Manuals / Western Telematic / Computer Equipment / Switch

Western Telematic CMS-16 manual Example 1 Deny access to all hosts except Security Mask #1

Models: CMS-16

1 62

Download 62 pages 40.13 Kb

Page 32

b.Masks are listed in order of ascending priority; Mask 1 has the lowest priority, and Mask 5 has the highest priority.

c.Masks have a cumulative effect; high priority masks supersede the effect of lower priority masks.

d.Each IP Address consists of a series of four eight bit numbers. The number 255 is used as a wild card.

Example 1: Deny access to all hosts except 192.1.1.5:

●Security Mask #1: 255.255.255.255

●Mask #1 Action: Deny

●Security Mask #2: 192.1.1.5

●Mask #2 Action: Permit

Since 255 is a wild card, Mask #1 blocks all IP Addresses. Mask #2 then specifically grants access to 192.1.1.5 only.

Example 2: Allow access only by addresses that begin with 192:

●Security Mask #1: 255.255.255.255

●Mask #1 Action: Deny

●Security Mask #2: 192.255.255.255

●Mask #2 Action: Permit

Since 255 is a wild card, Mask #1 blocks all IP addresses Mask #2 then grants access to all addresses that begin with 192.

Example 3: Allow access only by addresses that begin with 192, deny access to 192.1.1.5.

●Security Mask #1: 255.255.255.255

●Mask #1 Action: Deny

●Security Mask #2: 192.255.255.255

●Mask #2 Action: Permit

●Security Mask #3: 192.1.1.5

●Mask #3 Action: Deny

Since 255 is a wild card, Mask #1 blocks all IP addresses. Mask #2 then grants access to all addresses that begin with 192. Finally, Mask #3 specifically blocks access by 192.1.1.5.

Note:

●Mask #5 has priority over the four other masks. If Mask #5 is set to deny access by "255.255.255.255" (all wild cards), all IP addresses will be blocked, and you will not be able to access the CMS Command Mode via network. Access will only be allowed via the Console Port or Modem Port.

Image 32

Western Telematic CMS-16 manual Example 1 Deny access to all hosts except Security Mask #1, Mask #2 Action Permit

Contents

Console Management Switch CMS-16Users Guide WTI Part No Rev. BNo Serviceable Parts Inside Authorized Service Personnel Only Nameplate Power WarningBattery Replacement Rack Mount InstallationTable of Contents Disconnect Power3.2. Apply Power to the CMS 3.3. System SetUp Ports 3.4. Connecting your PC to the CMS4.1.2. DC Powered Units 4.2. Configure Option Switches 4.2.1. Default Baud Rate Sw1, Sw2, Sw34.2.2. Default Handshake Sw4, Sw5 4.2.3. Default Response Message Format Sw67.1.1.2. Disconnecting Ports 7.1.2. Defining Hunt Groups 7.2. Passive Mode 7.3. Buffer Mode7.3.1. Reading Data from Buffer Mode Ports 7.3.2. Port Buffers 7.4. Modem Mode 8. Saving and Restoring Configuration Parameters6.1. The Port Status Screen Supervisor Mode, Defaults Shown 6.2. The Port Diagnostics Screen Defaults ShownLimited Command Access Configuration Backup2. Unit Description 2.1. Front PanelTypographic Conventions COURIER FONT2. Power Cable Receptacle 3. Power Switch 2.2. Back Panel3.1. Communication Parameters Using Other Parameters for this Overview Optional3. Getting Started 3.2. Apply Power to the CMS 3.3. System SetUp Ports3.4. Connecting your PC to the CMS 3.5. Communicating with the CMS Unit2. Press Enter to access the CMS Command Mode Figure 3.2 The Port Status Screen Defaults Shown Figure 3.1 The Supervisor Level Help Screen4. Hardware Installation 4.1. Connecting Power to the CMS Unit4.1.2. DC Powered Units 4.2. Configure Option Switches4.1.1. AC Powered Units 4.2.1. Default Baud Rate Sw1, Sw2, Sw3 4.2.2. Default Handshake Sw4, Sw54.2.4. Default Command Echo Sw7 4.3. Initialize Unit to Default Settings4.2.3. Default Response Message Format Sw6 4.4. Connecting Devices to the CMS 4.5. Application ExampleFigure 4.2 CMS Application Example Not to Scale 5. Configuration 5.1. Access to the CMS Command Mode5.2. System SetUp Ports $ telnet 192.1.1.1 Enter5.3. Password Functions 5.3.1. The Supervisor Password5.4. Defining the Site ID and Supervisor Password 5.3.2. The Port Passwords5.5. Port Configuration 5.5.1. Configuration Conventions5.5.3. RS232 Port Configuration Menus 5.5.2. Port ModesTo select port parameters, proceed as follows 5. Stop Bits Default = AT&C1$D2S0=1 Figure 5.2 Port Configuration Menu Modem Mode5.5.4. Network Port Configuration Menu Figure 5.3 Network Parameters Menu Supervisor Mode Only = On 5.5.5. Implementing IP Security Figure 5.4 IP Security MenuExample 1 Deny access to all hosts except Security Mask #1 Example 2 Allow access only by addresses that begin withMask #1 Action Deny Security Mask #2 Mask #2 Action Permit Security Mask #1 Mask #1 Action Deny Security Mask #25.6. Copying Parameters to All Ports 6.1. The Port Status Screen /S 6. The Status Screens5.7. Save User Selected Parameters Name The user-defined name for each port 6.2. The Port Diagnostics Screen /SD 6.3. The Network Status Screen /SN 6.4. The Port Parameters Screens /W Figure 6.3 The Network Status Screen Defaults ShownWP xx Enter 7.1.1. Port Connection and Disconnection 7.1. Any-to-Any Mode7. Operation 2. Invoke the /C command to connect the desired ports D 4 Enter D 3 4 EnterD 3 Enter 7.1.2. Defining Hunt Groups Hunt Group ExampleHunt Group Example 7.2. Passive Mode7.3. Buffer Mode E xx Enter 7.3.1. Reading Data from Buffer Mode PortsC xx Enter 7.4. Modem Mode 7.3.2. Port Buffers8.2. Restoring Saved Parameters 8. Saving and Restoring Configuration Parameters8.1. Sending Parameters to a File 9. Upgrading CMS Firmware 10. Command Reference Guide 10.1. Command Conventions10.2. Command Response 10.3. Command Summary Command AvailabilityCommand Syntax Terse Verbose1 Supervisor Mode displays parameters for all ports 10.4. Command Set Enter Enter Command ModeEnter+++Enter Resident Disconnect Sequence Format EnterxxxEnterFormat /C x x Enter CP Copy RS232 Port ParametersFormat /CP Enter D Third Party DisconnectFormat /D/Y x x Enter D/Y 2 Enter or /D/Y 3 EnterE Erase Buffer Format /E/Y x x EnterI Default and Test Format /F EnterH Help Format /H EnterFormat /J Enter N Set Network Port ParametersFormat /N Enter P Set RS232 Port ParametersSD Display Port Diagnostics T Reset Network PortFormat /SD Enter SN Display Network StatusUF Upgrade Firmware X Exit Command ModeFormat /UF Enter W Display Port Parameters WhoFormat /X Enter Appendix B. SpecificationsAppendix A. RS232 Port Interface Stop Bits 1 or Appendix C. Customer ServicePower Trademark and Copyright Information Trademarks Used in this Manual