mode Page Settings Description Tunnel Connect Mode Page Page 7: Network, Line, Tunnel, and Terminal Settings EDS Device Servers User Guide 65 Tunnel Connect Mode Page Settings Description Tunnel Disconnect Mode Page Page Tunnel Packing Mode Page Tunnel Modem Emulation Page Tunnel AES Keys Page Page Terminal Page Host Page Page Login Connect Menu 8: Services Settings DNS Page SNMP Page 8: Services Settings EDS Device Servers User Guide 78 SNMP Page Settings Description FTP Page TFTP Page Syslog Page HTTP Pages HTTP Statistics Page HTTP Configuration Page Page 8: Services Settings EDS Device Servers User Guide 84 HTTP Configuration Page Settings Description HTTP Authentication Page Page Page RSS Page LPD Pages LPD Statistics Page LPD Configuration Page Page 9: Security Settings SSH Pages SSH Server: Host Keys Page Page 9: Security Settings EDS Device Servers User Guide 95 SSH Server: Host Keys Page Settings Description SSH Server: Authorized Users Page SSH Client: Known Hosts Page SSH Client: Users Page Page 9: Security Settings EDS Device Servers User Guide 100 SSH Client: Users Page Settings Description SSL Page Page 9: Security Settings EDS Device Servers User Guide 103 SSL Page Settings Description Page 10: Maintenance and Diagnostics Settings Filesystem Pages Filesystem Statistics Page Filesystem Browser Page Page Page Protocol Stack Page IP Address Filter Page Page Query Port Page Diagnostics Pages Diagnostics: Hardware Page MIB-II Network Statistics Page Page Diagnostics: Ping Page Diagnostics: Traceroute Page Diagnostics: DNS Lookup Page Diagnostics: Memory Page Page Diagnostics: Buffer Pools Diagnostics: Processes Page Page Real Time Clock Page System Page Page 11: Advanced Settings Email Pages Email Statistics Page Page Page CLI Pages Command Line Interface Statistics Page Command Line Interface Configuration Page Page XML Pages XML: Export Configuration Page Page XML: Export Status Page XML: Import Configuration Page Page Page Import Line(s) from Single Line Settings on the Filesystem Page Page 12: Updating Firmware Obtaining Firmware Upgrading Using DeviceInstaller Loading New Firmware Updating the Boot Loader from DeviceInstaller Updating Firmware A: Factory Default Configuration Network Configuration Settings Serial Port Line Settings Tunnel Settings Serial Settings Start/Stop Characters Accept Mode Connect Mode Disconnect Mode Packing Mode Modem Emulation AES Keys Host Settings Terminal Settings DNS Settings SNMP Settings FTP Settings TFTP Settings Syslog Settings HTTP Settings Configuration Authentication RSS CLI Settings Telnet Email Settings LPD Settings IP Address Filter Query Port Settings System Settings Real Time Clock Protocol Stack TCP ICMP B: Technical Specifications EDS4100 B: Technical Specifications EDS Device Servers User Guide 155 Category EDS4100 Specifications (cont'd) B: Technical Specifications EDS8/16/32PR Category EDS8/16/32PR Specifications Page C: Networking and Security SSH How Does SSH Authenticate? What Does SSH Protect Against? SSL Benefits of SSL How SSL Works Digital Certificates Tunneling Tunneling and the EDS Connect Mode Accept Mode Disconnect Mode Packing Mode Modem Emulation Command Mode Page D: Technical Support EDS Device Servers User Guide 16 8 E: Lantronix Cables and Adapters Lantronix P/N Description Applications F: Compliance Lithium Battery Notice Installationsanweisungen Rackmontage Energiezufuhr Erdung Page Page Index