Configuration | Western Telematic RSM-32DC, RSM-8, RSM-16DC specification

Configuration

5.8.3.3. IP Security Examples

1.Mostly Closed: Access is denied by default and the only clients allowed, are those explicitly listed in the Allow list. To deny access to all clients except 192.255.255.192 and 168.112.112.05, the Allow and Deny lists would be defined as follows:

•Allow List:

1.192.255.255.192

2.168.112.112.05

•Deny List:

1.ALL

2.Mostly Open: Access is granted by default, and the only clients denied access, are those explicitly listed in the Deny list, and as exceptions in the Allow list. To allow access to all clients except 192.255.255.192 and 168.112.112.05, the Allow and Deny lists would be defined as follows:

•Allow List:

1.ALL EXCEPT 192.255.255.192, 168.112.112.05

•Deny List:

1.192.255.255.192, 168.112.112.05

Notes:

•When defining a line in the Allow or Deny list that includes several IP addresses, each individual address is separated by either a space, a comma, or a comma and a space as shown in Example 2 above.

•Take care when using the "ALL" wild card. When ALL is included in the Allow list, it should always include an EXCEPT operator in order to allow the unit to proceed to the Deny list and determine any addresses you wish to deny.

5-33

Image 52

Western Telematic RSM-32DC, RSM-8, RSM-16DC manual Configuration

Contents

RSM Series Shock Hazard Do Not Enter Lithium Battery Secure Racking Disconnect Power Agency Approvals Table of Contents Configuration Table of Contents List of Figures Security and Collocation Features IntroductionIntelligent Port Selection Capture Buffer Configuration Backup RSM-8, RSM-16, RSM-16DC, RSM-32 and RSM-32DC UnitsTypographic Conventions Bold Font Unit Description Front Panel Back Panel Instrument Back Panel Model RSM-8  Power On/Off Switch Quick Hardware Installation Apply Power to the RSMGetting Started Connect your Control Device to the RSM Communicating with the RSM Port Status Screen Text Interface RSM-8 Shown Getting Started Connecting Power to the RSM Unit Hardware InstallationDC Powered Units Connecting the Network Cable Connecting Devices to the RSM Communicating with the RSM Unit ConfigurationText Interface Configuration Web Browser Interface Home Screen Web Browser Interface System SetUp Ports Configuration Menus Defining System Parameters System Parameters Configuration Real Time Clock and Calendar Invalid Access Lockout Feature Audit Log Callback Security Configuration Port Access Supervisor AccessUser Accounts Managing User Accounts Viewing User Accounts Adding User Accounts Add User Menu Text Interface RSM-8 Shown Configuration Modifying User Accounts Deleting User Accounts RS232 Port Configuration 1. RS232 Port Modes Port Configuration Menu Text Interface 2. RS232 Port Configuration Menus Communication Settings General Parameters Port Mode Parameters AT&C1&D2S0=1&B1&H1&R2 Network Services Configuring the Internal Modem Network Configuration Servers and Clients Configuration Network Parameters 11 Network Parameters Menu Web Browser Interface Network Port Parameters 12 Network Port Parameters Menu Web Browser Interface Configuration IP Security IP Security Configuration Configuration Except Net/Mask Pairs Configuration Static Route 15 Static Route Menu Text Interface Domain Name Server 17 Nomain Name Server Menu Text Interface 19 Snmp Access Menu Text Interface Snmp Parameters Configuration Ldap Parameters Ldap Configuration Group Membership Value Type Default = DN Ldap Group 25 Add Ldap Group Menu Text Interface RSM-8 Shown 27 View Ldap Group Menu Text Interface RSM-8 Shown 29 Modify Ldap Group Menu Text Interface RSM-8 Shown 31 Delete Ldap Group Menu Web Browser Interface 32 Ldap Kerberos Set Up Menu Text Interface Configuration Tacacs Parameters 34 The Tacacs Parameters Menu Text Interface Configuration Radius Parameters 36 The Radius Parameters Menu Text Interface Configuration 38 The Copy Port Parameters Menu Save User Selected Parameters CP 3,5,7-9 Enter Status Screens Port Status Screen /S Status Screens Port Diagnostics Screen /SD Port Diagnostics Screen RSM-8 Shown Network Status Screen /SN Porttcp Portstatus Username Port Parameters Screens /W Port Parameters Screen RS232 Port Shown Xx Enter Operation Any-to-Any ModePort Connection and Disconnection Operation Operation 4 Enter Enter Defining Hunt Groups Hunt Group Example Passive Mode Buffer Mode Reading Data from Buffer Mode Ports Port Buffers Modem Mode Network Port Numbers Telnet & SSH FunctionsSSH Encryption Configuration Direct Connect FeatureStandard Telnet Protocol, SSH and Raw Socket Telnet & SSH Functions Standard Telnet Direct Connection without Password RSM-8 SSH Direct Connection with Password RSM-8RSM-16 & RSM-16DC RSM-32 & RSM-32DC Raw Socket Direct Connection without Password RSM-8 Raw Socket Direct Connection with Password RSM-8Connection Example Terminating a Direct Connect Session Syslog Feature Configuration Criteria for Generating a Syslog Message Testing Syslog Configuration Test Menu Text Interface, Supervisor Mode Only Snmp Traps 10-1 Snmp Trap Message How and When Snmp Traps are SentSnmp Contact Optional Snmp Location Optional Testing the Snmp Trap Function Saving and Restoring Configuration Parameters Sending Parameters to a File Restoring Saved Parameters Upgrading RSM Firmware 12-1 12-2 Command Reference Guide Command Conventions Command Summary Resident Disconnect Sequence Command SetAudit Log Connect Format /C x x EnterCP Copy RS232 Port Parameters Format /CP Enter Third Party Disconnect Format /D/Y x x Enter2 Enter or /D/Y 3 Enter Erase Buffer Reboot System Default Set System ParametersHelp Display Site ID Set Network Port Parameters Send SSH KeySet RS232 Port Parameters PW Change Password SD Display Port DiagnosticsRead Buffer Display Port Status UF Upgrade Firmware UL Unlock Port Invalid Access LockoutTest Test Network Parameters Save Parameters Exit Command Mode Display Port Parameters WhoFormat /W x Enter Format /X Enter When not connected When connectedAppendix A. RS232 Port Interface Appendix B. Specifications RS232 Port Interface ConnectorsPhysical / Environmental Power Models RSM-32 and RSM-32DC Appendix C. Customer Service Trademark and Copyright Information Trademarks Used in this Manual Index Tacacs Dhcp Index-2 Index-3 Index-4