Black Box ACS120 Guida Utente Pagina 391
- Pagina / 450
- Indice
- RISOLUZIONE PROBLEMI
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
Appendix G - IPSEC
User Guide 391
ever he might be. We refer to the remote machines as “Road Warriors.” For purposes of IPsec,
anyone with a dynamic IP address is a Road Warrior.
Information exchange
To set up a Road Warrior connection, you need some information about the system on the
other end. Connection descriptions use left and right to designate the two ends. We adopt
the convention that, from the Console Server's point of view, left=local and right =remote.
The Console Server administrator needs to know some things about each Road Warrior:
• The system's public key (for RSA only).
• The ID that system uses in IPsec negotiation.
To get system's public key in a format suitable for insertion directly into the Console Server's
ipsec.conf file, issue this command on the warrior machine:
/usr/local/sbin/ipsec showhostkey --right
The output should look like this (with the key shortened for easy reading):
rightrsasigkey=0s1LgR7/oUM...
The Road Warrior needs to know:
• The Console Server's public key or the secret, and
• The ID the Console Server uses in IPsec negotiation.
which can be generated by running /usr/local/sbin/ipsec showhostkey --left on the Console
Server. Each warrior must also know the IP address of the Console Server.
This information should be provided in a convenient format, ready for insertion in the war-
rior's ipsec.conf file. For example:
left=1.2.3.4
leftrsasigkey=0s1LgR7/oUM...
The Console Server administrator typically needs to generate this only once. The same file
can be given to all warriors.
- BLACK BOX 1
- Advanced Console Server 1
- Version 2.1.4 Revision 1a 1
- User Guide 1
- Table of Contents 10
- Audience and User Levels 13
- How to use this Guide 14
- Conventions and Symbols 15
- Glossary Entries 16
- Quick Steps 16
- Parameter Syntax 16
- Spacing and Separators 17
- Note Box Icons 18
- Introduction and Overview 19
- Introduction 31
- System Requirements 31
- Pre-Install Checklist 33
- Task List 34
- The Wizard 34
- Custom Wizard 35
- Quick Start 36
- Configuration using Telnet 46
- Power Users 49
- New Users 50
- Task 5: Activate the changes 60
- Task 7: Save the changes 61
- Accessing the Serial Ports 62
- Access Method 73
- Authentication 100
- How to Test the Configuration 113
- CAS Port Pool 115
- Clustering 118
- Enhanced Clustering 125
- General Configuration 129
- Master box Configuration 129
- Slave-1 box Configuration 131
- Browser Method 135
- Data Buffering 137
- CLI Method 149
- Dual Power Management 154
- Configuration for TS 155
- Description 156
- Structure of the iptables 156
- Rule Specification Options 160
- Match Extensions 161
- TCP Extension 162
- UDP Extension 163
- ICMP Extension 163
- Multiport Extension 163
- Target Extensions 164
- REJECT (filter table only) 164
- SNAT (nat table only) 164
- DNAT (nat table only) 165
- MASQUERADE (nat table only) 165
- REDIRECT (nat table only) 165
- Browser method 166
- Generating Alarms 172
- Help Wizard Information 188
- Requesting Help for the CLI 194
- Supported Cards 197
- Ejecting Cards 197
- PCMCIA Network Configuration 198
- Wireless LAN PC Cards 199
- Modem PC Cards 200
- Client Side Setup 205
- ISDN PC Cards 206
- How to configure dial out 207
- Linux (Callback Client) 212
- TS Setup Wizard 213
- Serial Settings 219
- Wizard Method 221
- Session Sniffing 235
- The Syslog Functions 256
- Terminal Appearance 271
- Time Zone 280
- How to set Date and Time 281
- Users and Passwords 283
- Linux File Structure 284
- The vi Editor 286
- The Routing Table 288
- Secure Shell Session 289
- The Process Table 293
- TS Menu Script 294
- ºC to 44ºC) 297
- External 298
- Dimensions 298
- Weight 6 lb. 6.2 lb 298
- Approvals FCC and CE, Class A 298
- Rear Panel LEDs 299
- The RS-232 Standard 300
- Cable Length 301
- Connectors 302
- Which cable should be used? 303
- Cable Diagrams 304
- Adapters 307
- Black Box\Sun Netra Adapter 308
- Configuration Parameters 311
- CAS Parameters 321
- TS Parameters 331
- Dial-in Access Parameters 333
- Appendix D - Linux-PAM 337
- Upgrades 357
- Troubleshooting 359
- Hardware Test 362
- Port Conversation 363
- Test Signals Manually 363
- Single User Mode 364
- Procedure 369
- User Guide 371 371
- #saveconf 371
- Appendix G - IPSEC 373
- How Web User Management works 407
- Adding and Deleting Users 409
- Deleting a User 410
- Adding a group 411
- Deleting a group 411
- Adding an Access Limit 412
- Deleting an access limit 413
- Tested Environment 415
- On Windows 416
- Step-by-Step Process 417
- Console Access Server 419
- Terminal Server 422
- Dial-in Access 424
- Basic Parameters (wiz) 427
- Alarm Parameter (wiz --al) 428
- Syslog Parameters (wiz --sl) 431
- • Conf.locallogins 432
- Appendix L - Copyrights 433
- List of Figures 437
- List of Tables 441
- Glossary 443
© 2020, manymanuals.it. Tutti i diritti riservati | 0.044 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale