Manuals / Netopia / Home Audio / Stereo System

Netopia 6.3 manual Login Failures, MAC Address Spooﬁng

Models: 6.3

1 161

Download 161 pages 41.36 Kb

Page 25

Section 3

General

Login Failures

The Cayman software provides the means for assigning passwords to the Admin or User accounts to control access to the Gateway. Any attempts to login are given three chances to enter a valid password. The Security Mon- itoring software records instances where the user fails to enter a valid pass- word.

Logged information includes:

IP source address	Number of attempts
Attempt count	Time at last attempt

MAC Address Spooﬁng

A MAC (Media Access Control) Address Spooﬁng Attack can be identiﬁed based on the IP-interface where the illegitimate packet came from. If the interface that the spoofed packet arrives on does not have the same MAC address as the legitimate entry in the routing table, then an attack is logged.

Logged information includes:

IP source address	Number of attempts
IP interface	Time at last attempt

25

Image 25

Netopia 6.3 manual Login Failures, MAC Address Spooﬁng

Contents

Software User Guide Disclaimers Table of Contents Web-based User Interface Section Tour Command Line Interface 104 Appendix a Glossary 148 Appendix B Index 158 About Cayman Documentation General Command Line InterfaceInternal Web Interface Bold italic sans serifText IconsAppendix B, Glossary Index OrganizationBasic Product Structure New Embedded Web Server Maintenance EnhancementsCapabilities Roadmap for COS Overview of Major Capabilities Section Feature KeysManagement DiagnosticsEmbedded Web Server DNS Proxy Local Area NetworkInstant-On PPP Wide Area NetworkIPMaps Static IP AddressesSecurity Password ProtectionNetwork Address Translation NAT Internal Servers Cayman Advanced Features for NATCable Modem Pinholes Default ServerSecurity Monitor Combination NAT Bypass ConﬁgurationIP Source Address Spooﬁng Event DetailsSource Routing Subnet Broadcast AmpliﬁcationExcessive Pings Port ScanMAC Address Spooﬁng Login FailuresBreakWater Basic Firewall BreakWater SettingsClearSailing SilentRunningVPN IPSec Pass Through SafeHarbour VPN IPSec Tunnel Termination SafeHarbour VPN IPSec TunnelEnter Open the Web ConnectionPeriod or http//cayman-dsl Home Summary Information Home page InformationLink Breadcrumb Trail ToolbarButton Restart RestartLink Alert Symbol Help Quickstart How to Use the QuickstartConﬁgure Link Conﬁgure Quickstart Setup Your Gateway using a Dhcp ConnectionEnable MAC Override Change ProcedureSave and Restart Configure Setup Your Gateway using a PPP Connection Conﬁguration Procedure Setup Your Gateway using a Static IP AddressYour Cayman Gateway can now use the conﬁgured IP parameters Link Conﬁgure LAN LANWAN IP Interfaces Link Conﬁgure WANIP Gateway Other WAN OptionsLink Advanced AdvancedLink IP Static Routes Link Pinholes Link IP Static ARPPlanning for Your Pinholes Conﬁgure Speciﬁc PinholesExample a LAN Requiring Three Pinholes Internet Pinhole Conﬁguration Procedure Add Save and Restart AlertFAQs for the IPMaps Feature Conﬁgure the IPMaps FeatureLink IPMaps What types of servers are supported by IPMaps? Cayman Gateway IPMaps Block DiagramLink Protocol Lifetimes Link Default ServerDefault Server Conﬁgure a Default ServerEnable Default Server NAT Combination Application Typical Network DiagramLink DNS Link Dhcp Server Link Snmp Link Ethernet Bridge Link System Link Internal Servers Link Trafﬁc Shaping Ethernet MAC Address OverrideLink Clear Options Button Security PasswordsNew Password Create and Change PasswordsSubmit Conﬁrm PasswordUse a Cayman Firewall Link FirewallBreakWater Basic Firewall Application Select this Level Other Considerations Basic Firewall Background Gateway LAN Side Conﬁgure a SafeHarbour VPN Link IPSecVPN IPSec Tunnel at the Gateway Parameter Description and Setup Groups 1, 2 IPSec Tunnel Parameter Setup Worksheet Enable SafeHarbour IPSec SafeHarbour Tunnel SetupIPSec Key Management Task 4 Make the IPSec Tunnel EntriesUpdate EnableWhen a new security event is detected, you will see Using the Security Monitoring LogLink Security Log ShowConfigure Timestamp Background Button Install InstallLink Install Software Install SoftwareUsing the Web Updating Your Gateway to COS VersionRequired Tasks Background Confirm Updater and COS Image FilesContact Information Install Updater Application CodeInstall Install SoftwareEthernet RestartInstall the COS 6.3 Image Verify Updater Application CodeMonitor OverviewWhen Verify the COS 6.3 Image This completes the Upgrade process for COS Link Install Keys Install KeysUse Cayman Software Feature Keys Procedure Install a New Feature Key File Obtaining Software Feature KeysInstall Keys List of Features To check your installed featuresConfigure Automated Multi-Layer Diagnostics Perform Troubleshooting on GatewaysDiagnostics Run DiagnosticsEach test generates one of the following result codes Troubleshoot Network ToolsAddress in the text box and click TraceRouteNSLookup User Status Manage a Restricted Number of WAN UsersDisconnect Disconnect Current WAN UsersExceeding the WAN User Limit Command Status and/or Description Tour Command Line InterfaceCommand Utilities Command Status and/or Description VerbsKeywords Connecting from the Maintenance Console Port Connecting from telnetLogging Shell Command Shortcuts Saving SettingsEnding a CLI Session Shell PromptPlatform Convention Reset ppp enet-BArp nnn.nnn.nnn.nnn Atmping Vpi vci segment end-to-endDiagnose ConﬁgureDownload -fw -key Serveraddress ﬁlenameLog Install serveraddress ﬁlenameMessagestring Loglevel levelReset atm Reset arpReset crash Netstat -rReset dhcp client release Reset dhcp client release B allReset dhcp client renew B all Reset dhcp client renewVccn Show dhcp server store Show featuresShow dsl Show enetShow memory all Show wirelessShow ppp stats lcp ipcp lastconnect Show ppp stats lcp ipcp lastconnect vccnHostname Ipaddress PortNavigating the Config Hierarchy Config Mode PromptGuidelines Config Commands Entering Commands in Config ModeSet ip ethernet address IpaddressStep Mode a CLI Conﬁguration Technique Displaying Current Gateway SettingsValidating Your Conﬁguration Set atm option on off ATM SettingsSet atm vccn option on off Set atm vccn vpi 0Bridging Settings Set dhcp option off server relay-agent Dhcp SettingsSet dhcp start-address Set dhcp lease-time Lease-timeDomain Name System Settings DMT SettingsEthernet MAC Address Settings Domain-nameBroadcastaddress IP SettingsNetmask Set ip dsl vccn addr-mapping on off Vccn Restriction admin-disabled admin-onlySet ip dsl vccn proxy-arp on off Set ip ethernet a B option on offNone admin-disabled admin-only DSL set ip ethernet a restrictions none admin-disabledSet ip ethernet a B netmask Enet set ip ethernet a B restrictionsSet ip ethernet a B rip-receive Off v1 v2 v1-compat v2-MD5 Both set ip ethernet a B proxy-arp on offSet ip ethernet B addr-mapping off on Both set ip gateway option on offSet ip gateway interface ip-address ppp-vccn Set ip gateway defaultSet ip interwan-routing on off Set ip ip-ppp vccn option on offSet ip ip-ppp vccn addr-mapping on off Set ip ip-ppp vccn peer-addressSet ip ip-ppp vccn vj-compression on off Set ip ip-ppp vccn ipcp-subnet on offSet ip ip-ppp vccn ﬂush-routes on off Set ip ip-ppp vccn rip-receive off v1 v2 v1-compatSet ip static-arp ip-address Gateaddress NetaddressInteger Set ip wan vccn address Set ip wan vccn option on offSet ip wan vccn netmask Set ip wan vccn restrictions Admin-disabled admin-only none IPMaps SettingsSet ip wan vccn addr-mapping off on Set ip wan vccn proxy-arp on offNetwork Address Translation NAT Pinhole Settings Network Address Translation NAT Default SettingsIp-address NameInternal-ip PPPoE SettingsInternal-port Set PPP module vccn mru Set PPP module vccn option on offSet PPP module vccn magic-number on off Set PPP module vccn protocol-compression on offSet PPP module vccn time-out Set PPP module vccn restart-timerSet PPP module vccn port-authentication Chap-secret secret Set PPP module vccn port-authentication Chap-name chapnameSet PPP module vccn port-authentication Pap-name papname Set PPP module port-authentication Pap-password passwordPeer-name Hostname PasswordPeer-name Hostname Chap-secret Secret Port Renumbering Settings Command Line Interface Preference SettingsLines Deﬁne more LinesBoth set security ipsec nat-enable off on off Security SettingsSet servers telnet-tcp 0 Both set security ipsec option off on offSpeciﬁes the IP address of the destination gateway Internet Key Exchange IKE Settings System Settings Snmp SettingsCommunity-name ContactinfoSet system password admin user Set system diagnostic-levelLevel Set trafﬁcshape option on off Trafﬁc Shaping SettingsSet trafﬁcshape ethernet option on off Set trafﬁcshape ethernet rate 56000Glossary Appendix B Cast DNS Hdlc IKE MD5 PFS-DH SHA-1 UTP 157 Index SymbolsSnmp Shell Contact Information