Patton electronic SmartNode 4110 Series manual Node gw-h323h323#h235security master, Sion v1

Step

Command

Purpose

1

node(gw-h323)[h323]#h235security master-

Sets the master password (32 hex digits, 0–9,

password master-password

A–F) with which the H.235 password is

decrypted.

Note Configure the master password only

over secure links (e.g. in LAN envi-

ronments only or with serial connec-

tion), which cannot be wiretapped.

2

C:\getcryptopassword h235-password mas-

Generates H.235 password by means of the

ter-password

master password with the encryption tool.

3

node(gw-h323)[h323]#h235security pass-

Sets the password used for crypto token cal-

word h235-passwordencrypted

culation. The password is entered encrypted.

The password to be entered is the output of

the tool getcryptopassword.exe.

or

Configures the password used for crypto

hashed token calculation. The password is

entered in clear text (min. 1, max. 12 alpha-

node(gw-h323)[h323]#h235security pass-

numeric characters).

word h235-password

Note Do not use this command over inse-

cure links (subject to wiretapping). If

you enter the password as clear text,

you don’t need to configure a

master-password.

4

node(gw-h323)[h323]#h235security time-

Sets the time window used for timestamp com-

window time-window

parison by H.235. If a received H.323 mes-

sage with H.235 crypto token has a timestamp

outside the time window (relative to the local

time) the message is refused.

5

node(gw-h323)[h323]#h235security ver-

There are two H.235 versions, use v1 if v2

sion {v1 v2}

does not work. In v1, sender-idand general-id

must not be specified.

6

node(gw-h323)[h323]#h235-security ras-

Enables or disables H.235 security for received

auth-int-rx [<msg>]

RAS packets. msg is the message type.

or

node(gw-h323)[h323]#noh235-security

ras-auth-int-rx [<msg>]

Gateway configuration task list

552